{"report_id":"8f7968c7-e08c-4bb0-b8be-1e1b16026975","version":6,"status":"done","tags":[],"date":"2023-08-24T17:58:25Z","url":{"schema":"http","addr":"www.bandarqqku.me/","fqdn":"www.bandarqqku.me","domain":"bandarqqku.me","tld":"me"},"ip":{"addr":"104.21.36.76","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.bandarqqku.tech/","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"title":"BandarQQ : Pkv Games, BandarQ, Judi Poker QQ Online Terpercaya"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T08:33:41Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ocsp.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":175,"first_seen":"2018-07-01 08:43:07","last_seen":"2023-08-23 18:12:04","alert_count":0,"request_count":4,"received_data":2798,"sent_data":1332,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2023-08-24 05:00:39","alert_count":0,"request_count":2,"received_data":145016,"sent_data":889,"comment":"","tags":null,"fingerprints":null},{"fqdn":"playcdn.github.io","ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2013-03-08","domain_rank":626460,"first_seen":"2015-12-15 11:16:18","last_seen":"2023-07-17 19:38:12","alert_count":0,"request_count":9,"received_data":24818,"sent_data":4050,"comment":"","tags":null,"fingerprints":null},{"fqdn":"zerossl.ocsp.sectigo.com","ip":{"addr":"104.18.14.101","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-08-16","domain_rank":4049,"first_seen":"2020-05-09 21:05:29","last_seen":"2023-08-24 05:18:14","alert_count":0,"request_count":1,"received_data":1219,"sent_data":338,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":12905,"first_seen":"2013-08-16 11:51:31","last_seen":"2023-08-24 05:08:02","alert_count":0,"request_count":1,"received_data":34459,"sent_data":451,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.bandarqqku.world","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":16906,"sent_data":479,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.bandarqqku.me","ip":{"addr":"172.67.190.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2023-05-01","domain_rank":0,"first_seen":"2023-08-24 19:57:59","last_seen":"2023-08-24 19:57:59","alert_count":0,"request_count":1,"received_data":16905,"sent_data":476,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.bandarqqku.tech","ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":26,"received_data":1511132,"sent_data":14206,"comment":"","tags":null,"fingerprints":null},{"fqdn":"139.162.47.50","ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2016-03-04 21:34:07","last_seen":"2021-07-02 04:07:44","alert_count":31,"request_count":31,"received_data":1789477,"sent_data":14274,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-08-24 03:39:19","alert_count":0,"request_count":2,"received_data":5448,"sent_data":862,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-08-24T17:57:56Z","timestamp":1692899876,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":60356,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .world TLD","source":"{\"timestamp\":\"2023-08-24T17:57:56.932026+0000\",\"flow_id\":1118631113275578,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.165\",\"src_port\":60356,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027870,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .world TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":23313,\"rrname\":\"www.bandarqqku.world\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":91,\"bytes_toclient\":0,\"start\":\"2023-08-24T17:57:56.932026+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-08-24T17:57:56Z","timestamp":1692899876,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":49460,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Observed DNS Query to .world TLD","source":"{\"timestamp\":\"2023-08-24T17:57:56.932176+0000\",\"flow_id\":1250606868347216,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.165\",\"src_port\":49460,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2027870,\"rev\":5,\"signature\":\"ET INFO Observed DNS Query to .world TLD\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_08_13\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_17\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":17031,\"rrname\":\"www.bandarqqku.world\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":91,\"bytes_toclient\":0,\"start\":\"2023-08-24T17:57:56.932176+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"bandarqqku.world","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jquery.easing.1.3.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"6516449ed5089677ed3d7e2f11fc8942","sha1":"82e40d060bc269a6dde20c3990ca5a4fea6ca754","sha256":"0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34","sha512":"6ebae34e9f46e8c90a5f94235f0c00424b1c7c5a4a8b7a248f267f337bc6c3083da88d66b28cfbcfe11b4012d7b139d52b73ce8d80461dc42f5f7e0614aaffec","ssdeep":"192:pTEOrsUruTgMz3R3t+1rAO/KgwOrsUruTgMz3R3t+1U:9zrsUruTvLBtSlrsUruTvLBt/","tlshash":"4c023349a2e0a73a4159f7e4773f0e4bf02e7819662e8907ec58f09d716d225c73ac2d","size":8097,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-04-05T08:29:25.060601Z","times_seen":14353,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jQuery-noConflict.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"a9b84a769d7b7f09ae236ec5bf713548","sha1":"b7fa8055cedfe215eb11b250a03e1b6a2dacf895","sha256":"6cbfb79ebfb1bfdadf9c80b36abe0d79d173358577533ffd25bde0286221161b","sha512":"89e2fb8a6c603c31b09aa724e580d5f6a5aba0792bbbc99ff661f7eeaff5fcf50b742868179a79a879097452c8815248ec6ecb173a27ada568273262e3e1e82d","ssdeep":"","tlshash":"17c08c782e9a6218a1226ae8c02f06146820ad27002a4a869a4a6c889d00318d78182f","size":130,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.869201Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/AES-3.1.2.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ff108e4584780dce15d610c142c3e62","sha1":"77e4519962e2f6a9fc93342137dbb31c33b76b04","sha256":"fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a","sha512":"d6eee0fc02205a3422c16ad120cad8d871563d8fcd4bde924654eac5a37026726328f9a47240cf89ed6c9e93ba5f89c833e84e65eee7db2b4d7d1b4240deaef2","ssdeep":"192:9pQGDuD690MPdz8Ui015ll1I57I2Tru6h0hNmHV+m9eIfyAqYfinNVYEUUFJZmUY:9OiT0wz8Uiw/1S7DegkcHpeIuScZbAX","tlshash":"b95296c936edb94263a63068587f7017b86b28b5945c4824f298d4ddf9a899dc03ae3c","size":13360,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-05T07:15:15.46728Z","times_seen":8436,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/translate.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5329f17c3a6e70a0709c512c7cb2a82c","sha1":"1b64fccf953ed3aaf9b37013392992df7a342a94","sha256":"e848d483e46883ba7b961bdcf2ea383fc0a8b7f76216ba7ae5a0ab77a0f6d13a","sha512":"0a217a2a2bd0206a91ae0b92762332bd1d49fef32c88830c7eda2f1231a2ef9bcf6bbe078770e8bb80b0bfb10c14ae21815a21182fb8565d4713611eaed5ddcd","ssdeep":"96:56/kzvTEBZyaKSETJLoSS/znZx8sfyOnGH/n6nA:5iBAaKSEToV5nGH/n6nA","tlshash":"7c91dc1a62f027adc4197bf2a25f545da66bcc0071316e205b40fa82edfc19deb9dc2d","size":3812,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.870313Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/app/login.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a587c69297e4092eecab377d4dfd052","sha1":"dda770b2c1e86949572b0b162485e452bfd0742c","sha256":"771de9e9dcae47f87547d13487d62df0669917810f9efe67320fe830c6971d6f","sha512":"2a78752d1e0c7249e4b654f23925a56022aaecbc9957f400482b9c679e09ad44a641ac187838bedfef8003b27b21ed50e7035f9bb15f98e3ab8db81c2560d381","ssdeep":"96:ABVvc6VJrVXPZX/CTyIyoT8wT8/Z0Cg8URZnYmxRrcHt/fdPfs+U/Pg8Zn2fyH:EZcp8rcl+RrWH","tlshash":"48f1240530b10b790e9aafa9443f0845616bfc06b0354a725e55fe01a8ac69eff66d1f","size":6853,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.869676Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5790ead7ad3ba27397aedfa3d263b867","sha1":"8130544c215fe5d1ec081d83461bf4a711e74882","sha256":"2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0","sha512":"781acedc99de4ce8d53d9b43a158c645eab1b23dfdfd6b57b3c442b11acc4a344e0d5b0067d4b78bb173abbded75fb91c410f2b5a58f71d438aa6266d048d98a","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9d:A4Ud4qhJvNPqcB47MfWWca98HrB","tlshash":"7793d8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","size":95931,"data":"","first_seen":"2023-03-07T01:02:51Z","last_seen":"2026-04-05T04:44:13.988821Z","times_seen":16249,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/RequireConfig.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"18cc9ac499a8b00f5e1666e6b1804b3f","sha1":"e100eba5827017859623469113065de1ab0c6d27","sha256":"9a30b517dd7ceab8de892cf8ad9e0437676cdeaa573cb2d5b32c216a2dccc06b","sha512":"501c380cb35ffba7567d685183373af172c49d9a7e221f6f155537974e7660ccc5178f432fd7f9790b426b322710af122bd20f57d3db3584b9ad4201488e9048","ssdeep":"96:JtsDr6mhQc93nX0t3wvNxVzt/zDFgwXaDV:Jt/m+8rZf8V","tlshash":"71b18c620cbae43b2c0537d34e13a55eb3f36fa67185e056f726d8614785a3cbb01ab1","size":4981,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.314762Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"e10e34c5178240ec039c5164e8d1e9ea","sha1":"93bd8975590b8e5a98545d776359ea6d0aa239aa","sha256":"93f68a37f54cbeb3cf17cc658f6e055cb9341baa7acda5ded38a6b9fce394add","sha512":"14b4a9db16913547d1003d3926964d36346a2390ea73a7910873d0a6e7d038dfe41b1183b2baf3c99739eb14ac837f78a215cda42bc099f8029e672666a01aef","ssdeep":"","tlshash":"f3c02bca27028c71b1ff27804f3fb102b41122509f911c3248457384a730c176318c00","size":158,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.313072Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/RSA-1.4.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad704c96c93bffa29d9d4af896282a1e","sha1":"f628e8656aad5f2cdc67f62207bfa3484b35341d","sha256":"b7e10e842d25dec6da67532bf342743f54d81dc738936fa35df84a0a73f33c31","sha512":"b3298a46ec46935159e234df449aba7620b312a18ed3e41b290582791b6f2416995f43755d827c0a316dd160fe4d2ec3657d50b6110ab3bcad9c9030ac56a7f5","ssdeep":"192:aTxfiLO8ayQ+mfJjk3GwR84x+2NSCBsCBCgMvQgNQqXkx89P4v84qDf8yl2A:ecLO8nSjkDx+RCBsCB+NQqXkW9P4v84w","tlshash":"2842848879c9341a079968b5091b098b7e35f87e90cd14fc71a4f8ea28f99ad433df74","size":12095,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.856168Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/aes-handler.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"07d6da8009054929bb41ef36456f62b6","sha1":"c9d60c78e3598196cbb821d09acd4b9a587cc4e9","sha256":"c30b73a2db8d963dbbf950413110b838a50f295d786a8d93a53a34e6b1007c0f","sha512":"19506b916c39ac466f6ca42612983faabe57ae7401db72f7db348679611f4d276968aa214dcb412c7331b9d2f6e58b471f45779e8956e027215a88c1d196b394","ssdeep":"","tlshash":"61314a0ce57da6b847895f9594bdd00a6b37ac01f2189f53ab0cfe45e68c006cb52e4e","size":1598,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.871697Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/utils.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba36d8e62e7a844e093889212dbbc16c","sha1":"430e764e63dcbb4186c1da709b825e38657ce9e4","sha256":"ca5a2b097c444dc437d7abc678b80d70b942ce192883a31f5c9dc678dda1f03f","sha512":"0a7fc595a6bd6b847e8f985168f693088b2a5f9563a5adcf34f8f7553947aec9b0b6f2b19caf5844fa0e31d00d9877bdb48ef809946a458a72455116c2c9af44","ssdeep":"48:AF+MHO54U+CbCU+jcrTYETpV5w6XtX+Eyv/+sjRt5a7PgLbyY7MP2+HBTbhYjZ/t:Ad5laxfyN9t0ubf7yhAZ/aVUwy6o","tlshash":"7191830531b1953c450e3fa99d7f1618a437bc02b0b98a25bd0cfd9a384ca1de766dbe","size":4026,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.29536Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/jquery-1.7.2.min.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","size":94840,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-05T08:17:11.860303Z","times_seen":19361,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/jquery.cycle.all.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ed87cb5cb0ae79912feb942782ce51d","sha1":"a36bb7a2c81737cfe5d030aeb19f5074ca6285a7","sha256":"fe9ac5660c18436d37f9fdac1dad7770d80394fdf1ec1738e00dbc2477fc2f61","sha512":"de0eb89d67b5df18ff797a926635446bb1fbb3bc4e13e9a653870ac122e57c472fb4ace27cb4a066bdb751e035540823ee170a6f398855a380439067378eaea6","ssdeep":"1536:OMONcxKSunuRjigSVOpejC7zw5c+40YQynQi7s:OrgSVOpt7zKcohyn/s","tlshash":"f733774c324eda1a96923353a6bb9c8dee7cc023d50685bdf19d848e2790c1c7317de9","size":53574,"data":"","first_seen":"2023-03-08T19:46:22Z","last_seen":"2026-03-07T05:39:35.742401Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/common.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"563badafb6600a9d75ae435b273d9ae2","sha1":"4f34c4867c39fa488f107e02bc361245ffe627ff","sha256":"a30611f423cc75684f3a7e8b4bab1ce8a29602a5c5287f83bd037dec13fcb545","sha512":"dd9f0ef6eb9259e20b13e155ae9e58f00876a94375b3661e6ad86bd6e81db4d1ebc24062cda45ae1a9132188bd406ea936d9e03424fbdc936122cd7350e11197","ssdeep":"96:dSM1DQlILO1SPhQhEr4w/O8nqSGrSuWS2VwohT6SAfw:dyJ1SPhQha5qSVuWSmT6SF","tlshash":"3c910438d63935604ce237b8701a4d452adfac27fc0981b129d03c18e5d8f69e6ceeb6","size":3795,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2026-03-07T05:39:35.743916Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/app/Default0.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"24a2ba51bf4ca4ea6e506b82b40583b1","sha1":"63f2fbb199bfdf966cff155ebe6bcbbf7211bd53","sha256":"b4b705e9566721c4521ade0eec33d828509f9d0cc809e91e94f5c28ed59d5d2a","sha512":"296e6e408da6f07df97f3c49e515111717995e5cce3f70ec1a51ae9a2561a0cd77f39e5a6cb0ed151b3f0d28dd0c17b7e7e2eb7fe229df505b454f0b2bf24ae3","ssdeep":"192:UQlDKvCO8zqQ2B9GOmK+WRw9mfD+Lg/gjNTQMBNIBmyflIDgjNxxIGK6:UQHTa4Npw4tgjvJK6","tlshash":"20323f88fb5e242a81762067285f10cd237d907264189c22fd5dd9706fe88ae537bf3d","size":11991,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-03T23:40:45.412737Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/utils.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1789754a27e70745472984be34b94888","sha1":"1a39675b7532a4871793b0e827f61aac6af754c4","sha256":"ceeb58102a37b24164ea0e312aae0a06399e077178ff2d891446a14b7c4c3c80","sha512":"cb6aad773b88d1dcfb92cd77c518dffe5dd90dfb513a6c528d09691cd490e72c1a0c1dd011dc037f599c2a5f2f4ced91f98931e00b8f4f52d121ee40f7cc6c3a","ssdeep":"48:AF+MHO54U+CbCU+jcrTYETpV5w6XtX+Eyv/+sjRt5acPgLbyY7MP2+HBTbhYjZ/0:Ad5laxfyN9tTubf7yhAZ/aHzXmUwy6o","tlshash":"f9a1710536b1943c450e3f698d7f1218a437bc02b0799a25ad0cfd9b384ca19e726dbe","size":4181,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.870797Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/info/site?noext","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"17cd6760e750cbf3763fc6572440e319","sha1":"d4b85438a05288416a11ab08b4045352a33e5293","sha256":"22d93318790dd99cec6ed836184951e6398179697650904ac106d926dec61997","sha512":"a1388123123d8e81b70de219b615dee73157077572226523f8a1395f81d6074684389db67e5102e2604a25c25cfa4f76e2b0e69c6f440928e7d21a24b5f7f8ea","ssdeep":"","tlshash":"52e0f131357782a180801920ca1b1d4c47301e666614e5894a0450ccee2478553c0e52","size":370,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:41Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/sandbox%20eval%20code","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"69c02be3f74421ae2f1156f2b810e043a2c62b015ae7c402f00e003f2440fea4eee1e8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-05T08:47:28.837475Z","times_seen":773523,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:gr5xyIhZ6pQ/d/bTQcFeqZVxNnR36Hc9lDJlQC8dA9Sa5fLtUB5roNiEP:gr58IhZ6pg/bTXVx9t689fN8INtEONig","tlshash":"7ea1cd9b39e650310332bfe91bfaa559b22937605220c161be0c915b7399233d3e1bec","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-05T08:47:28.840311Z","times_seen":771965,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RBDFXHYYYJ\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f1705b9c1add936a3941dbf642075a94","sha1":"f4bb8aa4c95da248b443e9d79703209fad9dcc9c","sha256":"dab815b83b9e4c25a956c590dbbd19820ed8d88c52f8b9db1017de53b827049e","sha512":"2c71e4e398508196e9f7fba6c1e051999dadf949d85461eaebd41b504cc6ef7dfc0f053f646310efa6887babffe98931cec834e2187825a28323933a17ab5282","ssdeep":"6144:+QbEmbyPut5WrAJR7PeUMAfrjXK8WPR+g:PYmbyPuNNjXK8WPRl","tlshash":"b12408d973c3706a82a6b4b9503f010ba5bb6d92f84cccd8e189c5d42eb4699417bf7c","size":215111,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/core/Scripts/RequireConfig.js?v=55.194.0","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d6ff3c7ce97ca409000abfa062ccb1f","sha1":"32d5be7ab1be01a96f64dafb4b0955546429872c","sha256":"b7fb2349830cdb0e0ae59b957a4e430020223a11df667e6008f3b7cee7ed875d","sha512":"13cc61bff722f93d3297f84c13345644882babd21f7d8e1547a77c708f8d836d786a3ec8d102d584f487e1a306ac3eed97aaf0c78b861254724d75d60bd72009","ssdeep":"48:M2etV0RitfNMqKYRHnGKk/PbO/kY3fqsnIg4D5PO0HN:gtzxOUHnGKAPbO/jfqsnz2O0HN","tlshash":"31b1e7512daed23b2c0567c75f32f55df7f45aaa625af88ab73aca51074063c3b012b0","size":5296,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2024-08-21T08:11:36.858575Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/core/Scripts/lib/require-2.1.15.min.js?v=55.194.0","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0be063631689d2d3eba6d5938f2bc46e","sha1":"b6578bee8ec3f5d2e72b1acacb728e7bf4464c51","sha256":"f707bb68884dfb89b40c184c04587a16f9dc115dc4c1cd14a62dfc57b46eba13","sha512":"d2e3ba41adcb30977e85e85313553f4b1d27829fc67c591eaa2afd0f1af83c9941b17d4b8095070468d77ff9864dea879ce529942787705dc38d61c48609325c","ssdeep":"384:FRZ1UX5juIhU/t1MN3u2prvMKL+E0MvRy9zf5hfiHJj5wDDRsPcujEayoeY9N:p1UX5KuU/t1MN3u2prvL+ENvo9zfjfyJ","tlshash":"698241d573cd352ba146f2a1d9bfc889337ec97a02d5c49cb54cd0e4a8644788b7acac","size":19181,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2026-04-03T11:11:47.095934Z","times_seen":184,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/rsa-handler.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"279dd9c14c3276f6b1be33573ff54d9f","sha1":"9bb3a73b00c0f8642d9a91410cb4ab7cacf2f9d3","sha256":"51c97d8d550be4487eef4eabbd5cdea2786872f031c3cbfc4e01e50cba3de22a","sha512":"71834fb266f037fda37ccbd14b1e2396439f84ec20a2d3c49629cd36b72c3ef319df63b46cf21e647758343993339ee40a55f5afed81d0cca99edd49ca1445b9","ssdeep":"","tlshash":"31e0d82a2cb56325d5053ff5c11f0489942f8c1f301406597809fdc6dc5c22ec703c2d","size":324,"data":"","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.872135Z","times_seen":71,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"de4165dbd2c81b6913eedc0cea8dfd8b","sha1":"27ffe08e118c98263a824d5eacd1300a50a57e38","sha256":"018ef26b004028c45a554f0abfaa7f2ef23c80b1b634a090e694660ae0d7062e","sha512":"d9f8b21fe48c8ceb9e411646886c1b34ce9d0af531169c7b83fd0cd922a127a463e5eaa6390aba9843240b9a7af99a4402e844c679c60b0d587edfb7bac650fa","ssdeep":"","tlshash":"06f0c27ba34117308eafb26b2298d3883535855f6601ac223d1c1b708fa0b4b993a95c","size":655,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2025-07-31T20:20:39.538337Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-34491496-51","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e31baf2a2e5556b139aefadaabb2fe9f","sha1":"d7488c8f682c7eaebd83d9a08cc7b3188bd45bbd","sha256":"6434dcfe183f45c82e6f57fb91fc3fb7bac18bd317cfc59d97c18acfb0c0717f","sha512":"53950d9c6aa6861e368e7b14aec3b64bb257dfb541ff3bb8f62059854ef615ed7a6264c4a289ebd767ab123173eb235ffd98437314b36c91b7c5056caf88a1fd","ssdeep":"3072:LIh2WQPDi3Eqb8g30E5DtqIAfW7tFeU4h3uGxLnVX:4Qbi9V5ZrAfW7PeUMeGZt","tlshash":"4404f5d8b393b16682a3b475543f010bf17a6d92f85cccc8e189c5d42eb8a99417bf6c","size":183382,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/site","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"149086e308ceb4151b8a1baa796c9d72","sha1":"91b223699d171d4be895d8af7096fd2848e066f5","sha256":"44cfba4d5e7a4543ef64de5e995b76837f186b9f833d12719b1c73fa91d3bf83","sha512":"7620795a5cae8a3f2034f7e8d6359bc9a2bd942bb273c1691bfd5b5cb8751cc0a544c13e93aedc5369fc145d44ba05d5563ab9488b77aff35048817b205ae6cc","ssdeep":"","tlshash":"bae06158781258e3a9072398441a098c0d10967f054ca1a837167dc8bed5d0c96a46a7","size":370,"data":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.294416Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-08-24T17:57:57.59454427Z","timestamp":1692899877594,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 24 Aug 2023 17:58:05 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"8d859df1efccd20091d2629dd9380d4d","sha1":"e51ade3df06b1d198dcfb5798d6bc1fd793ac836","sha256":"c357f518cd81ef1c846f9f13ef82a95aa3418d0bbc8d50c1dc0857363739c0ef","sha512":"bc15a5a87ced48e7af360c4ff555422e0f97db13775bf9b3e5d43a216a36d6511df69fc6f5223ccc4e966cac808beb85b879a3120113c2c0b8968861c13a78de","ssdeep":"","tlshash":"aaf0235a4f33b0a2887f1d5500b246c63190abc6277402783ebb85494b18fffd10d23a","first_seen":"2023-08-23T16:37:14Z","last_seen":"2023-08-24T22:36:28Z","times_seen":678,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-34491496-51","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.542Z","timestamp":1692899877542,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 31 Jul 2023 08:16:43 GMT","end":"Mon, 23 Oct 2023 08:16:42 GMT"},"fingerprint":{"sha1":"CD:19:11:50:03:C9:31:CD:B2:32:E1:82:F6:AD:5A:C5:F5:E8:7F:CE","sha256":"94:BD:10:72:EE:34:69:65:FB:E9:82:F0:69:A5:F0:25:93:5B:B1:30:66:F8:90:33:51:37:10:E2:64:0A:52:A6"}}},"request":{"raw":"GET /gtag/js?id=UA-34491496-51 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Thu, 24 Aug 2023 17:58:05 GMT\r\nexpires: Thu, 24 Aug 2023 17:58:05 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Thu, 24 Aug 2023 16:34:30 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 66673\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":66673,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (4179)","md5":"e31baf2a2e5556b139aefadaabb2fe9f","sha1":"d7488c8f682c7eaebd83d9a08cc7b3188bd45bbd","sha256":"6434dcfe183f45c82e6f57fb91fc3fb7bac18bd317cfc59d97c18acfb0c0717f","sha512":"53950d9c6aa6861e368e7b14aec3b64bb257dfb541ff3bb8f62059854ef615ed7a6264c4a289ebd767ab123173eb235ffd98437314b36c91b7c5056caf88a1fd","ssdeep":"3072:LIh2WQPDi3Eqb8g30E5DtqIAfW7tFeU4h3uGxLnVX:4Qbi9V5ZrAfW7PeUMeGZt","tlshash":"4404f5d8b393b16682a3b475543f010bf17a6d92f85cccc8e189c5d42eb8a99417bf6c","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"resource_available":true,"data":null}},"time_used":182,"timings":{"blocked":60,"dns":1,"connect":7,"send":0,"wait":30,"receive":15,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-08-24T17:57:57.703552009Z","timestamp":1692899877703,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 24 Aug 2023 17:58:06 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"8d859df1efccd20091d2629dd9380d4d","sha1":"e51ade3df06b1d198dcfb5798d6bc1fd793ac836","sha256":"c357f518cd81ef1c846f9f13ef82a95aa3418d0bbc8d50c1dc0857363739c0ef","sha512":"bc15a5a87ced48e7af360c4ff555422e0f97db13775bf9b3e5d43a216a36d6511df69fc6f5223ccc4e966cac808beb85b879a3120113c2c0b8968861c13a78de","ssdeep":"","tlshash":"aaf0235a4f33b0a2887f1d5500b246c63190abc6277402783ebb85494b18fffd10d23a","first_seen":"2023-08-23T16:37:14Z","last_seen":"2023-08-24T22:36:28Z","times_seen":678,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RBDFXHYYYJ\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.731Z","timestamp":1692899877731,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 31 Jul 2023 08:16:43 GMT","end":"Mon, 23 Oct 2023 08:16:42 GMT"},"fingerprint":{"sha1":"CD:19:11:50:03:C9:31:CD:B2:32:E1:82:F6:AD:5A:C5:F5:E8:7F:CE","sha256":"94:BD:10:72:EE:34:69:65:FB:E9:82:F0:69:A5:F0:25:93:5B:B1:30:66:F8:90:33:51:37:10:E2:64:0A:52:A6"}}},"request":{"raw":"GET /gtag/js?id=G-RBDFXHYYYJ\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\nexpires: Thu, 24 Aug 2023 17:58:06 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 77115\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":77115,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (4179)","md5":"f1705b9c1add936a3941dbf642075a94","sha1":"f4bb8aa4c95da248b443e9d79703209fad9dcc9c","sha256":"dab815b83b9e4c25a956c590dbbd19820ed8d88c52f8b9db1017de53b827049e","sha512":"2c71e4e398508196e9f7fba6c1e051999dadf949d85461eaebd41b504cc6ef7dfc0f053f646310efa6887babffe98931cec834e2187825a28323933a17ab5282","ssdeep":"6144:+QbEmbyPut5WrAJR7PeUMAfrjXK8WPR+g:PYmbyPuNNjXK8WPRl","tlshash":"b12408d973c3706a82a6b4b9503f010ba5bb6d92f84cccd8e189c5d42eb4699417bf7c","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/core/Images/loading.gif","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.550Z","timestamp":1692899877550,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /core/Images/loading.gif HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/gif\r\ncontent-length: 673\r\nbpx-cache: HIT\r\nbpx-id: 1692532386754646773-646-64729-13-0\r\netag: \"0206f5fd55d01:0\"\r\nlast-modified: Sun, 20 Aug 2023 11:53:06 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=f7zXuzx6O44Qli4PqGOBv8a2iacKg8x6w%2Fd2G7c6CAMJZ2vkH7L3KShro59QnfdLIBU5MjC1mo6i5QG86CKuRyMF8IrSTcq%2FjaBNpmtl%2BxT7s1sDL%2Bs5sWmF4Xzp%2BQGf0r6mDHI2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9978b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":673,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 16 x 16\\012- data","md5":"73e57937304d89f251e7e540a24b095a","sha1":"a3243ca6a628b77b3523a18aff6bafae85b45adc","sha256":"43a526a07a078d736e5c9d67d8479dd54072b7e5c6ddd2cd466f86a086e49ef5","sha512":"a77eace1fc8d0af1b3709d9ea390d5c899a87a75202d6ff754dd8fd2699d0638bbdbd95e0512f7916f8549e1b3501a18ee897c6610d5b077a85b9dd6a6d2b45d","ssdeep":"","tlshash":"d501ac23f3d10473f26d00b5a20dc57e110a35ea6ecad748aa48123dfe1983d9739b83","first_seen":"2023-04-12T03:32:43Z","last_seen":"2026-04-04T12:22:00.076717Z","times_seen":1683,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":354,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/btn/promo.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.553Z","timestamp":1692899877553,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/btn/promo.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 3157\r\nbpx-cache: HIT\r\nbpx-id: 1692532387178122913-646-64729-13-0\r\netag: \"f96eb437dc17d31:0\"\r\nlast-modified: Sun, 20 Aug 2023 11:53:07 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=74Cw2LaN3hVk7XWYGLVhK6WAT0cLyq%2FHZkQW8YJp%2F5zIzfUAs3p5Rb6bw1iygYvtz3g%2FrLYiUcLEKdAckDwTQbQdADwiXJfIi%2FstiW1TebIRCWj1yl1069F1rS5ojZLqk22N8Opg\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea982b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3157,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 30, 8-bit/color RGBA, non-interlaced\\012- data","md5":"dbd53563487a0bf2244e5da310a43a21","sha1":"7eefbad810234ccecd3f5768c561e56b749157d3","sha256":"ba20c82b634a317163854b03cedc2fc74767397444df9689ef603ff0a1399b03","sha512":"1b6be8a20f1444bc913f7e5f9ac58fbaddaa580ecae67f363aae4e5992757d56276467a41649a5be88bc65eb13c8ffa23edeefb49fbe70f4ed084d33829cf311","ssdeep":"","tlshash":"ce513b2fbd50b4c0f7596c5228eba16ac50658809fc62213fc6eb602ed785e0c1850fb","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.258321Z","times_seen":8,"resource_available":false,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":360,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/header/logo.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.552Z","timestamp":1692899877552,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/header/logo.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 15667\r\nbpx-cache: HIT\r\nbpx-id: 1692532386797680724-646-64729-13-0\r\netag: \"81613e38dc17d31:0\"\r\nlast-modified: Sun, 20 Aug 2023 11:53:06 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WoC10QkI51EnJbvNbsU%2FRc5%2BgGq%2Bm96LuaztOkHDZOSWC%2BAnwknAXtjhY%2BSC%2Fa5qQHC1PoNgBWXbSxJr5M0H18zW1GDP3FSKtxCN0WDYljwXhUkFOEt5PUxEWagCUUD5IXFZ6c%2Bd\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea97cb50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15667,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 260 x 82, 8-bit/color RGBA, non-interlaced\\012- data","md5":"a1d049635d61a5457c08c390aafea7a0","sha1":"75368c235c75e1369eb1322da59937b95d0cc331","sha256":"b30c3e4a2fe18b939a00e7cf428c429f9851b3ea3eddfb4b75eb3379567b8bfc","sha512":"014169ab1386f572bda1bc33297f70fdee28cb8dae822a971b9f666d4e43b381e25ca6e10f1a245bf099aa52b9b76f89cd1304b9642c2a5ed551c2473ad090e7","ssdeep":"384:mpDX7zZJ0D3H2lX8fw8LrQZz4mLigvDBNiO:mpDp6FfPQOmDniO","tlshash":"9662d19fa1e748682894fd0971bfdbc124911ec1cbe410d6c041e84e09322b9e62bff7","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.262727Z","times_seen":8,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/livechat.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.554Z","timestamp":1692899877554,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/livechat.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 4954\r\nbpx-cache: HIT\r\nbpx-id: 1692532386802019528-646-64729-13-0\r\netag: \"48ecb037dc17d31:0\"\r\nlast-modified: Sun, 20 Aug 2023 11:53:06 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=eeffAQ75psj1X7fuWe%2Flv2zycxpr%2FRxti3OSt4Ut24i4VPL%2FsJiPTqlFnBGI661looxPNlPKYpSzk42Z0NsxxWWUdkYDmpLsTm39EGEjppf%2BD1r5Ia8%2B42iJoXc9Cnbflr%2FUSWeQ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea983b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4954,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 78 x 35, 8-bit/color RGBA, non-interlaced\\012- data","md5":"df19727b91ab78d65b0f1a8536dbe920","sha1":"52ecb5cc819308ca78e536b9c5b62d514cc3913f","sha256":"2fc215b9d70fc76f2c9317fe922b6e484cf2302c80880468c6a4553eb609117f","sha512":"068c172b5b653fe9d8f1aac79a3a70e708f52f81d4a97d9278411bf6b78d27726fa9f0b0b89cd6a5d28eaed4829a53bcc01c39dff71b058eac41553ed1b65be6","ssdeep":"96:qs4nHOWA0U0AgW1qNEIs8wt+iwBrTeClTzzpnYyKpZqq:mAvZxiED9MiwVeqFnYyKJ","tlshash":"baa17d9bfd602f186bdeae2612f6a197ecc741b05ba4b532fe6cc442065041c064c8ea","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.253917Z","times_seen":8,"resource_available":false,"data":null}},"time_used":373,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":373,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/facebook.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.555Z","timestamp":1692899877555,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/facebook.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 2531\r\nbpx-cache: HIT\r\nbpx-id: 1692532386798049948-646-64729-13-0\r\netag: \"b6659f37dc17d31:0\"\r\nlast-modified: Sun, 20 Aug 2023 11:53:06 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=LtdpsGO3rsHUl4Z4qCj%2FzxMt2NMDXtdeS0FF0FQ0yC8uzy20VW3i5PqWRvu5CU3B9VaftBJJ81kcbbB%2BIF6LWvdrm29NXGZjfDT3ve99Xm8ZVPMBBeB3gRfHChr2T0Ol9dS3rEWR\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea98fb50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2531,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 33 x 45, 8-bit/color RGBA, non-interlaced\\012- data","md5":"ae92b19b8d4e142f1734f8f1205a1dcf","sha1":"6da19a90fcefa11cb2537a372a2588dce0a14977","sha256":"29626d5527219e558f7b315b56002f44be4d8b00587631f52601c96ae534cfbc","sha512":"44cb0a0fb1e000f6139ff3f9bc782acf2a26c155637f740ac6626c28d21d4991b82eef82a9282a55689e760fca36900442fdebd2d5ddf9d93b58bf02e935dd38","ssdeep":"","tlshash":"4751398f3fd0e800d0a9e5431ce0184268935646c699fa75ac5f9a4519a82ff85094c3","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.250518Z","times_seen":8,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/banner/banner-20230714-a.gif","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.556Z","timestamp":1692899877556,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/banner/banner-20230714-a.gif HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/gif\r\ncontent-length: 25380\r\nbpx-id: 1692540922515998097-646-64729-13-0\r\netag: \"d41f6e8bdb5d91:0\"\r\nlast-modified: Thu, 13 Jul 2023 19:05:47 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=z1SYmueI5kprrRIpGX%2FfCKNaTbAx2YDYN97SnOReWMMKHsYAjvm%2FwLbbeCit3jjSC0RK4q5iixkBoTrOQCV9MZCXxzBEosd4hkybS4JmBj1Tf98mYKfkh0P8AUYXxFnTnHeHCAG%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea992b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25380,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 150 x 100\\012- data","md5":"095c4c7cd156a02c8e4f3ffb70a7f865","sha1":"09835bb3fa52f496c9659e7f0a1dc0843fcf8da1","sha256":"912cfe56064841cec7523f14f545a029d0350bb099d5be4d18e3d1b5631b4002","sha512":"f81b2151168bdda3c70d27b29f3e84d588d38d285a5395e88ddd621ebd1754f70dca64a70d5404c5122775a8c34692e048d462e05d0f287e37a043542b53b9c4","ssdeep":"","tlshash":"","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"resource_available":false,"data":null}},"time_used":397,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":396,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-08-24T17:57:57.937790632Z","timestamp":1692899877937,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 24 Aug 2023 17:58:06 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"bcdf43508e7b58692399e44ee02e61e6","sha1":"b40b19a9469099e371ebc5688235e01d78cf77c1","sha256":"efa06e4fb6c00cbb63c746479f62e92a38dca0badc50291d36fd59170e4b3cac","sha512":"7b568e76215c54c4849936a8fdf8d6ba2e599f45aed176f41a0e7c0351da6a3e6ee01e1ee9b57d14a4a6607de50b79ea26ae9eefc7e64a231d9a8f0e8c271f2f","ssdeep":"","tlshash":"20f0541ec6f4470a5207845491f54706e04cee8c0f6802753c6c479c870b1b6f38660c","first_seen":"2023-08-23T16:32:15Z","last_seen":"2023-08-24T22:36:36Z","times_seen":1173,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-08-24T17:57:58.043849357Z","timestamp":1692899878043,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 24 Aug 2023 17:58:06 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"bcdf43508e7b58692399e44ee02e61e6","sha1":"b40b19a9469099e371ebc5688235e01d78cf77c1","sha256":"efa06e4fb6c00cbb63c746479f62e92a38dca0badc50291d36fd59170e4b3cac","sha512":"7b568e76215c54c4849936a8fdf8d6ba2e599f45aed176f41a0e7c0351da6a3e6ee01e1ee9b57d14a4a6607de50b79ea26ae9eefc7e64a231d9a8f0e8c271f2f","ssdeep":"","tlshash":"20f0541ec6f4470a5207845491f54706e04cee8c0f6802753c6c479c870b1b6f38660c","first_seen":"2023-08-23T16:32:15Z","last_seen":"2023-08-24T22:36:36Z","times_seen":1173,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/banner/banner-20230807-a.gif","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.557Z","timestamp":1692899877557,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/banner/banner-20230807-a.gif HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/gif\r\ncontent-length: 310818\r\nbpx-id: 1692899886056622506-646-64729-13-0\r\netag: \"9dd31eaeedc8d91:0\"\r\nlast-modified: Mon, 07 Aug 2023 05:11:53 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=ahaufse1DG%2B%2FG1z0EvEfHf3wfNjj677b1uHfWXjHhii9wtKU4FsgCMPGwrGhcXf8a82EhUCSV%2FpGPyJptNUqHVhs88Ea3P01BgGY55%2FoLBa3fV6xN2SVlBcJ9rmY7QgKmWYhsdtW\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea998b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":310818,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 150 x 150\\012- data","md5":"765e59428002f86d423ba2f8f1eb3731","sha1":"91d2d2762cf51ad51d23f8b32e011e425ecb84cb","sha256":"57e48a37ed07fd5e16bc6330fa0daa3dcb8893c6f0fd0b27106523670a42822d","sha512":"5caf90cf449e7641ca8a65321863ca2d3a214a4f5c1eaacfc508e613225fe2e56e3911df89d9c270ff7030fc2170f55255a74f3adafa771bd40d654b7f05a49d","ssdeep":"6144:O5gNsobN06PpjZyD68Nng+i7zNAVLbFYOFQXspKcKC+AWDe+aWf58T:OqsKikjZ2NgJ7zCVLbCOQcxWq+aE8T","tlshash":"7364239c42d4d49d8b0507e6803ee17682b4edf292d12db28ed8215e73728fd45face9","first_seen":"2023-08-24T19:58:40Z","last_seen":"2025-07-31T20:20:39.301662Z","times_seen":14,"resource_available":false,"data":null}},"time_used":981,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":698,"receive":283,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/btn/login.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.371Z","timestamp":1692899878371,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/btn/login.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/png\r\ncontent-length: 4415\r\nbpx-id: 1692540922514164284-646-64729-13-0\r\netag: \"f29bf337dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WakWNOyeTvQviqKuZAMNuguklnzWTqiWypWXcZe31Nj0fraZvoqsp6r0SKhBTZTUDQggzdsOyylx1kN0H46wC6nLhsjv0fJ1F0L%2F7M5vSF5bEMsOwpkoSqD%2FAHmjkcafxVCQGswq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43da2eb50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4415,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 110 x 33, 8-bit/color RGBA, non-interlaced\\012- data","md5":"c95dcdb591d7ccbf6c26d8ce913bf265","sha1":"00f17d40ad048d88ba3119a508c7064fc031a240","sha256":"ab356431a84c8c5efd399862cc1db0f39a94f9ec5d9bfd09436f38bafa295cfa","sha512":"bf0ef2c5a43b590e1563375c79e6dfcdd3bd274fd31623c7fcb4de71c2537a48d9321c1e9589c5c067d6556f0018d28d1e272bd12f208b9fa4b4e463170c9966","ssdeep":"96:zd4hHrtmfp4stewT69+Lvb899up9oj4qK2eL5Egbc25q3rw3uLb:zgmBXteM69kkk9ocqQS8d0bhLb","tlshash":"4a917eaea600060976de52479ce7d9639aae4ec0df8170787c4e797308152fdd8840c3","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.274076Z","times_seen":8,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":288,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/bg/bg.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.327Z","timestamp":1692899878327,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/bg/bg.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 1346\r\nbpx-id: 1692540922552836453-646-64729-13-0\r\netag: \"2539d737dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BEpLNrXQrzlLyq5WQMdqoUWYp7OX5zExHRIkF0vLCZoYPuBismzWINiOwmjDwb8k9gGflvco9c4bSJ1ymXTI5Cf11tZE0hgdHr%2F6EddnyQY26W1I9saD2NT4S0cHMgXuEpFiMPpU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b4399d0b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1346,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 773, 8-bit/color RGB, non-interlaced\\012- data","md5":"fe7226bb6282fbd371d0db83f6786f96","sha1":"0ed2b9e598ae15a46faaba0edad7828b0480f58f","sha256":"83e4736f4adff44ad872e425aa1068f624e682d855d0efb424f6373187e1344c","sha512":"d7e8347a76880e95c69a469a06c273f2446c75de173d5da43daa2a888c5a4bb737b44148abb2c922664e96f2ddac15304632733e31a53c6e43450da4e44a50ed","ssdeep":"","tlshash":"f52186edfdc02502b089e80624fb817796074680ced5b1bafccbd89b19702f9846d9c7","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.2707Z","times_seen":8,"resource_available":false,"data":null}},"time_used":355,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":355,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/btn/username-pass.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.366Z","timestamp":1692899878366,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/btn/username-pass.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 2466\r\nbpx-id: 1692540922556117102-646-64729-13-0\r\netag: \"7038fd37dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=btknkieiioIcpyObQO0qZNJvVy2EmPnMVW173HlL%2FXEG1a6Ke1x7FVLTAaPyTMamV%2BqzTc1LPEsHuuV2tuQaCTyZNCjWoqeDjEYikABUKUkm%2F2vsEWxrszZOawI31v1nzp8PUc1G\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43da26b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2466,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 254 x 30, 8-bit/color RGBA, non-interlaced\\012- data","md5":"5b956ea5373e534f3ea169b8d6bfce04","sha1":"fa310665694e20bf28a8199cbba1d091d58a8dd7","sha256":"64815ffde2d63d83c7c8c4616b90d016096156f3e7b170681733866e807f965d","sha512":"5436771a9ef7385c06c588e2dd29789d1705e7ec02d13db15f7883268ea82d26c15303e734055010ce946d16ade7da769861dc5524ca4533f14c7b7837e14634","ssdeep":"","tlshash":"d1514cc36c4578a1631ccd9354f34592c47346c28e4072f2a997c0635ed3eb6c649bd7","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.283369Z","times_seen":8,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":336,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/btn/daftar.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.374Z","timestamp":1692899878374,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/btn/daftar.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 3859\r\nbpx-id: 1692540922558868122-646-64729-13-0\r\netag: \"1d26f337dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=W%2B8cBdDH1sjrSqPrOExXJAXijMWskz4bA8FrkLMKR05bs614LANI7LZpEY9y2H46iqsjqLtXfKrD3M0wYI9dTWp6176eYphFnMZvhU2W47Fbu0Xp5zuaDclEjvqNMpuqjSG6y2Mn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43ea33b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3859,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 146 x 37, 8-bit/color RGBA, non-interlaced\\012- data","md5":"25940b5ed0902d7190d8cdc68e09ec7b","sha1":"dbb1dd3c538378280f24de6929c895dcbd2127b6","sha256":"9a9edb6b2d5d46d2e9adcbc2a9df5cc53059ac993062fa8a98e95456a8399dd1","sha512":"a6d72cea30962222fe13316f728ca1f7bda37ab2b419abb6f89dffc53fc5ffa95392d680054d672c497da9741af3733a15a857d2e9f0b1ad456fe5fa9b634f74","ssdeep":"","tlshash":"ca815bafb2487009a1ad95c598aa8183fd0787c088f1ee51f8dfcb999c316f540c91df","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.27317Z","times_seen":8,"resource_available":false,"data":null}},"time_used":357,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":357,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/bg/jackpot.jpg","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.379Z","timestamp":1692899878379,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/bg/jackpot.jpg HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 12035\r\nbpx-id: 1692899886890645244-646-64729-13-0\r\netag: \"11fdd737dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=iRHl75gSpEIz0tzR0%2F9pGneBJ3woAQ1ayKTqEAfEIfThdTRSIW0H4SETkuZOWTozx5Jc0EQj938C%2Bvy4Wtf%2FxzrAAgy0oICJms8tI8WrTcSMB64CBIohZHCcy5jWmKTcoGzjYgF1\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43ea3cb50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12035,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 752x55, components 3\\012- data","md5":"a4f9672fb4e5ddf0c4c62baea212018d","sha1":"cfff38788abe8e5722fa1d2273cd03da31f92e6f","sha256":"d981d04d2d95964493e1bb4f3d661b954310ca08ca1891731e53494ac3f615dc","sha512":"8218feb13631b7f41909536e7d8d11d7a6efd94b603e1871552944b4406ad596c0334ca91f4d13196e737d1580b930ecac10319e1ce31f8b2a3fe16f77b2ef22","ssdeep":"192:XeuM9UhraUFc2T/9UFyx0h5cfQYlaeILi7kOpq9pB/53vs8zlP:/Bd85cf1YehkDT3vskP","tlshash":"0b428e3adc905b0d95ab0d4c39f7893662a157c64bd2f6de7645a1c06cadcbb001ce5c","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.284584Z","times_seen":8,"resource_available":false,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/bg/transection.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.380Z","timestamp":1692899878380,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/bg/transection.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 44904\r\nbpx-id: 1692540922584369184-646-64729-13-0\r\netag: \"f8afeb6bc210d51:0\"\r\nlast-modified: Wed, 22 May 2019 17:18:49 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=GPS00tp%2BpPWRhk4qABiFL8d0KJ7Lr9XInersJhuyxiwXBt9XMqGL5yHcDHxTobzXKYfJ8uMoVOQCtntJZJjGGIn9n0iQRTNz08kEnLgYfNp59bPKavfux9raGllDxuCiwZ5qyvHK\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43ea44b50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44904,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 782 x 177, 8-bit/color RGBA, non-interlaced\\012- data","md5":"a9b02eb11ebf3907bed66a1b99a14fdd","sha1":"9ec38244d4fc1f0a5e275fe18177ce9f9544f120","sha256":"787492ee5ee5bf469765e98dcd38dd62165d3398b00b9cd8a20b55feb106f2a9","sha512":"4a851544a3d71f55ae2f46518f0e674983d5697e9925606067ee259f9bf2dd0e9f483e11b56fd43c5d4f0945eb38eef625812a4c6445033e9826f74148dd0ad9","ssdeep":"768:5tPBMSX1EBbNtKCXyb/0aeL3IPO7xW4HXqGZwqXDrc8VPfMiNSuoYojO:5tPqSlEdNto4bLyxgXZLXDrc81vjMO","tlshash":"1913f2e93f49c7a2481c509e85af84762a2f7a6f7678a297e68c349902110f0fd6f15c","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.28851Z","times_seen":8,"resource_available":false,"data":null}},"time_used":419,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":418,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/app/Default0.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.787Z","timestamp":1692899878787,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/app/Default0.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-2eda\"\r\nexpires: Mon, 21 Aug 2023 01:44:34 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 6FEE:A9A7:4110545:429BF0B:64E2BF27\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 188\r\nx-timer: S1692899887.165447,VS0,VE0\r\nvary: Accept-Encoding\r\nx-fastly-request-id: f61f1212f6790bb9f140620276710446fc4537ad\r\ncontent-length: 3549\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3549,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"f1a28e354348793cfc0068c2d2e93d97","sha1":"df66bce27ca4605ccd222c8030bd5ce0421d4e7c","sha256":"5aef749dbff7bddf45645722891e416ea93340ef2f313c925b572a7c4bb0240e","sha512":"3832fb9d69958b7b2e34ec0177203ea94a8e751aaacc43b4d451497df5c55bb51975be4178d885a0a1161d1ac01f96483be3e84e3fad9716cd5bf38745ff5c85","ssdeep":"192:LQlDKvCO8zqQ2B9GOmK+WRw9mfD+Lg/gjNTQMBNIBmyflIDgjNxxIGK6:LQHTa4Npw4tgjvJK6","tlshash":"03323f88fb5e242a81762067285f10cd237d907264189c22fd5dd9706fe88ae537bf3d","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.843441Z","times_seen":50,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":47,"dns":24,"connect":8,"send":0,"wait":9,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/app/jQuery-noConflict.js","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.892Z","timestamp":1692899878892,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/app/jQuery-noConflict.js HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: \"6201fe46-85\"\r\nexpires: Mon, 21 Aug 2023 01:39:44 GMT\r\ncache-control: max-age=600\r\nx-proxy-cache: HIT\r\nx-github-request-id: E494:0DD1:2C2B797:2D3CE4B:64E2BF28\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.222089,VS0,VE4\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 8207439bb8b065f2a427b48ee03735762052368d\r\ncontent-length: 133\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":133,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"6db916655ab029f509cdecf00f4431a1","sha1":"d57e70f6573e8346085679548978d0c1c81d7ed4","sha256":"252036aa9185151c188b760dfd1ce735cac0a70c4d60dc4088b5255f4ab72f39","sha512":"207f896575dbd6c3891bbbe1fd010d75bbdb2cd4a784db2d692576de85a2fc89cb654ea1630fb123c40e0d0a0f05d55a9fbdfe5b9037b3c5204d0ade20abde02","ssdeep":"","tlshash":"35c02b3c7eae6004c1323864d40f0d1d5404ed23143a808ec24c0cc8fd1432c668183e","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.846278Z","times_seen":53,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/translate.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.898Z","timestamp":1692899878898,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/translate.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-ee7\"\r\nexpires: Mon, 21 Aug 2023 01:44:34 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 6FEE:A9A7:4110575:429BF38:64E2BF2A\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 381\r\nx-timer: S1692899887.226555,VS0,VE0\r\nvary: Accept-Encoding\r\nx-fastly-request-id: e1cb37ae849ef9d169f883f90fd414bbff4a9820\r\ncontent-length: 944\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":944,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"21139755d7f2952eca6af919ea71ae4c","sha1":"db78818465be7a9e5f07a2a0cf985ae8fd58cb00","sha256":"cfc6a640d2485e7fe8d89a771c2e2196a53a0fdef3109caad545a0cba5faada9","sha512":"51b1013b42b2aeb3562bfc0d9069fdb81c9314f58c0319caa3d6fbe7002a5cf6a97315167a5889f7c02b2215421701a1fb9cf5e33c79a0a22c4d5d17399a6177","ssdeep":"","tlshash":"04719b59a3bc264ec15a70b2b28f50cda27cc07102256e60bf40e692ecfc4ad47add2d","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.849156Z","times_seen":53,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/app/login.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.896Z","timestamp":1692899878896,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/app/login.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-1ac8\"\r\nexpires: Tue, 22 Aug 2023 22:36:53 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 379A:133D3:5330F6:54E6D3:64E5362D\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.225088,VS0,VE4\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 17c72539b35888b4e4dec49c5e69ec8f8af1ad12\r\ncontent-length: 2069\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2069,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"2fedc15530f146dae3e0109b743ff29f","sha1":"562b10166578bc3cff5613ffa0f8f16a500b1f7b","sha256":"111861bfcbbbad10183810038bb7440ffe7e933bc81dce0917379e81feaa987b","sha512":"72d12d7969be70381aa09fbe48c235835d5592b04048a1a21b010781433fe4784675db28c6dc41a22c3414ee509381b6ac112a71a3a1c801e3b5f29f1c92cd41","ssdeep":"96:0Vc6o/VcQi3VYlNCTwIVf82AZqnW7i2CCGlusip0t0tTfdBJoK+ZeOIUfWL:AYgCGlId5L","tlshash":"86e15484f34c0d460aa6616a480f10ce617dd17394358cbbbe68eb04e8f496f677da2b","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.84724Z","times_seen":52,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/utils.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.899Z","timestamp":1692899878899,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/utils.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-1055\"\r\nexpires: Tue, 22 Aug 2023 23:54:02 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: F39E:8A0A:5A8E1C:5C874A:64E5483F\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.229174,VS0,VE1\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 36b8ef357824032d606bc4ef43f136f1b42e20fb\r\ncontent-length: 1623\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1623,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"1789754a27e70745472984be34b94888","sha1":"1a39675b7532a4871793b0e827f61aac6af754c4","sha256":"ceeb58102a37b24164ea0e312aae0a06399e077178ff2d891446a14b7c4c3c80","sha512":"cb6aad773b88d1dcfb92cd77c518dffe5dd90dfb513a6c528d09691cd490e72c1a0c1dd011dc037f599c2a5f2f4ced91f98931e00b8f4f52d121ee40f7cc6c3a","ssdeep":"48:AF+MHO54U+CbCU+jcrTYETpV5w6XtX+Eyv/+sjRt5acPgLbyY7MP2+HBTbhYjZ/0:Ad5laxfyN9tTubf7yhAZ/aHzXmUwy6o","tlshash":"f9a1710536b1943c450e3f698d7f1218a437bc02b0799a25ad0cfd9b384ca19e726dbe","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.870797Z","times_seen":71,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/aes-handler.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.926Z","timestamp":1692899878926,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/lib/aes-handler.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-641\"\r\nexpires: Tue, 15 Aug 2023 04:21:58 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 9486:61CC:5F8152:622064:64DAFB0E\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.257832,VS0,VE2\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 1ce2e6581e356c3a5614a334d3584ca1beb71075\r\ncontent-length: 517\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":517,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"4f18b9c0ae285059598fe415a307fa3a","sha1":"b2ef9be04d7b38b4e56e05d845b0ce1ae425174c","sha256":"042388fce81880b71b9ab7918e38f6489f65d4b00cde9f3f955b02d54bcc7581","sha512":"d793190ddc91129a91473e12523df8e2fcf7b0d1f9600e27c3feec5fb54d0906f47b075279ea93a73ca98f95e9fd75be9b36164df409ddd221bf3260e8faffc8","ssdeep":"","tlshash":"e6314d0cfb4daaf08395245594bdd08b563e5012e6089ee7df1cde54b6cc41bc393a5a","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.852104Z","times_seen":54,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/rsa-handler.js?v=55.194.0","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.928Z","timestamp":1692899878928,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/lib/rsa-handler.js?v=55.194.0 HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-147\"\r\nexpires: Mon, 21 Aug 2023 01:42:16 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: HIT\r\nx-github-request-id: 3222:3095:3BC3495:3D29C57:64E2BF2A\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 138\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.258876,VS0,VE1\r\nvary: Accept-Encoding\r\nx-fastly-request-id: c27a0dfedb8db4bb3215aa6cc7996cc75510629c\r\ncontent-length: 213\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":213,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 (with BOM) text","md5":"9d0e1b7ad3674260ca6930c0e9b53280","sha1":"1ec495db990490069183f3779d060903bfb12689","sha256":"af82c7e2758c38f6e92e8357b2af16910c640b182ad55c52acf8ca85efbb305a","sha512":"558250d9bcf8c2c36cd008c8542fe296ea3501c4e4021282708d99c37b7c036f6801cd4b027c32f24e9b214d279a6410d3a6e6497e2b1cb2d2722e3588795ba8","ssdeep":"","tlshash":"b2e026a8ef9ea740e21635b58a0f24ce442d84171804049ffc19b0c5ec6003e8313d3d","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.85297Z","times_seen":52,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/RSA-1.4.js","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.950Z","timestamp":1692899878950,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/lib/RSA-1.4.js HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-2f3f\"\r\nexpires: Mon, 21 Aug 2023 01:44:35 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 261C:4250:2197EF6:2261CB9:64E2BF2B\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 137\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.280990,VS0,VE1\r\nvary: Accept-Encoding\r\nx-fastly-request-id: d7d6fcfabf5239c40d81ea315820c21e738314d4\r\ncontent-length: 4298\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4298,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (516)","md5":"ad704c96c93bffa29d9d4af896282a1e","sha1":"f628e8656aad5f2cdc67f62207bfa3484b35341d","sha256":"b7e10e842d25dec6da67532bf342743f54d81dc738936fa35df84a0a73f33c31","sha512":"b3298a46ec46935159e234df449aba7620b312a18ed3e41b290582791b6f2416995f43755d827c0a316dd160fe4d2ec3657d50b6110ab3bcad9c9030ac56a7f5","ssdeep":"192:aTxfiLO8ayQ+mfJjk3GwR84x+2NSCBsCBCgMvQgNQqXkx89P4v84qDf8yl2A:ecLO8nSjkDx+RCBsCB+NQqXkW9P4v84w","tlshash":"2842848879c9341a079968b5091b098b7e35f87e90cd14fc71a4f8ea28f99ad433df74","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.856168Z","times_seen":71,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"playcdn.github.io/pkvn/194/Scripts/lib/AES-3.1.2.js","fqdn":"playcdn.github.io","domain":"playcdn.github.io","tld":"github.io"},"ip":{"addr":"185.199.111.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.947Z","timestamp":1692899878947,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":"GitHub, Inc."},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 21 Feb 2023 00:00:00 GMT","end":"Wed, 20 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75","sha256":"38:2C:D4:2D:33:C0:2B:C6:67:8E:65:7C:E1:7B:84:6D:04:73:A7:E7:91:CD:B3:5B:8E:AD:90:1A:F1:E1:1A:08"}}},"request":{"raw":"GET /pkvn/194/Scripts/lib/AES-3.1.2.js HTTP/1.1\r\nHost: playcdn.github.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: application/javascript; charset=utf-8\r\npermissions-policy: interest-cohort=()\r\nx-origin-cache: HIT\r\nlast-modified: Tue, 08 Feb 2022 05:23:18 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"6201fe46-3430\"\r\nexpires: Tue, 15 Aug 2023 03:41:33 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 5CE4:61CC:5C0229:5E7E53:64DAF193\r\naccept-ranges: bytes\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\nvia: 1.1 varnish\r\nage: 137\r\nx-served-by: cache-bma1669-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1692899887.279040,VS0,VE6\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 2760eebea571eddc2458e1063579c54857130357\r\ncontent-length: 4921\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4921,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (548)","md5":"4ff108e4584780dce15d610c142c3e62","sha1":"77e4519962e2f6a9fc93342137dbb31c33b76b04","sha256":"fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a","sha512":"d6eee0fc02205a3422c16ad120cad8d871563d8fcd4bde924654eac5a37026726328f9a47240cf89ed6c9e93ba5f89c833e84e65eee7db2b4d7d1b4240deaef2","ssdeep":"192:9pQGDuD690MPdz8Ui015ll1I57I2Tru6h0hNmHV+m9eIfyAqYfinNVYEUUFJZmUY:9OiT0wz8Uiw/1S7DegkcHpeIuScZbAX","tlshash":"b95296c936edb94263a63068587f7017b86b28b5945c4824f298d4ddf9a899dc03ae3c","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-05T07:15:15.46728Z","times_seen":8436,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/banner/banner-20210721.gif","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.559Z","timestamp":1692899877559,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/banner/banner-20210721.gif HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: image/gif\r\ncontent-length: 556771\r\nbpx-id: 1692540922514963817-646-64729-13-0\r\netag: \"3884e054417ed71:0\"\r\nlast-modified: Wed, 21 Jul 2021 15:01:49 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=aibttJ2fhg5dXcS%2FKJQaJfswECP7GXWw%2BPBBuAJERxUBIlbWD11nqnesbOj2wbzVjZKNzsM90IEV6h9INkIJAjeCNx6Y5HYRlC6Ihu%2F9q%2B83I3Rwn9Jxt6hOQ8Ec5Vic%2FUImuyVS\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3ea99fb50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":556771,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 150 x 150\\012- data","md5":"95f800331272dc3b570092da2c80c41b","sha1":"3c37192475f4e1bc662b3852bde9959821d0ca53","sha256":"ca134a5426ae8d3b871ff292dbac3ef6fcdfc140f51fcb0e33628529fda9e074","sha512":"bcb6feda3ac1920326e59fc359a586b32aa8456affe09b17b872f78fa9996672b83f1bbf8158bd958906209da481dce31dcb05a673c00ae3b0af0f412cfffe1d","ssdeep":"12288:DHaCl/ZaCb/uYFWj/JITycgnA+UFwo400obciB9jKZSnAfpF:DHa+a6wQydYwor0oosjoSAfP","tlshash":"80c4236ee5c05c61b9773cdac1f37770502cf47d3a4bea1ba956e492284322e48186df","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.269039Z","times_seen":11,"resource_available":false,"data":null}},"time_used":1476,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":894,"receive":582,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"zerossl.ocsp.sectigo.com/","fqdn":"zerossl.ocsp.sectigo.com","domain":"sectigo.com","tld":"com"},"ip":{"addr":"104.18.14.101","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-08-24T17:57:59.126957522Z","timestamp":1692899879126,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: zerossl.ocsp.sectigo.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 24 Aug 2023 17:58:07 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 727\r\nConnection: keep-alive\r\nLast-Modified: Thu, 24 Aug 2023 01:16:36 GMT\r\nExpires: Thu, 31 Aug 2023 01:16:35 GMT\r\nEtag: \"ba6f44c54626ff824ca974d688a9268d79ce5507\"\r\nCache-Control: max-age=544107,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb1\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 7fbd7b480d69b517-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":727,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"d2243508eb969bf6e9b96d5b09210517","sha1":"ba6f44c54626ff824ca974d688a9268d79ce5507","sha256":"57bab68b2976e0f6f90cc1656f706ead9ae03acc45d025502f9f6d8a6572a479","sha512":"9344efb4828ebf75ff3b5f72c1bb604355078a7a00f617420c0f50b38297431600fb72a09708600341dea1d26932b059c7baf9ccc89e92433ee5560a95fff560","ssdeep":"","tlshash":"910144469fdf3145c68d28851872e098205146e4c4f6987335aac9c63eb37b5de92474","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/bg/bg-info.png","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.378Z","timestamp":1692899878378,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/bg/bg-info.png HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/img/css/common.css\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 4009\r\nbpx-id: 1692540922554110189-646-64729-13-0\r\netag: \"5427cd37dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=OOOEAzpAuONBiSYSPTaDjZ0P4G%2FQEbm8SSyhQJNCzVeWw6yAMvZWCnVSpYcralA%2Fv3cbUXTylCSlG%2FGwmL8UkUMp7vL1HtrlRneKGjsn7SxHNBOYg0GiH88Lnk%2FYbbfdcN1FXUjc\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b43ea3ab50c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4009,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 767 x 25, 8-bit/color RGB, non-interlaced\\012- data","md5":"8c865a4eee40a8b253df2c4aebb13921","sha1":"de4ca283b05036709c8aac5b953ecb69697feba2","sha256":"7d379e44cbe7d7c60e338b81d8d955aeba135b7cdb95dcb9294e1db866ea384e","sha512":"528b8af15f0e293982350ca05757d659c78654ad23c5291f2980fbe756992fcc0339f80a9a4a0c0ecadda3aeca87873f00ee05560249bfd062141ab78b006188","ssdeep":"","tlshash":"e4814bccf96095a364d8a00568f2cc36acf318189ec1b1d7de6ef54a1de11f06a45bc3","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.271776Z","times_seen":8,"resource_available":false,"data":null}},"time_used":758,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":758,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:59.224Z","timestamp":1692899879224,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 31 Jul 2023 08:22:19 GMT","end":"Mon, 23 Oct 2023 08:22:18 GMT"},"fingerprint":{"sha1":"2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67","sha256":"B5:6E:61:9A:99:BF:5A:AB:FB:51:B3:9E:2C:B4:09:09:0F:85:51:48:71:37:BA:3A:7B:5C:71:53:34:80:97:58"}}},"request":{"raw":"GET /ajax/libs/jquery/1.11.2/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 33495\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 21 Aug 2023 20:42:09 GMT\r\nexpires: Tue, 20 Aug 2024 20:42:09 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nlast-modified: Tue, 03 Mar 2020 19:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 249358\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33495,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (32047)","md5":"5790ead7ad3ba27397aedfa3d263b867","sha1":"8130544c215fe5d1ec081d83461bf4a711e74882","sha256":"2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0","sha512":"781acedc99de4ce8d53d9b43a158c645eab1b23dfdfd6b57b3c442b11acc4a344e0d5b0067d4b78bb173abbded75fb91c410f2b5a58f71d438aa6266d048d98a","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9d:A4Ud4qhJvNPqcB47MfWWca98HrB","tlshash":"7793d8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","first_seen":"2023-03-07T01:02:51Z","last_seen":"2026-04-05T04:44:13.988821Z","times_seen":16249,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.358Z","timestamp":1692899878358,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/ HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:07 GMT\r\nContent-Type: text/html\r\nLast-Modified: Thu, 03 Aug 2023 11:36:10 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"64cb912a-112c\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":822,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text","md5":"030a0c33a0e81f797d1919f9dd876aac","sha1":"97e70b1d8cbe2e06c0c55cc4ec56e7f65ddb103e","sha256":"6c84a71432c0e7af9ddc9d0457cdd2a04708e8bf90daf0b977dbb2d81dd74b86","sha512":"3419c3c8798fc0db6c401840de198ef49a4251b1376fb92fecbe611e9eb0c09f84f7e25276c2f041d501a9f10354abe5732da30b22959a10979538276a6ae18d","ssdeep":"96:Bx8xHxHYTC4s8gE0NgNwatfmNW2iNrxKc:Bx6HxHYG4s8gE0IwatB","tlshash":"ee9196491eda9a49e58132c0e0b4f60c1157e3477ad1cca8b4feb1a9f7dcae818437b4","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:40Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1876,"timings":{"blocked":769,"dns":0,"connect":337,"send":0,"wait":337,"receive":0,"ssl":431},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/common.css","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.562Z","timestamp":1692899879562,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/common.css HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: text/css\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"59d322b0-1c37\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2022,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 (with BOM) text, with very long lines (345), with CRLF line terminators","md5":"bc8dffe6f2fc4aa306218ac5dfb407a8","sha1":"b83c19670a6d088b2256919263516b0e115551cb","sha256":"6ae0937a4fa1301b36ebd6264008a0e02c214e222a338cdb8b8645d3f936cc8c","sha512":"2adae60b0ec3bdfc61a49c50262fcecc8b370430277c6ebe0773288eb06d3a75708fdffade91fa55f9374705b4a3c4bd7d36695568d45d19941726056e84d91d","ssdeep":"96:IVuIHcb8vmx5r0Lyt1GCLapE9/1EznhWURechvxOOLL3dmjYSm/ZQafPyhteAh:ILHnux5rgyJ199EzUcph53wjNCahteAh","tlshash":"19e19c18f56170096353b4bfb7b71b046f3980265ae3491eb8b9a63a9fb102c96131cf","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.249107Z","times_seen":7,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/RequireConfig.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.576Z","timestamp":1692899879576,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/RequireConfig.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 4984\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-1378\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4984,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Unicode text, UTF-8 (with BOM) text, with CRLF line terminators","md5":"387a1f4c7ee645fb647e0af454971ca8","sha1":"959dfb5dca8aa7f91235d6f4322d615cbc6c6084","sha256":"327cea6ad9f72b5f2646c1904861ce24f204f6df0ef93839bc32df4d3646be4a","sha512":"ce3ae0d8198b0b834681e246ad4a91bf96e63cdccd99caf5437d7ee9b356a5bcfa83db8b26a8a3198ab292130820717bd935c00378c5a022cda40d69358a3ace","ssdeep":"48:X2etV0TitfNCqKYRHnK/PbO/kY3fqsnIg4DBPO0HN:ntZxYUHn+PbO/jfqsnzEO0HN","tlshash":"daa106512daed23b2c0567c75f32e55df7f45aeaa25af88af726ca51074063c3b012b0","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.292503Z","times_seen":8,"resource_available":false,"data":null}},"time_used":661,"timings":{"blocked":318,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jquery-1.7.2.min.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.568Z","timestamp":1692899879568,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/jquery-1.7.2.min.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 94840\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-17278\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":94840,"size_decoded":0,"mime_type":"application/octet-stream","magic":"HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)","md5":"b8d64d0bc142b3f670cc0611b0aebcae","sha1":"abcd2ba13348f178b17141b445bc99f1917d47af","sha256":"47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4","sha512":"a684abbe37e8047c55c394366b012cc9ae5d682d29d340bc48a37be1a549aeced72de6408bedfed776a14611e6f3374015b236fbf49422b2982ef18125ff47dc","ssdeep":"1536:8YRKUfAjtledhTmtaFyQHGvCXsedOgRc9izzr4yff8teLvHHEjam7W5X3yzSiLnM:VUb6GvCu09s2o2skAieW","tlshash":"b393e7d9b2d67123c7b731b850af510bb17698aa784c8c50f068d8e4be74a48907bf7d","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-05T08:17:11.860303Z","times_seen":19361,"resource_available":true,"data":null}},"time_used":1016,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":398,"receive":618,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/common.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.589Z","timestamp":1692899879589,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/common.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 3795\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-ed3\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3795,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with CRLF line terminators","md5":"563badafb6600a9d75ae435b273d9ae2","sha1":"4f34c4867c39fa488f107e02bc361245ffe627ff","sha256":"a30611f423cc75684f3a7e8b4bab1ce8a29602a5c5287f83bd037dec13fcb545","sha512":"dd9f0ef6eb9259e20b13e155ae9e58f00876a94375b3661e6ad86bd6e81db4d1ebc24062cda45ae1a9132188bd406ea936d9e03424fbdc936122cd7350e11197","ssdeep":"96:dSM1DQlILO1SPhQhEr4w/O8nqSGrSuWS2VwohT6SAfw:dyJ1SPhQha5qSVuWSmT6SF","tlshash":"3c910438d63935604ce237b8701a4d452adfac27fc0981b129d03c18e5d8f69e6ceeb6","first_seen":"2023-08-24T19:58:40Z","last_seen":"2026-03-07T05:39:35.743916Z","times_seen":14,"resource_available":true,"data":null}},"time_used":1659,"timings":{"blocked":656,"dns":0,"connect":329,"send":0,"wait":332,"receive":0,"ssl":337},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jquery.easing.1.3.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.579Z","timestamp":1692899879579,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/jquery.easing.1.3.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 8097\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-1fa1\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8097,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Unicode text, UTF-8 text","md5":"6516449ed5089677ed3d7e2f11fc8942","sha1":"82e40d060bc269a6dde20c3990ca5a4fea6ca754","sha256":"0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34","sha512":"6ebae34e9f46e8c90a5f94235f0c00424b1c7c5a4a8b7a248f267f337bc6c3083da88d66b28cfbcfe11b4012d7b139d52b73ce8d80461dc42f5f7e0614aaffec","ssdeep":"192:pTEOrsUruTgMz3R3t+1rAO/KgwOrsUruTgMz3R3t+1U:9zrsUruTvLBtSlrsUruTvLBt/","tlshash":"4c023349a2e0a73a4159f7e4773f0e4bf02e7819662e8907ec58f09d716d225c73ac2d","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-04-05T08:29:25.060601Z","times_seen":14353,"resource_available":true,"data":null}},"time_used":1697,"timings":{"blocked":668,"dns":0,"connect":339,"send":0,"wait":341,"receive":3,"ssl":344},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/Default0.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:58:01.278Z","timestamp":1692899881278,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/Default0.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-04-05T07:42:16.869675Z","times_seen":41229,"resource_available":true,"data":null}},"time_used":333,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":333,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jQuery-noConflict.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.591Z","timestamp":1692899879591,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/jQuery-noConflict.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 133\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-85\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":133,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Unicode text, UTF-8 (with BOM) text","md5":"6db916655ab029f509cdecf00f4431a1","sha1":"d57e70f6573e8346085679548978d0c1c81d7ed4","sha256":"252036aa9185151c188b760dfd1ce735cac0a70c4d60dc4088b5255f4ab72f39","sha512":"207f896575dbd6c3891bbbe1fd010d75bbdb2cd4a784db2d692576de85a2fc89cb654ea1630fb123c40e0d0a0f05d55a9fbdfe5b9037b3c5204d0ade20abde02","ssdeep":"","tlshash":"35c02b3c7eae6004c1323864d40f0d1d5404ed23143a808ec24c0cc8fd1432c668183e","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.846278Z","times_seen":53,"resource_available":false,"data":null}},"time_used":1252,"timings":{"blocked":915,"dns":0,"connect":0,"send":0,"wait":337,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/site","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.593Z","timestamp":1692899879593,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/site HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 370\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-172\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":370,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with very long lines (370), with no line terminators","md5":"149086e308ceb4151b8a1baa796c9d72","sha1":"91b223699d171d4be895d8af7096fd2848e066f5","sha256":"44cfba4d5e7a4543ef64de5e995b76837f186b9f833d12719b1c73fa91d3bf83","sha512":"7620795a5cae8a3f2034f7e8d6359bc9a2bd942bb273c1691bfd5b5cb8751cc0a544c13e93aedc5369fc145d44ba05d5563ab9488b77aff35048817b205ae6cc","ssdeep":"","tlshash":"bae06158781258e3a9072398441a098c0d10967f054ca1a837167dc8bed5d0c96a46a7","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.294416Z","times_seen":8,"resource_available":true,"data":null}},"time_used":1313,"timings":{"blocked":984,"dns":0,"connect":0,"send":0,"wait":329,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/login.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.592Z","timestamp":1692899879592,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/login.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 6856\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-1ac8\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6856,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Unicode text, UTF-8 (with BOM) text","md5":"2fedc15530f146dae3e0109b743ff29f","sha1":"562b10166578bc3cff5613ffa0f8f16a500b1f7b","sha256":"111861bfcbbbad10183810038bb7440ffe7e933bc81dce0917379e81feaa987b","sha512":"72d12d7969be70381aa09fbe48c235835d5592b04048a1a21b010781433fe4784675db28c6dc41a22c3414ee509381b6ac112a71a3a1c801e3b5f29f1c92cd41","ssdeep":"96:0Vc6o/VcQi3VYlNCTwIVf82AZqnW7i2CCGlusip0t0tTfdBJoK+ZeOIUfWL:AYgCGlId5L","tlshash":"86e15484f34c0d460aa6616a480f10ce617dd17394358cbbbe68eb04e8f496f677da2b","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.84724Z","times_seen":52,"resource_available":false,"data":null}},"time_used":1320,"timings":{"blocked":984,"dns":0,"connect":0,"send":0,"wait":336,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/translate.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.594Z","timestamp":1692899879594,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/translate.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 3815\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-ee7\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3815,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Unicode text, UTF-8 (with BOM) text","md5":"21139755d7f2952eca6af919ea71ae4c","sha1":"db78818465be7a9e5f07a2a0cf985ae8fd58cb00","sha256":"cfc6a640d2485e7fe8d89a771c2e2196a53a0fdef3109caad545a0cba5faada9","sha512":"51b1013b42b2aeb3562bfc0d9069fdb81c9314f58c0319caa3d6fbe7002a5cf6a97315167a5889f7c02b2215421701a1fb9cf5e33c79a0a22c4d5d17399a6177","ssdeep":"","tlshash":"04719b59a3bc264ec15a70b2b28f50cda27cc07102256e60bf40e692ecfc4ad47add2d","first_seen":"2023-05-05T06:49:31Z","last_seen":"2025-01-07T02:36:24.849156Z","times_seen":53,"resource_available":false,"data":null}},"time_used":1336,"timings":{"blocked":997,"dns":0,"connect":0,"send":0,"wait":339,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/utils.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.595Z","timestamp":1692899879595,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/utils.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 4026\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-fba\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4026,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text","md5":"ba36d8e62e7a844e093889212dbbc16c","sha1":"430e764e63dcbb4186c1da709b825e38657ce9e4","sha256":"ca5a2b097c444dc437d7abc678b80d70b942ce192883a31f5c9dc678dda1f03f","sha512":"0a7fc595a6bd6b847e8f985168f693088b2a5f9563a5adcf34f8f7553947aec9b0b6f2b19caf5844fa0e31d00d9877bdb48ef809946a458a72455116c2c9af44","ssdeep":"48:AF+MHO54U+CbCU+jcrTYETpV5w6XtX+Eyv/+sjRt5a7PgLbyY7MP2+HBTbhYjZ/t:Ad5laxfyN9t0ubf7yhAZ/aVUwy6o","tlshash":"7191830531b1953c450e3fa99d7f1618a437bc02b0b98a25bd0cfd9a384ca1de766dbe","first_seen":"2023-08-24T19:58:40Z","last_seen":"2024-09-19T22:16:51.29536Z","times_seen":8,"resource_available":true,"data":null}},"time_used":1348,"timings":{"blocked":1013,"dns":0,"connect":0,"send":0,"wait":335,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/aes-handler.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.621Z","timestamp":1692899879621,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/aes-handler.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-04-05T07:42:16.869675Z","times_seen":41229,"resource_available":true,"data":null}},"time_used":1615,"timings":{"blocked":1286,"dns":0,"connect":0,"send":0,"wait":329,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/info/site?noext","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.897Z","timestamp":1692899878897,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /info/site?noext HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: application/x-javascript; charset=utf-8\r\nbpx-id: 1692899887398069763-646-64729-13-0\r\ncache-control: private\r\nvary: Accept-Encoding\r\nx-aspnet-version: 4.0.30319\r\nx-powered-by: ASP.NET\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=gCP%2FLH51b5mltrZ8kSRWQitMDufyVdQFpZOj3qvkodtuRDoHEJsRUGNZ5oP417m%2B2xjaK5o%2FFvoAXY6LrffygH20oJUP8Jo%2BMBBsA7h8ocm65xE%2FalBX6Z%2FAec6jGAyILaset82Q\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b472f5cb50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":995,"size_decoded":0,"mime_type":"application/x-javascript; charset=utf-8","magic":"ASCII text, with very long lines (370), with no line terminators","md5":"17cd6760e750cbf3763fc6572440e319","sha1":"d4b85438a05288416a11ab08b4045352a33e5293","sha256":"22d93318790dd99cec6ed836184951e6398179697650904ac106d926dec61997","sha512":"a1388123123d8e81b70de219b615dee73157077572226523f8a1395f81d6074684389db67e5102e2604a25c25cfa4f76e2b0e69c6f440928e7d21a24b5f7f8ea","ssdeep":"","tlshash":"52e0f131357782a180801920ca1b1d4c47301e666614e5894a0450ccee2478553c0e52","first_seen":"2023-08-24T19:58:40Z","last_seen":"2023-08-24T19:58:41Z","times_seen":1,"resource_available":true,"data":null}},"time_used":325,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":325,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jquery.cycle.all.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.587Z","timestamp":1692899879587,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/jquery.cycle.all.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:08 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 53574\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-d146\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53574,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with CRLF line terminators","md5":"8ed87cb5cb0ae79912feb942782ce51d","sha1":"a36bb7a2c81737cfe5d030aeb19f5074ca6285a7","sha256":"fe9ac5660c18436d37f9fdac1dad7770d80394fdf1ec1738e00dbc2477fc2f61","sha512":"de0eb89d67b5df18ff797a926635446bb1fbb3bc4e13e9a653870ac122e57c472fb4ace27cb4a066bdb751e035540823ee170a6f398855a380439067378eaea6","ssdeep":"1536:OMONcxKSunuRjigSVOpejC7zw5c+40YQynQi7s:OrgSVOpt7zKcohyn/s","tlshash":"f733774c324eda1a96923353a6bb9c8dee7cc023d50685bdf19d848e2790c1c7317de9","first_seen":"2023-03-08T19:46:22Z","last_seen":"2026-03-07T05:39:35.742401Z","times_seen":30,"resource_available":true,"data":null}},"time_used":2356,"timings":{"blocked":659,"dns":0,"connect":337,"send":0,"wait":671,"receive":346,"ssl":341},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/RSA-1.4.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.622Z","timestamp":1692899879622,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/RSA-1.4.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 12095\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-2f3f\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12095,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with very long lines (516)","md5":"ad704c96c93bffa29d9d4af896282a1e","sha1":"f628e8656aad5f2cdc67f62207bfa3484b35341d","sha256":"b7e10e842d25dec6da67532bf342743f54d81dc738936fa35df84a0a73f33c31","sha512":"b3298a46ec46935159e234df449aba7620b312a18ed3e41b290582791b6f2416995f43755d827c0a316dd160fe4d2ec3657d50b6110ab3bcad9c9030ac56a7f5","ssdeep":"192:aTxfiLO8ayQ+mfJjk3GwR84x+2NSCBsCBCgMvQgNQqXkx89P4v84qDf8yl2A:ecLO8nSjkDx+RCBsCB+NQqXkW9P4v84w","tlshash":"2842848879c9341a079968b5091b098b7e35f87e90cd14fc71a4f8ea28f99ad433df74","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.856168Z","times_seen":71,"resource_available":true,"data":null}},"time_used":1648,"timings":{"blocked":1308,"dns":0,"connect":0,"send":0,"wait":340,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/jquery.cycle.all.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.548Z","timestamp":1692899877548,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/js/jquery.cycle.all.js HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692887833664992121-646-64729-13-0\r\netag: W/\"7d686038dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=PsLNv5jAMxFiLMD6L8lgWtjJ3DKx7VXrL6rUGno7XEZzksC%2FoJ6eCdd%2BM%2Bqk2QI55spIWKFZXXhGk6LHKLe%2FWd0tJAB8xQtzAcHGCt%2BBoTIfp9lWPMnzyZkLwC65H2uy6kjxwqAr\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9973b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27646,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"8ed87cb5cb0ae79912feb942782ce51d","sha1":"a36bb7a2c81737cfe5d030aeb19f5074ca6285a7","sha256":"fe9ac5660c18436d37f9fdac1dad7770d80394fdf1ec1738e00dbc2477fc2f61","sha512":"de0eb89d67b5df18ff797a926635446bb1fbb3bc4e13e9a653870ac122e57c472fb4ace27cb4a066bdb751e035540823ee170a6f398855a380439067378eaea6","ssdeep":"1536:OMONcxKSunuRjigSVOpejC7zw5c+40YQynQi7s:OrgSVOpt7zKcohyn/s","tlshash":"f733774c324eda1a96923353a6bb9c8dee7cc023d50685bdf19d848e2790c1c7317de9","first_seen":"2023-03-08T19:46:22Z","last_seen":"2026-03-07T05:39:35.742401Z","times_seen":30,"resource_available":true,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":342,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/aes-handler.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.621Z","timestamp":1692899879621,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/aes-handler.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-04-05T07:42:16.869675Z","times_seen":41229,"resource_available":true,"data":null}},"time_used":1615,"timings":{"blocked":1286,"dns":0,"connect":0,"send":0,"wait":329,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/Default0.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:58:01.278Z","timestamp":1692899881278,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/Default0.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-04-05T07:42:16.869675Z","times_seen":41229,"resource_available":true,"data":null}},"time_used":333,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":333,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/bg/bg.png","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:58:01.287Z","timestamp":1692899881287,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/bg/bg.png HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/asset/common.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":162,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"1b7c22a214949975556626d7217e9a39","sha1":"d01c97e2944166ed23e47e4a62ff471ab8fa031f","sha256":"340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87","sha512":"ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5","ssdeep":"","tlshash":"59c08c6e2613bd4cc6a3217522c3b490c09aa3a7a4ea46214840805331cb29a8ac7396","first_seen":"2023-03-10T20:17:28Z","last_seen":"2026-04-05T07:42:16.869675Z","times_seen":41229,"resource_available":true,"data":null}},"time_used":335,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":335,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/New%20Game%20Gaple.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.627Z","timestamp":1692899879627,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/New%20Game%20Gaple.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 118849\r\nLast-Modified: Fri, 22 Apr 2022 11:30:45 GMT\r\nConnection: keep-alive\r\nETag: \"626291e5-1d041\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":118849,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:22 18:30:07], baseline, precision 8, 772x288, components 3\\012- data","md5":"0283af206f91fd485bc27a712666d2de","sha1":"aec97b09a6634724c8a7e878da3e087b7882a9d2","sha256":"2af9745182c730a8c8dd0367f2ef30a7e192f941a4e98f00a4acab0d46e96eac","sha512":"c013fbea58d70fe459312c98871778fa6e3a0bfc46028cbbe083111ec2db82d7342eb5d645605e3835084a0a69f1110dbba8815484bbee8cc7270742a4404d35","ssdeep":"3072:kUmUryH5bi+7z+P7rbUcMwfvOKxDbTLeaA:kXVpuXK3","tlshash":"5ec302c57a06ed60eab87b397db9c81123239945d313ce14785cce207f74eb82c4ea95","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.296639Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2311,"timings":{"blocked":1636,"dns":0,"connect":0,"send":0,"wait":336,"receive":339,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/common.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.549Z","timestamp":1692899877549,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/js/common.js HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692849567344231535-646-64729-13-0\r\netag: W/\"16be4a38dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3Zpz3Qu%2BvVXjUv%2FuiSxyxEpr3Y6FciFMV26O%2BZsVPuHGJHPHbtw4V9%2Baucf%2BmanvbrnHTaXxYw6WXk2vwJUCcY%2F5Ags3%2FSfR%2BRcMgQvqcXAKlD%2F3l4Eqr8lA%2FP8ir6ONbNqw9w%2FT\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9975b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":96721,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"563badafb6600a9d75ae435b273d9ae2","sha1":"4f34c4867c39fa488f107e02bc361245ffe627ff","sha256":"a30611f423cc75684f3a7e8b4bab1ce8a29602a5c5287f83bd037dec13fcb545","sha512":"dd9f0ef6eb9259e20b13e155ae9e58f00876a94375b3661e6ad86bd6e81db4d1ebc24062cda45ae1a9132188bd406ea936d9e03424fbdc936122cd7350e11197","ssdeep":"96:dSM1DQlILO1SPhQhEr4w/O8nqSGrSuWS2VwohT6SAfw:dyJ1SPhQha5qSVuWSmT6SF","tlshash":"3c910438d63935604ce237b8701a4d452adfac27fc0981b129d03c18e5d8f69e6ceeb6","first_seen":"2023-08-24T19:58:40Z","last_seen":"2026-03-07T05:39:35.743916Z","times_seen":14,"resource_available":true,"data":null}},"time_used":356,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/Slide%20BandarQQ%2016%20game.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.628Z","timestamp":1692899879628,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/Slide%20BandarQQ%2016%20game.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 357682\r\nLast-Modified: Fri, 21 Jul 2023 11:54:21 GMT\r\nConnection: keep-alive\r\nETag: \"64ba71ed-57532\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":357682,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2023:06:28 19:20:11], progressive, precision 8, 766x288, components 3\\012- data","md5":"8e1ae2e36bd26204cb4d1a956387b2ae","sha1":"cf4d20352c6f3a1ac1ff1e1da5ed0dd8d048fec3","sha256":"53c63b08d396950f449a85a5a8cb9ac1c2f1fe1f1e6711ba08d4433bb1fa0dbb","sha512":"c0db4d7b7f4e4efb43515ed57e496bee11291eeb9faa6707c064dd9a74df2c9f6da5b25399c0ac0f29daeab71617f5a7985ac5df94c5e6eefc4c7d09075ac2d3","ssdeep":"6144:cW9DfuecweYr6h0i7CmOT132DUoBtJQpVfw730Yi5NHTzTcsXHmGM11/tgf3:LScr6h3CvT1wtrJQpVfwoHNfIGotgf","tlshash":"e974226e7209ba51eabe3e37a003dab726757e7086a213153ccc7c073f543154a6973a","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.304078Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2654,"timings":{"blocked":1635,"dns":0,"connect":0,"send":0,"wait":336,"receive":683,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/slider%20partner%20bandarqq.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.631Z","timestamp":1692899879631,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/slider%20partner%20bandarqq.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 113036\r\nLast-Modified: Sat, 10 Apr 2021 02:10:23 GMT\r\nConnection: keep-alive\r\nETag: \"6071090f-1b98c\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":113036,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:04:09 18:03:28], baseline, precision 8, 772x288, components 3\\012- data","md5":"8fd22d45dee403a2388dfb5361e7bf8a","sha1":"f201750b039d21eb7a9df5416e16f4e75adbfac9","sha256":"d38e7b6afd0e4abc5660a4ddb684172284d2be79355ccf78c720553129be4ee7","sha512":"82fc312c092e9319ae474f34f1624dbaf0a791ae4991d2d9a19c7df211750993141b78dada699f05375bd211111650fa47227dd34187bfa553934cb043aea2d0","ssdeep":"1536:KM15M10suaaI0Ead4gljhFI0i3lluHwImn1FtA/vgKPXWvMvzOt7+5s6+Koj1kj/:bk4a6qgl7i3yH2FtA3gkWv77+5slKoG","tlshash":"73b3021e89334c65f5e99272406bcbe642301eb94af32781b85c7985377b9d08eaf707","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.306605Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2658,"timings":{"blocked":2306,"dns":0,"connect":0,"send":0,"wait":345,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/slide%20bdrqq%20bonus.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.629Z","timestamp":1692899879629,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/slide%20bdrqq%20bonus.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 114273\r\nLast-Modified: Sun, 30 Aug 2020 10:09:47 GMT\r\nConnection: keep-alive\r\nETag: \"5f4b7aeb-1be61\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":114273,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=288, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=766], progressive, precision 8, 766x288, components 3\\012- data","md5":"81c186bfaf18d7c2bafd2d83d728debb","sha1":"14fcc8b21258edc8b225c2036dc230eb7a6455c5","sha256":"98134e6d96e2159ef22c6a425093911aa7adaa9341e17ccff85c30989e841ad7","sha512":"2a4dddee872ee80d56104ca5334b73f917de32dec6961f77647fd020328767b29c976e7a17919d9a8dba114b21bfa66f1da04b603037e8b97a4e72496c882e94","ssdeep":"1536:VqOsDnY28/MsduBLwf1rifMoZmJboXrD0G1k1PSexIoSV4Wz0mGDuzqAoK:urNuMswBLUpifMLi7wGy1PSacVA3SznZ","tlshash":"d5b30226ea8b4eb1f6ce0ab4d5d9c0da2333af057593e79075dc3653bb603704a22356","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.302746Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2666,"timings":{"blocked":1642,"dns":0,"connect":0,"send":0,"wait":340,"receive":684,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/slide%20bandarqq%2017%20agustus%202023.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.624Z","timestamp":1692899879624,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/slide%20bandarqq%2017%20agustus%202023.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 77669\r\nLast-Modified: Thu, 03 Aug 2023 11:34:32 GMT\r\nConnection: keep-alive\r\nETag: \"64cb90c8-12f65\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":77669,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 772x288, components 3\\012- data","md5":"ba3ec64f7c5aa05afd382e03e38e06c3","sha1":"2b9747b5f5db66e4289566024ff5a879a50903f3","sha256":"fc851c3801ace05bee68e9a942f34bb00a9fc5503c31ce111a1486e870cc463f","sha512":"0268cb36284d6634c984ee30a0a81113d9077f9422d18856d6cb7e88121263009817ac546f99beb90015cb9abbc73b9db237d45fb416dbcaa1211d2e14b0f302","ssdeep":"","tlshash":"","first_seen":"2023-08-24T19:58:41Z","last_seen":"2023-08-24T19:58:41Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2673,"timings":{"blocked":1995,"dns":0,"connect":0,"send":0,"wait":335,"receive":343,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/slide%20bandarqq%20depo%20ewallet.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.627Z","timestamp":1692899879627,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/slide%20bandarqq%20depo%20ewallet.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 140281\r\nLast-Modified: Thu, 27 Jul 2023 10:05:47 GMT\r\nConnection: keep-alive\r\nETag: \"64c2417b-223f9\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":140281,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=288, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=766], baseline, precision 8, 766x288, components 3\\012- data","md5":"6cc4c43d103321b708c2cc092ef1a195","sha1":"30f9fac6c1966dc75f143e773925c86fa4305b55","sha256":"2de966a07da83c4aef3e970dc5742f4c8a4288f9c265a46fcd98ccc2a7da99f2","sha512":"da4378e329c34177955e080779a4dcadd20217d072cc34ba5297cca05e741bd0107ceaa0a35f007c6139cfe54700365b55ce76cb12d41b0fefde0b138f98b9b5","ssdeep":"3072:MHygXIaVjkBFjU/Hgn8Q7pYfm8KmwhHb2MgTF:MH5I2Sv8qp98K5b2tTF","tlshash":"0ed30226aa405cb5e6ee36f90976c75783504ce0b2835bc9385d8c45b7f8fd39a1c291","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.301216Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2957,"timings":{"blocked":1636,"dns":0,"connect":0,"send":0,"wait":659,"receive":662,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/AFB%20BandarQQ.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.625Z","timestamp":1692899879625,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/AFB%20BandarQQ.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 139520\r\nLast-Modified: Mon, 19 Sep 2022 04:56:35 GMT\r\nConnection: keep-alive\r\nETag: \"6327f683-22100\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":139520,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Windows), datetime=2022:09:17 13:07:31], baseline, precision 8, 772x288, components 3\\012- data","md5":"391139da587efb5ac2873dec64693372","sha1":"89d49d1c32eeca0c7bcbf6bde8de6ef7919ddede","sha256":"f991a4ddf5f9bd13b5ea57d81cf3cfdf544ac287b1ebce813686bbf3bd093ea6","sha512":"1d4185e265351ffdae7582f3450360248ce1d20c90dc2f0e071817ad46265c4f71a59e3d98baca03ac34956929e32c96acf9c0eb9a00c13140ad315fb98804ed","ssdeep":"3072:AZXQ2CMe5ND9Pp1FPeXFUxejQy1Fa0T4HmUnsHZECEjcr0:AZAVDBR1Fm6kjQIR4HmUsHSfjcr0","tlshash":"58d30215f9034ed1d9d6333290fcfbc296138645a8f397c6b65ca518bf34a9248b93e2","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.307781Z","times_seen":8,"resource_available":false,"data":null}},"time_used":2998,"timings":{"blocked":2658,"dns":0,"connect":0,"send":0,"wait":337,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/slide%20bandarqq%20new.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.626Z","timestamp":1692899879626,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/slide%20bandarqq%20new.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 121620\r\nLast-Modified: Sun, 30 Aug 2020 10:09:43 GMT\r\nConnection: keep-alive\r\nETag: \"5f4b7ae7-1db14\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":121620,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:08:30 14:18:07], progressive, precision 8, 772x288, components 3\\012- data","md5":"e9d41cc803ceb493adb47977ebeaa988","sha1":"6c4d026d45c22bce68a58d61f768ff28d3663c6b","sha256":"3464077394951987b7926f01feb220cdfeb8ad25dbde4122d4354612fb394d69","sha512":"fecb4c7ceeaddde490862dab4111d3d0f49d10e93fca38068d011dc53d32b8811b7a84a2da556c7ffd51bdedf845308a26f34670975d3143b572430e9d1563a0","ssdeep":"3072:EH3KH3lM9HKb57wkLXWtyznGeEolutljkYRM+Jt4W:6oSIVvLXInb1lvh4W","tlshash":"a7c30238ab76de72e9e0827510eac6d197627a29faf3f943315c5d0237a42c015825eb","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.298282Z","times_seen":8,"resource_available":false,"data":null}},"time_used":3004,"timings":{"blocked":2665,"dns":0,"connect":0,"send":0,"wait":336,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/Slide%204.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.630Z","timestamp":1692899879630,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/Slide%204.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 69940\r\nLast-Modified: Thu, 10 May 2018 12:47:43 GMT\r\nConnection: keep-alive\r\nETag: \"5af43f6f-11134\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":69940,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 766x288, components 3\\012- data","md5":"d2128440b03d5551c12fc2c18bb2e9c8","sha1":"d1ac0fa59a08218e983b93eea685bfb26b81deb6","sha256":"e79886f28554b36dcafab95d1507c0bf67a6d56e6b93729676d27b9a7b7c28ae","sha512":"53b8053103c40c7568b1497da2e205b2f1e6cc69661a6bc3766532d9ad826e0e616fd5b114fb8099d20293c4819eccfca3351fbf9642a39e9523ab0cc34c414f","ssdeep":"1536:2khpVHP59NopN2n9L48uWxtJBQ8pcDWXvR7Srg82xyh+6vNFh:xhph5mNW9RBB/Z7b8AyrFh","tlshash":"6063028b048d64b4b84ec4de17b215e383ca6a01dee0515f86f5d87e34fe06238a7d36","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.305237Z","times_seen":8,"resource_available":false,"data":null}},"time_used":3015,"timings":{"blocked":2668,"dns":0,"connect":0,"send":0,"wait":346,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/jquery.easing.1.3.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.547Z","timestamp":1692899877547,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/js/jquery.easing.1.3.js HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692887833140167269-646-64729-13-0\r\netag: W/\"c4d86f38dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:13 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=pYP1873KaRKgLpxWXtVrywEyTiYVtDB44aTg9DpsmOYGtX%2Fl%2FhmoeTv08GjFnkcLnwZXcyH0FK%2BYxZLMlkKdW4fnlS1qRrQ7TXNOr%2B8kBDaDoGVp0glvRnY%2BPkMRvY7WUl8hoD7K\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e996bb50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":225188,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"6516449ed5089677ed3d7e2f11fc8942","sha1":"82e40d060bc269a6dde20c3990ca5a4fea6ca754","sha256":"0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34","sha512":"6ebae34e9f46e8c90a5f94235f0c00424b1c7c5a4a8b7a248f267f337bc6c3083da88d66b28cfbcfe11b4012d7b139d52b73ce8d80461dc42f5f7e0614aaffec","ssdeep":"192:pTEOrsUruTgMz3R3t+1rAO/KgwOrsUruTgMz3R3t+1U:9zrsUruTvLBtSlrsUruTvLBt/","tlshash":"4c023349a2e0a73a4159f7e4773f0e4bf02e7819662e8907ec58f09d716d225c73ac2d","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-04-05T08:29:25.060601Z","times_seen":14353,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/core/Scripts/RequireConfig.js?v=55.194.0","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:58.432Z","timestamp":1692899878432,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /core/Scripts/RequireConfig.js?v=55.194.0 HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692860076731568394-646-64729-13-0\r\netag: W/\"c1e46e1249bed71:0\"\r\nlast-modified: Mon, 11 Oct 2021 02:38:28 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=0rmmSINUQ3p%2BxMG45sdSfkjY%2FA9AhUmPlt%2BxIKBifwzP8126rQA0vFEH%2Beuf3%2BT9mxlplEEwENbVUoJ7rVICK5ZVwVgcXHxqbxDmzNU1vNjVnaU1cslA9ARpgQnUiAWxbzEeg15j\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b444adfb50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5299,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5660), with no line terminators","md5":"4e3b67490972aedb2c446947f1298582","sha1":"b34f93336fe61e41b6140b5734f3a071d775b93d","sha256":"480e6e986d3fc8cde4dc5781af9cd01e8e5f25f7ce43242db33cf1921d571b49","sha512":"e17b13d79745d805f275336ade2348d2b24c268388dcd6da6fb0aa5e27156b7480c2e9da540b2f31bc06a942236572d1d3f2a908e77b6630eef9175e9601be96","ssdeep":"96:ptsDd60Qc93nIY70t3wvNxVzt/zDFGwXaDN:ptJ58hZh8N","tlshash":"b5c19e620cb9e53b2c0537d34e13a55eb3f36faa7145e056f72ad8504745a3cbb01ab2","first_seen":"2023-07-09T00:33:35Z","last_seen":"2023-11-22T23:13:24Z","times_seen":7,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":332,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/rsa-handler.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.622Z","timestamp":1692899879622,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/rsa-handler.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 327\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-147\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":327,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text","md5":"279dd9c14c3276f6b1be33573ff54d9f","sha1":"9bb3a73b00c0f8642d9a91410cb4ab7cacf2f9d3","sha256":"51c97d8d550be4487eef4eabbd5cdea2786872f031c3cbfc4e01e50cba3de22a","sha512":"71834fb266f037fda37ccbd14b1e2396439f84ec20a2d3c49629cd36b72c3ef319df63b46cf21e647758343993339ee40a55f5afed81d0cca99edd49ca1445b9","ssdeep":"","tlshash":"31e0d82a2cb56325d5053ff5c11f0489942f8c1f301406597809fdc6dc5c22ec703c2d","first_seen":"2023-03-10T04:20:59Z","last_seen":"2025-03-14T05:58:02.872135Z","times_seen":71,"resource_available":true,"data":null}},"time_used":1626,"timings":{"blocked":1291,"dns":0,"connect":0,"send":0,"wait":335,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.world/","fqdn":"www.bandarqqku.world","domain":"bandarqqku.world","tld":"world"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-08-24T17:57:56.932Z","timestamp":1692899876932,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.world","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 11 Aug 2023 06:09:34 GMT","end":"Thu, 09 Nov 2023 06:09:33 GMT"},"fingerprint":{"sha1":"0E:07:87:E4:62:D2:F7:3C:ED:8B:4B:51:C9:C4:AB:14:87:83:4F:BC","sha256":"DA:AA:1D:4D:49:F1:2B:95:66:1A:E5:8F:F8:22:DC:43:72:C6:59:BB:B0:35:F1:4B:10:19:65:DD:EB:A2:01:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.bandarqqku.world\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Thu, 24 Aug 2023 17:58:05 GMT\r\nlocation: https://www.bandarqqku.tech\r\ncache-control: max-age=3600\r\nexpires: Thu, 24 Aug 2023 18:58:05 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=CzCXqipWtbvbsohgeAQRwYLbIsHmtGBOF7%2F829J%2BxKI0km0tHTbtDpwTmVA9VYyNksUq5ZAJcla1L%2B8Hp1pJBddOk0jhWw56C3Qqj%2FsysHpTYZEvf5F6rFQs1pjOojYKGWNcnN1PUg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3b0d01b511-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":16170,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":22,"dns":2,"connect":1,"send":0,"wait":6,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"bandarqqku.world","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/core/Scripts/lib/require-2.1.15.min.js?v=55.194.0","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.543Z","timestamp":1692899877543,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /core/Scripts/lib/require-2.1.15.min.js?v=55.194.0 HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692887832026191618-646-64729-13-0\r\netag: W/\"ec5fd683bba5d51:0\"\r\nlast-modified: Thu, 28 Nov 2019 07:14:46 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Bd7WVntBmLnyddDhSSujGtauht5y6tvTEwR7VC%2F%2B9pNuiTi8JqgsHI0s%2BNpkjOxI5u9bCDH0B9pRAybEcagtZNImKldYbUAe5T8hxZxxNfP0l45VUzqzvLXFWhQZ3FVqr7NZAEFQ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9964b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19181,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (676), with CRLF line terminators","md5":"0be063631689d2d3eba6d5938f2bc46e","sha1":"b6578bee8ec3f5d2e72b1acacb728e7bf4464c51","sha256":"f707bb68884dfb89b40c184c04587a16f9dc115dc4c1cd14a62dfc57b46eba13","sha512":"d2e3ba41adcb30977e85e85313553f4b1d27829fc67c591eaa2afd0f1af83c9941b17d4b8095070468d77ff9864dea879ce529942787705dc38d61c48609325c","ssdeep":"384:FRZ1UX5juIhU/t1MN3u2prvMKL+E0MvRy9zf5hfiHJj5wDDRsPcujEayoeY9N:p1UX5KuU/t1MN3u2prvL+ENvo9zfjfyJ","tlshash":"698241d573cd352ba146f2a1d9bfc889337ec97a02d5c49cb54cd0e4a8644788b7acac","first_seen":"2023-03-10T04:20:59Z","last_seen":"2026-04-03T11:11:47.095934Z","times_seen":184,"resource_available":true,"data":null}},"time_used":776,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":774,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.me/","fqdn":"www.bandarqqku.me","domain":"bandarqqku.me","tld":"me"},"ip":{"addr":"172.67.190.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-08-24T17:57:56.907Z","timestamp":1692899876907,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.me","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Thu, 29 Jun 2023 12:08:12 GMT","end":"Wed, 27 Sep 2023 12:08:11 GMT"},"fingerprint":{"sha1":"A6:70:65:00:77:D4:2B:17:2A:06:04:1A:0D:72:A6:42:C2:31:04:D9","sha256":"7E:85:3D:B2:16:71:EC:23:0D:44:E1:BD:AD:7E:15:AC:75:A0:A1:46:1B:5E:81:21:BD:1F:D8:23:25:FD:AB:79"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.bandarqqku.me\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Thu, 24 Aug 2023 17:58:05 GMT\r\nlocation: https://www.bandarqqku.world\r\ncache-control: max-age=3600\r\nexpires: Thu, 24 Aug 2023 18:58:05 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=N7GBwUUlX2bDpMVGd09To2kPOHnlAVfiJ8hcMMD%2BJNtedQdc7vu2nNFrSAFaYpijN89%2F2XK3GfT%2BDkEti0EaRH7GB%2FcTg71tvIrqDHsSuJYowC0%2FRjYFqd042ABm6cLow24Kdw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3acf361c0a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":16170,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":14,"dns":1,"connect":1,"send":0,"wait":6,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-08-24T17:57:56.971Z","timestamp":1692899876971,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\nbpx-id: 1692899885459952055-646-64729-13-0\r\ncache-control: private\r\nset-cookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; path=/; HttpOnly; SameSite=Lax\r\nvary: Accept-Encoding\r\nx-aspnet-version: 4.0.30319\r\nx-powered-by: ASP.NET\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Rx3nQQ6VYB9FbF7RC%2BnZOfHMtdAkmcg%2BnmrVxmjdGovFQX4w0uXMGnPOT4c1vTcFX%2BMpP%2Fi6awiAJD95oM%2BtwI3Wgq7DulYU8SGCFJ3L54a%2Fs77e0XvU0zBpKz%2FY4HnUPtrA2o%2Bn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3b5d530b49-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16170,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":363,"timings":{"blocked":38,"dns":1,"connect":1,"send":0,"wait":286,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/favicon.ico","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:59.227Z","timestamp":1692899879227,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:07 GMT\r\ncontent-type: text/html\r\nbpx-id: 1692899887724007825-646-64729-13-0\r\nlast-modified: Fri, 29 Nov 2019 08:27:51 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=T%2FP7mshvxK2xZ4qOXL16TmcbjcnA8PcUTBaWm9MHNuZMPWn7liGohoHIcEiTGu8f1qZtA%2FQeQ0fyswp7dkNnX%2BPF%2FIFob5WtRI2JRWdBQxSAe8mdrqqoRJd%2F7XO0GJAAdQFpwmyJ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b493ad0b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1143,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (1209), with no line terminators","md5":"307e7f3170eaf0021ef0e90fc4f457c0","sha1":"546e9ee2859b092ee6ffcf38e747d87b152c96ed","sha256":"cebf60c5f8bd4ae8b7f989e5ae429906d0252c463c3595383c7938485d76f6c9","sha512":"1d0d807c3abcbbd597b7c5bd50926e9f9f7b4648c8bc656d6728172945542390fb9beedaa1c20bfa97db46d0f6811579689c4bdcb9454dcff8610bc140234955","ssdeep":"","tlshash":"0121990e39f1413cc7129fa41be613982a6539c82673e2343f8e625783885b4c0773cc","first_seen":"2023-08-24T19:58:41Z","last_seen":"2025-03-19T06:50:16.359353Z","times_seen":46,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":316,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/css/common.css","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.544Z","timestamp":1692899877544,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/css/common.css HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: text/css\r\nbpx-id: 1692887832566886731-646-64729-13-0\r\netag: W/\"70241038dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=iACgFSq85v%2FeoYRVyZEfzgYUDKBPAaT32tw99STkof%2B%2BqdsqFO0hsKOmuv03ca9V194ReTCd1bfvaBpY3sOpfbkhFdViIeYydvzXjiVkDvWXfF4hUfAgySilzMXuHwPqmKuJMpzU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9966b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7223,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (8036), with no line terminators","md5":"db33f565f23e28d69af9556a85a1f482","sha1":"5e4be108e1735beef58ad378ac56ac08a6a585c3","sha256":"4722ea1b56a0b3cfe3620447c6afed6e0f0e6703c78a44063195599b4b07a262","sha512":"59eb2c027c0c9c82c3ef92fa7d2cf73b625c1d5dd975718d8787e3114bb3cead2d848e36cd05a466e6b5c4bcb1b33de49090f7a37658b9bae94b8637b76265c8","ssdeep":"192:s3OH/LRwslIQawa+oa9DRIhv3vfzAyWDzLhKsVncIRB20g5s:0OfislTawa+XRIp/fZghdVcSQR5s","tlshash":"97f13838b91a32066e47943f74d30b05622fa41b56a2893d78b5b566cff3c68c62391e","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-08-21T08:11:36.848057Z","times_seen":6,"resource_available":false,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/jquery.min.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.596Z","timestamp":1692899879596,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/jquery.min.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 95931\r\nLast-Modified: Tue, 03 Oct 2017 05:40:00 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b0-176bb\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":95931,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with very long lines (32047)","md5":"5790ead7ad3ba27397aedfa3d263b867","sha1":"8130544c215fe5d1ec081d83461bf4a711e74882","sha256":"2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0","sha512":"781acedc99de4ce8d53d9b43a158c645eab1b23dfdfd6b57b3c442b11acc4a344e0d5b0067d4b78bb173abbded75fb91c410f2b5a58f71d438aa6266d048d98a","ssdeep":"1536:5P1vk7i6GUHdXXeyQazBu+4HhiO2AEeLNFoqqhJ7SerN5sVI6xcBgPv7E+nzms9d:A4Ud4qhJvNPqcB47MfWWca98HrB","tlshash":"7793d8d9b7d67062977730b850bf510bb13a98eab80c4c60f1a4d8e47e74a89507bf2d","first_seen":"2023-03-07T01:02:51Z","last_seen":"2026-04-05T04:44:13.988821Z","times_seen":16249,"resource_available":true,"data":null}},"time_used":2597,"timings":{"blocked":1247,"dns":0,"connect":0,"send":0,"wait":674,"receive":676,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/img/js/jquery-1.7.2.min.js","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.545Z","timestamp":1692899877545,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /img/js/jquery-1.7.2.min.js HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncontent-type: application/javascript\r\nbpx-id: 1692887833085540637-646-64729-13-0\r\netag: W/\"b385b38dc17d31:0\"\r\nlast-modified: Fri, 18 Aug 2017 04:41:12 GMT\r\nvary: Accept-Encoding\r\nx-powered-by: ASP.NET\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=HFDHwbClU%2FfyZSu1XOhTrMU4CZyO3BtkJPEpo8TBvsecIFL0eBIDQwSMkDxl1zI9hMJMF1Can63eSHsQRhnbDu1E5p31BKcWAciANzT9x7wLwNUcxfL2p%2BFnpVma2XUJnEcgsb%2BH\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b3e9969b50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":94840,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":370,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":368,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/AES-3.1.2.js.download","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.623Z","timestamp":1692899879623,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/AES-3.1.2.js.download HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:09 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 13360\r\nLast-Modified: Tue, 03 Oct 2017 05:40:02 GMT\r\nConnection: keep-alive\r\nETag: \"59d322b2-3430\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13360,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ASCII text, with very long lines (548)","md5":"4ff108e4584780dce15d610c142c3e62","sha1":"77e4519962e2f6a9fc93342137dbb31c33b76b04","sha256":"fc7e184beeda61bf6427938a84560f52348976bb55e807b224eb53930e97ef6a","sha512":"d6eee0fc02205a3422c16ad120cad8d871563d8fcd4bde924654eac5a37026726328f9a47240cf89ed6c9e93ba5f89c833e84e65eee7db2b4d7d1b4240deaef2","ssdeep":"192:9pQGDuD690MPdz8Ui015ll1I57I2Tru6h0hNmHV+m9eIfyAqYfinNVYEUUFJZmUY:9OiT0wz8Uiw/1S7DegkcHpeIuScZbAX","tlshash":"b95296c936edb94263a63068587f7017b86b28b5945c4824f298d4ddf9a899dc03ae3c","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-05T07:15:15.46728Z","times_seen":8436,"resource_available":true,"data":null}},"time_used":1656,"timings":{"blocked":1320,"dns":0,"connect":0,"send":0,"wait":335,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.917Z","timestamp":1692899879917,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 31 Jul 2023 08:22:19 GMT","end":"Mon, 23 Oct 2023 08:22:18 GMT"},"fingerprint":{"sha1":"2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67","sha256":"B5:6E:61:9A:99:BF:5A:AB:FB:51:B3:9E:2C:B4:09:09:0F:85:51:48:71:37:BA:3A:7B:5C:71:53:34:80:97:58"}}},"request":{"raw":"GET /css?family=Roboto HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 24 Aug 2023 17:58:08 GMT\r\ndate: Thu, 24 Aug 2023 17:58:08 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2102,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (2158), with no line terminators","md5":"7fad5e7e182f10e7ece237afa8caae03","sha1":"3e446dd2d5f5a34d3e6a55063ef740fe292a42a1","sha256":"5b353f7d4f4359ff0b19d42c322ddf1e4cb8b350644d3c7daefc39739ba114f0","sha512":"050c7c0d9a815b2aad15b047146221a456fa0e3ca42e1ca395ee611f3475a73da0f1b0aa5409e8690e2ec6b70ec65ce358f35eae30f52f23114c034d16c5e904","ssdeep":"","tlshash":"63415d81540b6004a7530ed633df7535a90f2b2560a29132ebfe6cba9cd7d226364b5d","first_seen":"2023-05-05T11:14:31Z","last_seen":"2024-08-21T09:44:39.881348Z","times_seen":2418,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:57:57.880Z","timestamp":1692899877880,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 31 Jul 2023 08:22:19 GMT","end":"Mon, 23 Oct 2023 08:22:18 GMT"},"fingerprint":{"sha1":"2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67","sha256":"B5:6E:61:9A:99:BF:5A:AB:FB:51:B3:9E:2C:B4:09:09:0F:85:51:48:71:37:BA:3A:7B:5C:71:53:34:80:97:58"}}},"request":{"raw":"GET /css?family=Roboto HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 24 Aug 2023 17:58:06 GMT\r\ndate: Thu, 24 Aug 2023 17:58:06 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2102,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (2158), with no line terminators","md5":"7fad5e7e182f10e7ece237afa8caae03","sha1":"3e446dd2d5f5a34d3e6a55063ef740fe292a42a1","sha256":"5b353f7d4f4359ff0b19d42c322ddf1e4cb8b350644d3c7daefc39739ba114f0","sha512":"050c7c0d9a815b2aad15b047146221a456fa0e3ca42e1ca395ee611f3475a73da0f1b0aa5409e8690e2ec6b70ec65ce358f35eae30f52f23114c034d16c5e904","ssdeep":"","tlshash":"63415d81540b6004a7530ed633df7535a90f2b2560a29132ebfe6cba9cd7d226364b5d","first_seen":"2023-05-05T11:14:31Z","last_seen":"2024-08-21T09:44:39.881348Z","times_seen":2418,"resource_available":false,"data":null}},"time_used":165,"timings":{"blocked":73,"dns":0,"connect":9,"send":0,"wait":19,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"139.162.47.50/bandarqq/slider/asset/BD%20Koprok%20BandarQQ.jpg","fqdn":"139.162.47.50","domain":"139.162.47.50","tld":"50"},"ip":{"addr":"139.162.47.50","port":443,"asn":63949,"as":"Linode, LLC","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://139.162.47.50/bandarqq/slider/","date":"2023-08-24T17:57:59.625Z","timestamp":1692899879625,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"139.162.47.50","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Sun, 01 Oct 2023 23:59:59 GMT"},"fingerprint":{"sha1":"B0:00:46:A5:3F:9E:3F:55:42:0E:78:BF:B9:D4:89:4A:C0:6F:EC:32","sha256":"64:62:66:85:A1:27:E5:D9:0F:60:30:CF:59:60:11:3D:AF:25:EF:0F:D7:4B:D6:70:53:E0:F8:E9:CC:F3:AC:FD"}}},"request":{"raw":"GET /bandarqq/slider/asset/BD%20Koprok%20BandarQQ.jpg HTTP/1.1\r\nHost: 139.162.47.50\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://139.162.47.50/bandarqq/slider/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Thu, 24 Aug 2023 17:58:10 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 223200\r\nLast-Modified: Fri, 30 Jun 2023 09:10:43 GMT\r\nConnection: keep-alive\r\nETag: \"649e9c13-367e0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":223200,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2023:06:29 17:20:22], progressive, precision 8, 772x288, components 3\\012- data","md5":"2bf2582542a91c3d7bbe8799c0bd376d","sha1":"858a8de55b19f7bc6cec3312da45d217ad722e00","sha256":"c446d0be33fb7b2c5861d4ec1f5c789915f70f58600ca978a1d18199230c0159","sha512":"8dea093a8acd088bcdcce4050777796a3660d190168463ef49e30f547c684dcd62379622f5bc440621be94f32b89a109400e07b2611165f56f42a799b1afc90b","ssdeep":"3072:VSRijT7jcZi6ZMGcMpETyKKsezvWsayc01svcFi5ih1V2OX7gYB5gD5pOEu8NPI3:LT0Z4pyetyk0ogEikw+DmPIwk0","tlshash":"1124235936066f97fac23731400ac9f3b33b9fc050d36482f9ad6e2bb3715a60916e06","first_seen":"2023-08-24T19:58:41Z","last_seen":"2024-09-19T22:16:51.299759Z","times_seen":8,"resource_available":false,"data":null}},"time_used":3247,"timings":{"blocked":2568,"dns":0,"connect":0,"send":0,"wait":337,"receive":342,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-08-24","alert":"Sinkholed","trigger":"139.162.47.50","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.bandarqqku.tech/api.aspx?action=everything\u0026subAction=message,jackpot:poker228,jackpot:domino99,jackpot:Sakong,payment_history","fqdn":"www.bandarqqku.tech","domain":"bandarqqku.tech","tld":"tech"},"ip":{"addr":"172.67.205.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.bandarqqku.tech/","date":"2023-08-24T17:58:02.897Z","timestamp":1692899882897,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bandarqqku.tech","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 08 Jul 2023 11:18:43 GMT","end":"Fri, 06 Oct 2023 11:18:42 GMT"},"fingerprint":{"sha1":"3F:46:D7:57:E0:42:91:3C:9A:3B:81:2A:DC:6E:8F:D8:EF:5A:0F:ED","sha256":"26:DA:F4:A1:10:52:13:74:03:05:88:14:B5:A7:E2:FE:F8:7C:26:72:1F:2B:39:7B:17:B2:DB:F5:A1:30:A6:65"}}},"request":{"raw":"GET /api.aspx?action=everything\u0026subAction=message,jackpot:poker228,jackpot:domino99,jackpot:Sakong,payment_history HTTP/1.1\r\nHost: www.bandarqqku.tech\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Requested-With: XMLHttpRequest\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.bandarqqku.tech/\r\nCookie: ASP.NET_SessionId=v4bkfamveiror22nlgvgb3ks; _ga_RBDFXHYYYJ=GS1.1.1692899877.1.0.1692899877.0.0.0; _ga=GA1.1.1817339539.1692899878; lang=id\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 24 Aug 2023 17:58:11 GMT\r\ncontent-type: text/xml; charset=utf-8\r\nbpx-id: 1692899891392797076-646-64729-13-0\r\ncache-control: private\r\nvary: Accept-Encoding\r\nx-aspnet-version: 4.0.30319\r\nx-powered-by: ASP.NET\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=T7MzFoHPkIwIEzesOfN5xVC1yye3DbD%2B0f9n8q7yeGQ0x3upv5GVHPOcr0RSE2s%2FNFRfyE4649p3Q0saCRcLuHApeC4Gw53JE5U1O5rrl22crEvgX6LG5xOrrbEdYHPhWlC7rM8B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=0; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 7fbd7b6028bfb50c-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1677,"size_decoded":0,"mime_type":"text/xml; charset=utf-8","magic":"ASCII text, with very long lines (1677), with no line terminators","md5":"9e2f286df7bfa2811c8bada4456a8fd6","sha1":"75da5b667be43aff48f0c85d45acc98075252fe3","sha256":"03669a65e341baab27c1c7214ad442d596ac4b436424b196e2c265ec941d0aa1","sha512":"dc2d2dd4e3607df47cbb94ef02faf0052a206cf5460ebf81479c43b490f6077b103e435e8e6dbf38a00309493302181f9b99dc7a4c555e5afff9800e7bea2326","ssdeep":"","tlshash":"9d31d6827290e7b84bc73756352469a77dd8baedd38e5213f0ee5c5021e7c950718c39","first_seen":"2023-08-24T19:58:41Z","last_seen":"2023-08-24T19:58:41Z","times_seen":1,"resource_available":false,"data":null}},"time_used":322,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":322,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}