| ocsp.starfieldtech.com/ | 192.124.249.24 | | 2.1 kB |
IP192.124.249.24:0
Hashf526c880c0074dfa1f9af73a6846a1da e5bfc2c1f18be383ebda5ff4afbbb17028bd4ae8 e2ffcf4f2238bc7305478cf2d010a73b78e8dd50fd29e7a97945385bc1d061d2
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 17 Apr 2024 15:53:20 GMT
Content-Type: application/ocsp-response
Content-Length: 2149
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 17 Apr 2024 10:58:21 GMT
Expires: Thu, 18 Apr 2024 10:58:21 GMT
ETag: "e5bfc2c1f18be383ebda5ff4afbbb17028bd4ae8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
|
| | 92.205.199.165 | 301 Moved Permanently | 236 B |
URL User Request GET HTTP/2IP92.205.199.165:443 ASN#60253 Host Europe GmbH
CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeHTML document, ASCII text Hashcffe53be6403d4a885a385d78d49d177 fa26c21e91609381dfd83017c86baf58e6cc06b4 4c4f4079d2209df8fe612df4a31f8e262cfceca8eb088d708232d075970ac09a
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 17 Apr 2024 15:53:20 GMT
content-type: text/html; charset=iso-8859-1
content-length: 236
location: https://fakinthefunk.net/it/
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/css/master_a-master.css?crc=4229372996 | 92.205.199.165 | 200 OK | 83 B |
URL GET HTTP/2fakinthefunk.net/it/css/master_a-master.css?crc=4229372996 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeASCII text, with no line terminators Hash6a2b6c4261f23d7b245faf98ba22c16d 1c4a0316a04a868648ccfa6924c6e4955c7e5ef2 fa42a6dd06ce4138955ef03a3641b2e1c6ca849c4c45ed8ff36440c8eaacb5d8
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/css/master_a-master.css?crc=4229372996 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: text/css
content-length: 83
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:06 GMT
etag: "58-5e1a11084395e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/css/site_global.css?crc=4112008257 | 92.205.199.165 | 200 OK | 2.4 kB |
URL GET HTTP/2fakinthefunk.net/it/css/site_global.css?crc=4112008257 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeUnicode text, UTF-8 text, with very long lines (8074), with no line terminators Hash4c88a07d8b13cbd07331f2eee210f4f9 b0e2db2432188558485ea1df5ad16dba7623fd26 23ef28a6c6bd428a853eff3c2066beb89a21f524270c0e84ae97c033055b0e03
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/css/site_global.css?crc=4112008257 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: text/css
content-length: 2374
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Sat, 02 Dec 2023 17:10:53 GMT
etag: "1f8e-60b89f7aaca0f-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/css/index.css?crc=66315000 | 92.205.199.165 | 200 OK | 11 kB |
URL GET HTTP/2fakinthefunk.net/it/css/index.css?crc=66315000 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash39464bb4705912b6917ba55352353b5f 39d961e47f6b7ae4e53a51627b997cda20e2ebd8 fdffa3f56bfe20c7afa233e63252032bf1748a644269c703a3cc9fb2c017467c
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/css/index.css?crc=66315000 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: text/css
content-length: 10662
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Sat, 02 Dec 2023 17:10:53 GMT
etag: "17c45-60b89f7ad0075-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_germany.svg?crc=405058350 | 92.205.199.165 | 200 OK | 344 B |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_germany.svg?crc=405058350 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashb9b486de4d10f3111b308b0d3d25ccde 07947fe00f93dc0c034a0e2e7abd1096acdf4df1 8707f8e95c6e2463201acdef597c23c4fe04dd2d39bace4bd8441b567014582b
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_germany.svg?crc=405058350 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 344
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:39 GMT
etag: "2f8-5e1a10ee0db68-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_spain.svg?crc=274940218 | 92.205.199.165 | 200 OK | 2.8 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_spain.svg?crc=274940218 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash02bbee5e1fb7c26bdcd1996520a2d743 e79d8a337c757d654a9c5358d35ec35e5afc5848 3ee3811e61a032c70a8aa647f85c56e9d00ec69dc71d7f6e84ebdcda4bc7d1f5
GET /it/images/flag_of_spain.svg?crc=274940218 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2800
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:39 GMT
etag: "25cc-5e1a10ee9bcd0-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_italy.svg?crc=75318836 | 92.205.199.165 | 200 OK | 341 B |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_italy.svg?crc=75318836 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash26cadf1951af21bf42e056812620e240 09404e769f5186ea2afebfb7974d453e11246c8f 4315e6fe303aad95d784d195fcde45d34a6042dcc05e97ad66a71fc841ea040e
GET /it/images/flag_of_italy.svg?crc=75318836 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 341
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:40 GMT
etag: "2f4-5e1a10efbc9d9-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_sweden.svg?crc=4104206002 | 92.205.199.165 | 200 OK | 539 B |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_sweden.svg?crc=4104206002 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashf5bba154daf3e521fe425458ff9bde99 fbb180c7c85b1250bc27a14cd5c80e66adc748fc 28070d67035e2ecd66e71a43b83c45b8ec4d1cda7ad55c88a2fc8a3832811984
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_sweden.svg?crc=4104206002 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 539
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:42 GMT
etag: "54f-5e1a10f15b292-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_france.svg?crc=3955433300 | 92.205.199.165 | 200 OK | 363 B |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_france.svg?crc=3955433300 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash87b432d6f8f3072781da2ad7c3f8df05 5b65c6a8b8cc50423213534d13ce3b95e5450f05 5c14248dca310fb0cf845ca1ea3118889cd1393096d01884251561942f0e1cb5
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_france.svg?crc=3955433300 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 363
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:41 GMT
etag: "2f4-5e1a10f0441c9-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_united_kingdom.svg?crc=4043531386 | 92.205.199.165 | 200 OK | 1.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_united_kingdom.svg?crc=4043531386 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash02a22da93ab11f894893877f785d5195 82eafa2f7c5407b2c7839a117aa24a2b0b261fd7 1c30bdcae46d6dc5c86fab44ca856cafdb6f4b386592b7b25b5bc23dabd74f39
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_united_kingdom.svg?crc=4043531386 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1372
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:40 GMT
etag: "11c2-5e1a10ef22521-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_netherlands.svg?crc=335435918 | 92.205.199.165 | 200 OK | 358 B |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_netherlands.svg?crc=335435918 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash7560b779bf1393d1ae6228947461febd f3b7372b8d94ad50964d7ce1de042ae8d83cee54 2689fb84437a88b70d20fb41e181f164d301dc3de99e6e381080db3ebe7d7d0b
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_netherlands.svg?crc=335435918 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 358
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:42 GMT
etag: "2f8-5e1a10f0cb5d2-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/windows_transparent_00.svg?crc=3933838954 | 92.205.199.165 | 200 OK | 532 B |
URL GET HTTP/2fakinthefunk.net/it/images/windows_transparent_00.svg?crc=3933838954 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash711909453bf9d84d125c890c61a52500 22675c899bcb060e60d38cdd33f34c016f3a6945 a6831591265331d74f29dfcefa8e1531bdef29d2b99bb45ed0ecba48a43ac41a
GET /it/images/windows_transparent_00.svg?crc=3933838954 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 532
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:59 GMT
etag: "40b-5e1a1100ff80b-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/linux_transparent_00.svg?crc=4114265348 | 92.205.199.165 | 200 OK | 1.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/linux_transparent_00.svg?crc=4114265348 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashb7878c4c547a51c8ef65629e31eac59b 8bb7e05af35e66adeae90a003b08a3674a50a65c 8b3c8c502901f777e96f9c3104221806c81eb9bc547aea13926055a474a8dbc3
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/linux_transparent_00.svg?crc=4114265348 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1435
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:59 GMT
etag: "af6-5e1a110166875-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/apple_transparent_00.svg?crc=309269359 | 92.205.199.165 | 200 OK | 557 B |
URL GET HTTP/2fakinthefunk.net/it/images/apple_transparent_00.svg?crc=309269359 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash98941494a9e6291d2ab26f5737375b58 7bb7cd55ae647cdf16bdfa46fca0ae115b3cff86 da610e0ba7fc59c915a1dbe62adc9ff163f167cd1e80b241761fec1e2119b79d
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/apple_transparent_00.svg?crc=309269359 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 557
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:59 GMT
etag: "3b9-5e1a110132870-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/logo-fakin-the-funk-march-svg-512x512.svg?crc=4002666066 | 92.205.199.165 | 200 OK | 7.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/logo-fakin-the-funk-march-svg-512x512.svg?crc=4002666066 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashaab99ca6b5bc2099d2632d057ad23f38 13ee65c19fa785a24ec69f624ee8ee237a55ed6c 3c8fd68178463b637e83d65982346025a0d90e4e65c3873d7964b6a8475b0c2d
GET /it/images/logo-fakin-the-funk-march-svg-512x512.svg?crc=4002666066 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 7399
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:01 GMT
etag: "5dde-5e1a1103b9bc5-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxunchecked_2x.png?crc=3904909110 | 92.205.199.165 | 200 OK | 133 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxunchecked_2x.png?crc=3904909110 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash1499685c3991d21a9c4368fa51e0f689 e586d82ab62701fe0ae7220cf603411a8fb32026 a825d8d66a2109b6e02f4b11dacf122993a1ace5cc6eb99ddb48a15dd0a1800c
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxunchecked_2x.png?crc=3904909110 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 133
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "79-5e1a11023ddba-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxunchecked.png?crc=3953652346 | 92.205.199.165 | 200 OK | 154 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxunchecked.png?crc=3953652346 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash092382fff05c313be454d79835d2e836 c5f565c1f285403df39d83431a897d8238cc42ba 5e32d16eea39d9db009afc6aa6cb061dfe4c34814f895cfc90f2a029e69a5c8f
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxunchecked.png?crc=3953652346 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 154
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "8d-5e1a110225eeb-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_philippines.svg?crc=3863554536 | 92.205.199.165 | 200 OK | 1.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_philippines.svg?crc=3863554536 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash5cebdfc8b576bc826d40d89f614eeafe 4b095371e74dd7d224dfb388305c24ef2ba8c87a 4ebc52eecc110d82404c67651fd249216cda3c325547e4e066ad0cd770110890
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_philippines.svg?crc=3863554536 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1245
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:43 GMT
etag: "d8c-5e1a10f1e8073-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxuncheckedmousedown.png?crc=41320463 | 92.205.199.165 | 200 OK | 155 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxuncheckedmousedown.png?crc=41320463 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashe06377494851c4688120f0c8810c71c3 69507f717b91780976a353f5dffc4b72f372a098 3a651ffe75548aa61f462cba2aafe0806acc65f4c3c7263f619d6f51121df3af
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxuncheckedmousedown.png?crc=41320463 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 155
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "8d-5e1a1102817be-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxchecked_2x.png?crc=252939627 | 92.205.199.165 | 200 OK | 609 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxchecked_2x.png?crc=252939627 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash36676d0b9ae2d34314c0754f2948d013 464449991368dc2ee5722ec0f37601c5486da898 02549bc0d28901effc24a82d448890f483e1c476fa551dd8827c58f4f8a30994
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxchecked_2x.png?crc=252939627 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 609
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "24a-5e1a1102dad69-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxchecked.png?crc=4243906595 | 92.205.199.165 | 200 OK | 431 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxchecked.png?crc=4243906595 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash45850d732a6da88a2a47e6be73c209ed 6c49cfa46e134ac58ef2740c9ec13afdd1330a67 bc5a4bb477c32518f93c1319620aed979ba40047c62d0f6059c8eda0bf5b9913
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxchecked.png?crc=4243906595 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 431
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "198-5e1a1102c55aa-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxuncheckedmousedown_2x.png?crc=4258252192 | 92.205.199.165 | 200 OK | 130 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxuncheckedmousedown_2x.png?crc=4258252192 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash633e00cdb879c56872b2dc4638030ee0 0918fd4284954d31bd5cd13364de4fc5475fd5cb 7869458560e39e88975a27abc74228ce4b2c55708127092ad97bc57a84db5ddb
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxuncheckedmousedown_2x.png?crc=4258252192 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 130
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "79-5e1a1102afa03-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxcheckedrollover_2x.png?crc=172546064 | 92.205.199.165 | 200 OK | 630 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxcheckedrollover_2x.png?crc=172546064 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash94bcb7b1bc2c1d20d99aa88716705dae 5a45148d11c9627ff797bbd712a9c980bdc31700 e4e31e65f6e4fc076e4882d91bf7f8126e419c27cb239b972667547487f621c0
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxcheckedrollover_2x.png?crc=172546064 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 630
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:01 GMT
etag: "25f-5e1a110309b67-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxcheckedmousedown.png?crc=4190422059 | 92.205.199.165 | 200 OK | 477 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxcheckedmousedown.png?crc=4190422059 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash9b4e86aa0c73bdabc2bfa8eecff4a07c 274c79006c478a6f5fea2f174509e105466c56bc a91787c27cb0a492adaa5929a839090773bc26cc2c797be4c650e567ca79e308
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxcheckedmousedown.png?crc=4190422059 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 477
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:01 GMT
etag: "1c6-5e1a110322dbd-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxuncheckedrollover_2x.png?crc=4193371014 | 92.205.199.165 | 200 OK | 130 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxuncheckedrollover_2x.png?crc=4193371014 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash20c7f65b9f3efb9fc14841cfe28a684b 00d74127c78cba9a2082691ffe07b72982084372 cc69b3d3191cc2c66b4f9513e31e60c3fed261973165dfd33cb8e65b1614b110
GET /it/images/checkboxuncheckedrollover_2x.png?crc=4193371014 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 130
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "78-5e1a11026c3e7-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxcheckedmousedown_2x.png?crc=4276392561 | 92.205.199.165 | 200 OK | 568 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxcheckedmousedown_2x.png?crc=4276392561 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash00324543e3ec5ffe2f346e575171b221 7cb11904d540ff9a1760ef1ec84a84126b23e6bd 2c4beb6bdd158a5f44fa624863464e3a214bc3c451f65cc40d025667427c031d
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxcheckedmousedown_2x.png?crc=4276392561 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 568
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:01 GMT
etag: "221-5e1a11033c7e4-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/arrowmenudown-u9508-a_2x.png?crc=68390132 | 92.205.199.165 | 200 OK | 133 B |
URL GET HTTP/2fakinthefunk.net/it/images/arrowmenudown-u9508-a_2x.png?crc=68390132 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced Hash6c59e25c943bcbe66cd7f910e9b29b20 d4ae4fda0aac53b56bd74adc79fd769100194f9c c9e39f6114d6c9f4699dadff329082496bdb55d38190fda505cfe078c5e02529
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/arrowmenudown-u9508-a_2x.png?crc=68390132 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 133
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:02 GMT
etag: "75-5e1a1104c4557-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxuncheckedrollover.png?crc=32437065 | 92.205.199.165 | 200 OK | 134 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxuncheckedrollover.png?crc=32437065 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash56a7a301b2ac425b0ca92c2fdbeb0f92 a724f5c272ee87a8075628ec095f58069ff651ac 59eeb2221781869db19a81bd4ab0a849a63d9ed522d552f6de7d194df4f021ef
GET /it/images/checkboxuncheckedrollover.png?crc=32437065 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 134
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "7b-5e1a1102550d0-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/arrowmenudown-u9508-a.png?crc=3804264093 | 92.205.199.165 | 200 OK | 118 B |
URL GET HTTP/2fakinthefunk.net/it/images/arrowmenudown-u9508-a.png?crc=3804264093 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced Hash7221b5e2dee8dd9335f3c8e336d31b8f d54793b772acccaf524e8a7d973785a612655489 00156bf1fde7ad7d5fb926157457d283e4ea5d8385522e424b3f9b53191d816e
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/arrowmenudown-u9508-a.png?crc=3804264093 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 118
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:02 GMT
etag: "68-5e1a1104af950-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/require.js?crc=7928878 | 92.205.199.165 | 200 OK | 6.6 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/require.js?crc=7928878 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (536), with CRLF line terminators Hash7a85e9cddb5e588360771d48037c1cb9 7ab9f66be5e01992d763a440ab00f34a7b6c81ef 771d7512e004b04f2472e9a9bd5f0b731d062108b49b1aa813ec07bf4e419d27
GET /it/scripts/require.js?crc=7928878 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: application/javascript
content-length: 6641
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:05 GMT
etag: "4024-5e1a1106dea82-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/checkboxcheckedrollover.png?crc=4168856179 | 92.205.199.165 | 200 OK | 389 B |
URL GET HTTP/2fakinthefunk.net/it/images/checkboxcheckedrollover.png?crc=4168856179 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash26eb7662e3dc33a7833c2bf080720821 399b25fd429be9f0327e70c2b6c4b1106d8df94b 6e192efa88f9d06b02a3c75a2c1d8bb24891b246fc3860be80496e6e0bdf6471
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/checkboxcheckedrollover.png?crc=4168856179 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 389
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:01 GMT
etag: "16e-5e1a1102f18b0-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-2.2.1.js | 151.101.2.137 | 200 OK | 77 kB |
URL GET HTTP/2code.jquery.com/jquery-2.2.1.js IP151.101.2.137:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash9736219fdc59010aa7290487b5802d03 f2d87557d2a0bfc55f8062bdd606a0ffc75b1a53 78d714ccede3b2fd179492ef7851246c1f1b03bfc2ae83693559375e99a7c077
GET /jquery-2.2.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-3f1f5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 17 Apr 2024 15:53:21 GMT
age: 1011885
x-served-by: cache-lga21956-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 130, 12
x-timer: S1713369201.125777,VS0,VE0
vary: Accept-Encoding
content-length: 76644
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js | 142.250.74.138 | 200 OK | 5.5 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js IP142.250.74.138:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (2220) Hash316f3557abf074f917ff1f83d776338d 8fdfb015a94c6ee5a4276e2577665a27ccc8c1f3 a28396880470a28e0525bdc0ea326ffb811de7de13662d02f7530dbbe3f12d90
GET /ajax/libs/webfont/1.6.16/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:49:46 GMT
expires: Tue, 15 Apr 2025 17:49:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 165815
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_united_kingdom_fx.svg?crc=495205440 | 92.205.199.165 | 200 OK | 6.9 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_united_kingdom_fx.svg?crc=495205440 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hasha14a6c35372a4f24261340918e7a2a51 5cb434625eb24d50df880f5419deadbb73eb7d1d d8b42592434d0afb2211899cbb53cc3f22475fdd36431813e2c75c2c868838b5
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_united_kingdom_fx.svg?crc=495205440 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 6857
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:40 GMT
etag: "61c6-5e1a10eeee904-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_germany_fx.svg?crc=3884964614 | 92.205.199.165 | 200 OK | 3.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_germany_fx.svg?crc=3884964614 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash48e74110a4143a9ac74c351d7cc62d2d 75205d3961553d00756cc1435a86d6c3d7f2e1c9 1e8df49f9e14fa32029106c04a9c6df11c241d5cd4d0e5fd1d7a8ecc48161b0b
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_germany_fx.svg?crc=3884964614 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 3396
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:38 GMT
etag: "3211-5e1a10edd512b-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_italy_fx.svg?crc=4124533689 | 92.205.199.165 | 200 OK | 2.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_italy_fx.svg?crc=4124533689 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash31473d285296472a4e22fac02ffe2789 52e0a5612fd541ab3315fa4ef8a41914112713e5 344f15f61a124112089ff0f7f432c77a8ebc83480727bd409a140fb3ddaae195
GET /it/images/flag_of_italy_fx.svg?crc=4124533689 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2170
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:40 GMT
etag: "1cfc-5e1a10ef6fb65-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_france_fx.svg?crc=372716010 | 92.205.199.165 | 200 OK | 1.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_france_fx.svg?crc=372716010 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash40243b69e76324042294712615fd2b32 3da499197c1c45998834c9a70c12b343ceb9eb52 5c7098a8b0db1fcc41c990c977fe245543a1cb5120a62b559f134a235c5aa815
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_france_fx.svg?crc=372716010 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1175
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:41 GMT
etag: "d46-5e1a10f00a01d-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_spain_fx.svg?crc=95428048 | 92.205.199.165 | 200 OK | 5.0 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_spain_fx.svg?crc=95428048 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash85d60511624a9d1ea4b958c2c3fdcdc2 48438e8b6e87de0d336f2c2d83c79ca8d8f29a09 88774d969038b68479b6cdd6709746bf103f58d4718e24fa7bb48fa4210f9107
GET /it/images/flag_of_spain_fx.svg?crc=95428048 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 5034
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:39 GMT
etag: "4496-5e1a10ee6367b-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_netherlands_fx.svg?crc=4082711807 | 92.205.199.165 | 200 OK | 3.3 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_netherlands_fx.svg?crc=4082711807 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash8d6c2849340e13aec62452c775956fcc 0018aac197e25e044fa4de59635f574ded8b2183 94ecebcced028f64a7e166530d19840e1a1fccc23eee8f54e60ed5407b7c7ce6
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_netherlands_fx.svg?crc=4082711807 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 3317
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:41 GMT
etag: "2bbc-5e1a10f091425-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_sweden_fx.svg?crc=3910837012 | 92.205.199.165 | 200 OK | 5.8 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_sweden_fx.svg?crc=3910837012 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashc3c1c9847c4fa2b772d8c19eaac87391 18c2fae5d8bb5b3d3aac5c5376ff90a469eaa208 f8dff64f230ceffe489fed3f836e8b27a0ae32458e777cbc8295cd1885c9176a
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_sweden_fx.svg?crc=3910837012 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 5826
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:42 GMT
etag: "572f-5e1a10f1237f5-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/flag_of_the_philippines_fx.svg?crc=3802529877 | 92.205.199.165 | 200 OK | 6.7 kB |
URL GET HTTP/2fakinthefunk.net/it/images/flag_of_the_philippines_fx.svg?crc=3802529877 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashab2c3eb9e9e97e371b7372a6c2e747c5 5c6fdb298828688582644acacd2dcbcbb0f93e7c 86d568ab6eddc9d01cc6c70a6195da9382f1501e14cb60b2fa395e5f1546a8d3
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/flag_of_the_philippines_fx.svg?crc=3802529877 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 6738
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:42 GMT
etag: "5f47-5e1a10f1ac756-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/7digital_logo_gray.svg?crc=4280187915 | 92.205.199.165 | 200 OK | 505 B |
URL GET HTTP/2fakinthefunk.net/it/images/7digital_logo_gray.svg?crc=4280187915 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash42b6435cb3137d89f6e25270fe270023 aadccbf75255b3fe027f84c0c384a96101dddbcb abd7ed67bf4ce06311dbe64223876c5867ffd1310727321dddd18eda79c5d4e8
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/7digital_logo_gray.svg?crc=4280187915 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 505
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:43 GMT
etag: "394-5e1a10f274683-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/thumbs-up_rgb.svg?crc=4211760323 | 92.205.199.165 | 200 OK | 1.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/thumbs-up_rgb.svg?crc=4211760323 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hasha65546ad7f19b5ad14b8a28e063208d7 48120332b5804c6b4ed6ffa2f250442bb9ada5f4 22c3d201e4a425de65b0e3018151ae907d57c32a9e48a19f8bb936367c5295a7
GET /it/images/thumbs-up_rgb.svg?crc=4211760323 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1369
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:43 GMT
etag: "a3b-5e1a10f23e73e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/amazon_logo_gray.svg?crc=68157815 | 92.205.199.165 | 200 OK | 1.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/amazon_logo_gray.svg?crc=68157815 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash240c1958826c75c95bc7347b2f953867 c67033e8e6662a82052c12378769b91230eb0952 8ed4dd3a7f6ffd77969f025717c5fdb041e13a7f700eca339bca88cdc606e393
GET /it/images/amazon_logo_gray.svg?crc=68157815 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1157
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:44 GMT
etag: "929-5e1a10f2e33ed-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/beatport_logo_gray.svg?crc=4569409 | 92.205.199.165 | 200 OK | 1.1 kB |
URL GET HTTP/2fakinthefunk.net/it/images/beatport_logo_gray.svg?crc=4569409 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash07495a7fff7d2cf90fef1673a2634e74 35e57c838f468e43ea903bc554d4422a6b84faa1 c0fd8d6a3bfd3cb954d195cf49b682f1c7095a26f63bc75730b6687dc3ce7426
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/beatport_logo_gray.svg?crc=4569409 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1073
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:45 GMT
etag: "82a-5e1a10f3be3c9-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/bandcamp_logo_gray.svg?crc=3785597449 | 92.205.199.165 | 200 OK | 1.1 kB |
URL GET HTTP/2fakinthefunk.net/it/images/bandcamp_logo_gray.svg?crc=3785597449 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash64424a49e0608d79a4474997a8f31a8e c430116c4e29a90f38a78be34fe2dae30b128a3f c57f40fc52f41a32a254f2a965ba2a86188665360854cdbe63ec8eae4af10d1d
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/bandcamp_logo_gray.svg?crc=3785597449 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1106
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:44 GMT
etag: "906-5e1a10f355bef-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/bleep_logo_gray.svg?crc=279806300 | 92.205.199.165 | 200 OK | 1.5 kB |
URL GET HTTP/2fakinthefunk.net/it/images/bleep_logo_gray.svg?crc=279806300 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash73c0c69b458d4b8fae2ab916c40c3da9 ecdda3529dd96a42f8c49e428c4856416b165a12 2c76ae69b2f44a78fd1b937def036be916e7369a5e64c140ce7cfe9f3675127a
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/bleep_logo_gray.svg?crc=279806300 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1457
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:45 GMT
etag: "c79-5e1a10f4286fc-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/boomkat_logo_gray.svg?crc=4003440278 | 92.205.199.165 | 200 OK | 2.0 kB |
URL GET HTTP/2fakinthefunk.net/it/images/boomkat_logo_gray.svg?crc=4003440278 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash951f954d047c85137f4afe3838e96461 f381095fe5629f136a9e79b3bb7471fa5a69eabf 04851b51e99ef67b180bc3e4cfa7b1ab9750c64248fb9fb44391ce817f53ce9b
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/boomkat_logo_gray.svg?crc=4003440278 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2006
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:46 GMT
etag: "1252-5e1a10f499f5e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/deezer_logo_gray.svg?crc=314526897 | 92.205.199.165 | 200 OK | 2.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/deezer_logo_gray.svg?crc=314526897 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash9b903a40f23abf3c718c5e60908b22ab be6bcea492603097450d721d77a61036ced9603b c183305a439a4c1de59c9c663253ee159f0f9b701a59bc6cd3b6f35576e1b364
GET /it/images/deezer_logo_gray.svg?crc=314526897 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2246
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:46 GMT
etag: "1d34-5e1a10f50cf2f-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/djtunes_logo_gray.svg?crc=467278739 | 92.205.199.165 | 200 OK | 932 B |
URL GET HTTP/2fakinthefunk.net/it/images/djtunes_logo_gray.svg?crc=467278739 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash0b7f11fd841ea7fdbe5637caed4e58a0 36e16f49833f3e688dc30170f28e8ead8e79cdd1 6a4c270e7d1f6442ebb5ddb0cacdbc7a083ec0edd4a22f4b0bf3c93d90d24cf0
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/djtunes_logo_gray.svg?crc=467278739 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 932
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:47 GMT
etag: "732-5e1a10f65688e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/discogs_logo_gray.svg?crc=3925631686 | 92.205.199.165 | 200 OK | 2.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/discogs_logo_gray.svg?crc=3925631686 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashfb1b6da72b55b6697f0e432309944674 d72df238e7352eed0dac90235c8023883b718315 b393e8575f783be23a10e2e869d738d77edd363bedcd162298e8243dbe803080
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/discogs_logo_gray.svg?crc=3925631686 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2220
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:47 GMT
etag: "14a9-5e1a10f5eb9a3-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/emusic_logo_gray.svg?crc=248098518 | 92.205.199.165 | 200 OK | 1.8 kB |
URL GET HTTP/2fakinthefunk.net/it/images/emusic_logo_gray.svg?crc=248098518 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash788b76320c02b9e4d01998a944a37523 216e4880bc253f528ac27f66e65489238b3f4bc8 4cb2e40eae81da3a9f5aba9be73a7caef2deb5039682ff601e954d3b50b270d1
GET /it/images/emusic_logo_gray.svg?crc=248098518 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1798
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:48 GMT
etag: "10d4-5e1a10f72d21a-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/hdtracks_logo_gray.svg?crc=51624 | 92.205.199.165 | 200 OK | 729 B |
URL GET HTTP/2fakinthefunk.net/it/images/hdtracks_logo_gray.svg?crc=51624 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash3c6c57d66699331163200eac701680c3 56157ec3669742a18380ecf034b1c9a8d0931f5d 24e696576643dab711e44ea53c7b54ec7a1fda7c17e86fb5cc3883080834c6ba
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/hdtracks_logo_gray.svg?crc=51624 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 729
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:49 GMT
etag: "586-5e1a10f81d5cd-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/google-play_logo_gray.svg?crc=478706269 | 92.205.199.165 | 200 OK | 1.6 kB |
URL GET HTTP/2fakinthefunk.net/it/images/google-play_logo_gray.svg?crc=478706269 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash82e57bf60b23270120779ae3d862319e cc088ccf05fea3f7e8bc447ef2119d3072dd1f40 e35eec26d5e8fc4271236a5c3dfe02063aa2973e37e5e2dac7bf2346277d2773
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/google-play_logo_gray.svg?crc=478706269 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1576
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:50 GMT
etag: "10b7-5e1a10f88f217-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/di-fm_logo_gray.svg?crc=4293238407 | 92.205.199.165 | 200 OK | 1.1 kB |
URL GET HTTP/2fakinthefunk.net/it/images/di-fm_logo_gray.svg?crc=4293238407 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash87881f130b4c15f560129dad02a052d1 363fa7175639be8b6bc2fd659eb187324ecd2c4f 63653aef3e55148ca6713c4af5cdfc9cb1987143e1e1c9f029d8d06febbfecd5
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/di-fm_logo_gray.svg?crc=4293238407 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1077
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:46 GMT
etag: "868-5e1a10f57fb19-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/dubseed_logo_gray.svg?crc=303013658 | 92.205.199.165 | 200 OK | 947 B |
URL GET HTTP/2fakinthefunk.net/it/images/dubseed_logo_gray.svg?crc=303013658 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash9015fdb8eff1506f0d0e01a91c27f599 e67460af259fa39c535ea4f6576b10e7411fc9ab b0c4e2fd805b3a45d5432f1ce8d425b92bd6abd6340a4e5743c997d7d9595702
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/dubseed_logo_gray.svg?crc=303013658 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 947
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:48 GMT
etag: "71a-5e1a10f6c2ee8-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/itunes_logo_gray.svg?crc=534459484 | 92.205.199.165 | 200 OK | 1.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/itunes_logo_gray.svg?crc=534459484 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash32c6cb50aff29e33dcba5a151995c53f 4777a38aa80ac48a5746796e2142c148038ffaa6 67e5c459f5966f84edf207bdd0eeb216d4e2cd059c3c8071759618c5441ec71b
GET /it/images/itunes_logo_gray.svg?crc=534459484 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1159
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:51 GMT
etag: "8d6-5e1a10f9818f2-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/last-fm_logo_gray.svg?crc=197317224 | 92.205.199.165 | 200 OK | 1.8 kB |
URL GET HTTP/2fakinthefunk.net/it/images/last-fm_logo_gray.svg?crc=197317224 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash520959a4cd3eb506c25270c81907f467 7aaf959594deff71c0b4ed1351cae8779d1d5464 9216d58121244471f4da9cea5a5f3e1e2a4757004a7c7603e3e4fbdd31bc04f9
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/last-fm_logo_gray.svg?crc=197317224 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1773
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:52 GMT
etag: "10a6-5e1a10fa5c8ce-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/soundcloud_logo_gray.svg?crc=3972537773 | 92.205.199.165 | 200 OK | 2.3 kB |
URL GET HTTP/2fakinthefunk.net/it/images/soundcloud_logo_gray.svg?crc=3972537773 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash009ec9bf5f19ca77c81723d666bedff1 dcc87816e35a101d60278571ac2d72e1df421e8e 7e2d5bd14c968960573272eb5a07ff39a2c722e7afe6a46705b92780052f7b9a
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/soundcloud_logo_gray.svg?crc=3972537773 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2270
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:53 GMT
etag: "152b-5e1a10fb43fe2-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/juno-download_logo_gray.svg?crc=138801074 | 92.205.199.165 | 200 OK | 981 B |
URL GET HTTP/2fakinthefunk.net/it/images/juno-download_logo_gray.svg?crc=138801074 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash59d06e1204459c56771474a1ff44b397 739108da0b930e6a5bfc51a6a5a37ed0ad194464 a9fb687ccdcb5f7e9566d24d2d7c21dc80106042390b2f8355205fdbad976424
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/juno-download_logo_gray.svg?crc=138801074 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 981
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:51 GMT
etag: "7b3-5e1a10f9efe8c-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/mixcloud_logo_gray.svg?crc=3903689574 | 92.205.199.165 | 200 OK | 2.7 kB |
URL GET HTTP/2fakinthefunk.net/it/images/mixcloud_logo_gray.svg?crc=3903689574 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash04ffdb9022a63dcc6214136e197202d7 fc2c110c7b121e2e2da61ec335247b8f33b60e6e 2c802276d3075bf99fa9d9d3a0781fc4c073378cd4097d463602fae5a843ef8f
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/mixcloud_logo_gray.svg?crc=3903689574 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2714
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:52 GMT
etag: "191a-5e1a10fad13f8-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/trackitdown_logo_gray.svg?crc=4162476130 | 92.205.199.165 | 200 OK | 818 B |
URL GET HTTP/2fakinthefunk.net/it/images/trackitdown_logo_gray.svg?crc=4162476130 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash88aa943910ab8db5ae8358286877d152 b9d18457904f34d05baf08dc6b08f91cb494b077 a1920051de2275d9ab1ea0d7242ac655d747aeea12230bcdd95502b888762e6f
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/trackitdown_logo_gray.svg?crc=4162476130 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 818
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:53 GMT
etag: "6f9-5e1a10fc1b90e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/spotify_logo_gray.svg?crc=3807101237 | 92.205.199.165 | 200 OK | 1.1 kB |
URL GET HTTP/2fakinthefunk.net/it/images/spotify_logo_gray.svg?crc=3807101237 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash358024163cbbac82f46dec6497fc2b9d 9908e2ae2e3d0079fede0344e040d231f7188288 e800b6816475171361a423c80a0b1f4dbf27026ec2d35a26b3e3d3596991d664
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/spotify_logo_gray.svg?crc=3807101237 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1056
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:53 GMT
etag: "7df-5e1a10fbae314-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/traxsource_logo_gray.svg?crc=466788264 | 92.205.199.165 | 200 OK | 980 B |
URL GET HTTP/2fakinthefunk.net/it/images/traxsource_logo_gray.svg?crc=466788264 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashe9019cb4edf0b94a241d07bef041ed12 050d87fb4476040b98b285022234c166b687f458 e5247cdaf22f443f0172308ff2a25f28ea721e7fbeecaf18e85741ad6f6d495e
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/traxsource_logo_gray.svg?crc=466788264 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 980
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:54 GMT
etag: "72e-5e1a10fc8ae48-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/hardwax_logo_gray.svg?crc=256351570 | 92.205.199.165 | 200 OK | 1.3 kB |
URL GET HTTP/2fakinthefunk.net/it/images/hardwax_logo_gray.svg?crc=256351570 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashfbf768a9646f0f366829edee348f70fc ea95a5209fdf60bc50c574bf0dd43ea53d8bfb4f 4ce3604ac6a4b955d23b46779e39fee2d7eab9780634323216d6079314d05657
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/hardwax_logo_gray.svg?crc=256351570 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 1329
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:50 GMT
etag: "a67-5e1a10f918948-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/whatpeopleplay_logo_gray.svg?crc=346627091 | 92.205.199.165 | 200 OK | 3.5 kB |
URL GET HTTP/2fakinthefunk.net/it/images/whatpeopleplay_logo_gray.svg?crc=346627091 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash1de503e8cdd26b6a250eeafc8de5f596 1874e764b0f090452cc322620d4f4725c07206df 090552b6e692ebcdc88c923afda90d63771a6c519f55052a6f5cf0030cd3a3a9
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/whatpeopleplay_logo_gray.svg?crc=346627091 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 3510
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:54 GMT
etag: "2133-5e1a10fcf611a-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/findhdmusic_logo_gray.svg?crc=3880780883 | 92.205.199.165 | 200 OK | 780 B |
URL GET HTTP/2fakinthefunk.net/it/images/findhdmusic_logo_gray.svg?crc=3880780883 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash25c957ea28cec59307a985e5d27f6d72 f506e055f40a0cd180ccfcdbefb37e20dc243e36 3e632a777b3610eea5006676fd1062f523f9de51d674f63e919578c2dea3ae94
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/findhdmusic_logo_gray.svg?crc=3880780883 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 780
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:49 GMT
etag: "57b-5e1a10f7b4df3-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/tidal_logo_gray.svg?crc=3915641845 | 92.205.199.165 | 200 OK | 797 B |
URL GET HTTP/2fakinthefunk.net/it/images/tidal_logo_gray.svg?crc=3915641845 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashaf6baded55c561c155373079f33613e3 0c25b40d9e479daaafe9883f5dc9f7f663bd09fc 80b8f27740afce883c831ad714d2ff9f3aafc9b78bd56afdd0be4f5dd030e6c0
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/tidal_logo_gray.svg?crc=3915641845 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 797
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:55 GMT
etag: "5e9-5e1a10fddebb6-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/qobuz_logo_gray.svg?crc=3773862733 | 92.205.199.165 | 200 OK | 854 B |
URL GET HTTP/2fakinthefunk.net/it/images/qobuz_logo_gray.svg?crc=3773862733 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash6161b251be47c0ef4dd878b69065926f c6150e1394c60b150f1394244708ce303d760db8 d0dfa6af00fc03dd3ec33c64ecf834e7e5a3c2ef21aa7bb68820b727824916c4
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/qobuz_logo_gray.svg?crc=3773862733 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 854
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:55 GMT
etag: "600-5e1a10fd6eac4-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/btn_buynowCC_LG.png | 92.205.199.165 | 200 OK | 4.8 kB |
URL GET HTTP/2fakinthefunk.net/btn_buynowCC_LG.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 107 x 47, 8-bit/color RGBA, non-interlaced Hash8b379e23010b232d196e8dffbefb7093 b7e236fc60c0d8542df2d39124e0c30e61c423c0 4f3259e9c852a56c37ce13e994a1a8f9e7efbcfed7f0c51f5331fcd05e6ff323
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /btn_buynowCC_LG.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 4781
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 26 Oct 2018 14:10:16 GMT
etag: "1296-579224752c3a2-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/download-cnet-logo-final-gray.svg?crc=4529029 | 92.205.199.165 | 200 OK | 4.7 kB |
URL GET HTTP/2fakinthefunk.net/it/images/download-cnet-logo-final-gray.svg?crc=4529029 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashe487b6e0b6ca06b744b7cdab3ad80fa3 319bf6eeabc0b2da288fc55c4edbc722bdd6e5c3 674bbddf985ea30132b1338f8c520b98152c76bfe7f564c25c22f83d335d2d82
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/download-cnet-logo-final-gray.svg?crc=4529029 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 4695
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:57 GMT
etag: "3d3e-5e1a10ff3ec73-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/djtechtools-logo-final-gray.svg?crc=221965989 | 92.205.199.165 | 200 OK | 3.5 kB |
URL GET HTTP/2fakinthefunk.net/it/images/djtechtools-logo-final-gray.svg?crc=221965989 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash92968b811286c4a6404e0af739f343c1 9b385197a8d3dac376bb8fe3f0cf18b0aa5a31cc 8226edba585fd7a0aa513da976e8b4caa857a17037da37e0bb8138cd7722248e
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/djtechtools-logo-final-gray.svg?crc=221965989 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 3486
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:56 GMT
etag: "2e84-5e1a10fe51b88-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/alternativeto-logo-gray.svg?crc=4234161586 | 92.205.199.165 | 200 OK | 3.4 kB |
URL GET HTTP/2fakinthefunk.net/it/images/alternativeto-logo-gray.svg?crc=4234161586 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashddc222ac90184c228ed1a7d1948c34d7 1cd978c0c2337fbf0b516bb9e49e03d0ee093956 d7b05d9c54d923bbc314256c963e48012a9e37e9a784031579606498b62409fe
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/alternativeto-logo-gray.svg?crc=4234161586 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 3415
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:58 GMT
etag: "1ff9-5e1a1100958c0-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/digitaldjtips-logo-final-gray.svg?crc=4262773545 | 92.205.199.165 | 200 OK | 6.1 kB |
URL GET HTTP/2fakinthefunk.net/it/images/digitaldjtips-logo-final-gray.svg?crc=4262773545 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash5d27d0b5189c15a56e322f69f9419d4f 69228864616ef3422dbb2a4c12a52d67754a122f db780b26b0e20292dfaf157fd8559a66b9cb24abf9cbabec6f2d635a90736d27
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/digitaldjtips-logo-final-gray.svg?crc=4262773545 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 6090
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:56 GMT
etag: "4518-5e1a10fec66b1-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/softpedia-logo-gray.svg?crc=4292856370 | 92.205.199.165 | 200 OK | 2.3 kB |
URL GET HTTP/2fakinthefunk.net/it/images/softpedia-logo-gray.svg?crc=4292856370 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash2ac6650e18c7db59559f2a17283f8286 c0547e601be74de6d4f42dd50373016d20086c1d 7574e8f843b1b2cfb656f6c34080b3b906b025477ac345fc185f4b89f5201738
GET /it/images/softpedia-logo-gray.svg?crc=4292856370 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 2304
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:58 GMT
etag: "163c-5e1a1100205c7-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/fb%20rotate%20(color).svg?crc=4137661702 | 92.205.199.165 | 200 OK | 398 B |
URL GET HTTP/2fakinthefunk.net/it/images/fb%20rotate%20(color).svg?crc=4137661702 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashec7a8bedbc54ea231a4c4119ccde8d2b 6c91037e0f913afe1e5e647b932c99f38d8a13d6 7662c9e722076ed44df9d9c95d86859f768c1009ce310f84b4a1048f94a8bedc
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/fb%20rotate%20(color).svg?crc=4137661702 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 398
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:59 GMT
etag: "3c6-5e1a1101ba449-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/pcdj-logo-final-gray.svg?crc=3819810011 | 92.205.199.165 | 200 OK | 4.2 kB |
URL GET HTTP/2fakinthefunk.net/it/images/pcdj-logo-final-gray.svg?crc=3819810011 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hashffe66dee37fe0d19cea693c8cb2ff3bc aadd3bfcbf7b10774271ae9a2053d19f89a37956 2294b891b3a5c9ec503f2f9752ae573f78c61fdf751764955db80787b1da8ca3
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/pcdj-logo-final-gray.svg?crc=3819810011 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 4205
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:57 GMT
etag: "2c7a-5e1a10ffae97d-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/arrowmenudown-u9508.png?crc=3804264093 | 92.205.199.165 | 200 OK | 118 B |
URL GET HTTP/2fakinthefunk.net/it/images/arrowmenudown-u9508.png?crc=3804264093 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced Hash7221b5e2dee8dd9335f3c8e336d31b8f d54793b772acccaf524e8a7d973785a612655489 00156bf1fde7ad7d5fb926157457d283e4ea5d8385522e424b3f9b53191d816e
GET /it/images/arrowmenudown-u9508.png?crc=3804264093 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 118
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:02 GMT
etag: "68-5e1a110481322-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/twitter%20rotate%20(color).svg?crc=4099437681 | 92.205.199.165 | 200 OK | 648 B |
URL GET HTTP/2fakinthefunk.net/it/images/twitter%20rotate%20(color).svg?crc=4099437681 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeSVG Scalable Vector Graphics image Hash0e22bf13f531341baed99ae801562c11 f383b4073ecf1165b750f330aac39ffd8bc0063a f8548ed30411aa980dd9355608af056248a303ac633f0fd133e182ca9a554155
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/twitter%20rotate%20(color).svg?crc=4099437681 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/css/index.css?crc=66315000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/svg+xml
content-length: 648
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:00 GMT
etag: "570-5e1a1101f0f46-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-01-import.png | 92.205.199.165 | 200 OK | 43 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-01-import.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 1072 x 572, 8-bit/color RGBA, non-interlaced Hashc5b1c9bd5bd4b332c7e0a53803d554d0 467199be19f64a814d7b0ddfe2d69b0ab2071360 10d85d4a35a2497851cfb08a1b172d1d3da55457709590bbd64190d891fa6b95
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-01-import.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 43050
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "b380-5e1a1151f6c4d-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-04-save.png | 92.205.199.165 | 200 OK | 58 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-04-save.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 1072 x 572, 8-bit/color RGBA, non-interlaced Hashd9d35e1ffc81494e6c768c6d7d1ad94b 5f19297146ecd9a3e8a7c18d495b49966c82c341 6e10a8a153c7bd6eb1d2ad56ff7f1fb65dfea9e7be46034e7ac4a8af499883c0
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-04-save.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 58022
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "ef56-5e1a1151c5740-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-07-settings.png | 92.205.199.165 | 200 OK | 56 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-07-settings.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 1072 x 572, 8-bit/color RGBA, non-interlaced Hashb990b65d33c778ad1e83df058d15930a 97defeb418aaac299c9a480d3e1db027690d55bc 115523aca637d55cbed3011eb8e8e1e3e716c1d546e54ff10ccd778456576c0c
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-07-settings.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
content-length: 56345
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "e761-5e1a11515082e-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| | 92.205.199.165 | 200 OK | 57 kB |
URL User Request GET HTTP/2IP92.205.199.165:443 ASN#60253 Host Europe GmbH
CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typegzip compressed data, from Unix Hash21b9d915e870ddb68b88fb38f180e11e e3710fffb5603a9ef92981ef58a265990124b8cd 4f05c507202b440c87e05a6c2d418473f54ab97641a3897b717a8dcb449e014b
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/ HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:20 GMT
content-type: text/html
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Mon, 22 Jan 2024 06:33:56 GMT
etag: "50843-60f83039cfa06-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 IP216.58.207.227:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22420, version 1.0 Hash1157c949b5d3a24ed1bd538c058f19d8 e631e727d846d55763e447bda8dbdcbc4834ed9b 5ec1e2ebe080ec8fbfbdc7dd9c0c25449e1d98e4e947c11a00fd770d8841698b
GET /s/raleway/v29/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fakinthefunk.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 11:13:06 GMT
expires: Wed, 16 Apr 2025 11:13:06 GMT
cache-control: public, max-age=31536000
age: 103216
last-modified: Thu, 14 Sep 2023 00:56:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/museconfig.js?crc=4286661555 | 92.205.199.165 | 200 OK | 954 B |
URL GET HTTP/2fakinthefunk.net/it/scripts/museconfig.js?crc=4286661555 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (1503) Hash4d9a3b4f173d2540c92801e47d13a5b9 7df0d7a3a85444311844880ee9228da934a28efd 4d9ac4347c8aac04aa28ce361b37c07462475955e76c5b4008a73ea8d3791323
GET /it/scripts/museconfig.js?crc=4286661555 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 954
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "7fd-5e1a1105814bc-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-05-search.png | 92.205.199.165 | 200 OK | 91 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-05-search.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typegzip compressed data, from Unix Hashacdc9da32e85377a41ce6c9ceffcb12c 0fcf1dd6423f6eb010a5a25488cb2666735438ae c882da0675f8816ff735eed6c6d70ce151d91cf2e4c03f4217e847a5b62a3412
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-05-search.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "12bcf-5e1a11517debb-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 | 142.250.74.14 | | 86 kB |
URL GET www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 IP142.250.74.14:0
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58088) Hashe3c686bda1937d4c2716edf0ef24c7e7 0c0a444a2041f288dab4618c904451ee28f53545 c364c49170845fc6407e022efe9a405b26bd0dc38bbba2810aee3ef23d0bf493
GET /embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=_ZiLADQLdls; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=qAsVBTqNGGo; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICU%3D; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js | 142.250.74.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash73bed7d387f3099c72820dd9b42e2fe5 03f89760ea2b453def769dbb9f36a3e6f93b8516 a073311bd2d09cd43447d4c1863115036e5ed1208ca38d51a3ff725c44399c00
GET /s/player/03dc2242/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18139
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/03dc2242/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:20:26 GMT
expires: Tue, 15 Apr 2025 07:20:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js | 142.250.74.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash73bed7d387f3099c72820dd9b42e2fe5 03f89760ea2b453def769dbb9f36a3e6f93b8516 a073311bd2d09cd43447d4c1863115036e5ed1208ca38d51a3ff725c44399c00
GET /s/player/03dc2242/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18139
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/embed.js | 142.250.74.14 | | 18 kB |
URL www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/embed.js IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash1acbd20b4a303a41bba4c1af0636abbe 21497b44dca32bad04a2abbba7dd517e8cc16055 760bcaf29c194cd5c63b59b29fef5bc7fa164c844152ff5eee8f7b97e84a38ac
GET /s/player/f92087f2/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18187
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:25:31 GMT
expires: Wed, 16 Apr 2025 07:25:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 116871
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/03dc2242/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:20:26 GMT
expires: Tue, 15 Apr 2025 07:20:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/f92087f2/www-player.css | 142.250.74.14 | | 48 kB |
URL www.youtube.com/s/player/f92087f2/www-player.css IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasheff7afac8f7ac0ed881f37ffd3eebcbe 21acf841f4603dbfaed62decef15175b5d68f20f ff1235e0e6c896931d1f31f618b35e68a469befd8c90d7a0da22f1d988b0bbc2
GET /s/player/f92087f2/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48137
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:21:52 GMT
expires: Wed, 16 Apr 2025 07:21:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 117090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 565819
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 512895
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js | 142.250.74.14 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/embed.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash73bed7d387f3099c72820dd9b42e2fe5 03f89760ea2b453def769dbb9f36a3e6f93b8516 a073311bd2d09cd43447d4c1863115036e5ed1208ca38d51a3ff725c44399c00
GET /s/player/03dc2242/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18139
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/03dc2242/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:20:26 GMT
expires: Tue, 15 Apr 2025 07:20:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 565819
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 | 142.250.74.14 | 200 OK | 42 kB |
URL GET HTTP/2www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 IP142.250.74.14:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58088) Hash9c6ecd34b17c2524e2b5834fb69c2bce bb484065e9930ec50c0fa4a2590a78f020f8e64b 1a6f51bcb7be64fad5c2bd48c87cd8ee61e25550097270ff54e3722d3e299b2f
GET /embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ZRcB59tpvf0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=JsRvwwkMouo; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIEE%3D; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 512895
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/whatinput.js?crc=86476730 | 92.205.199.165 | 200 OK | 785 B |
URL GET HTTP/2fakinthefunk.net/it/scripts/whatinput.js?crc=86476730 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (525), with CRLF line terminators Hasha35ba9cea9d4b8fd1602ded56d363e65 be808984d3dff3c861d93e2395bacef958ddd344 8b4507ad2677bc9668ee296a3b44db60aea2134e6ca3c76131c0f7f24b5788db
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/whatinput.js?crc=86476730 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 785
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "6b0-5e1a110564f9e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/03dc2242/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:20:26 GMT
expires: Tue, 15 Apr 2025 07:20:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 565819
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/museutils.js?crc=4250906080 | 92.205.199.165 | 200 OK | 17 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/museutils.js?crc=4250906080 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (668), with CRLF line terminators Hash088c3c8b1e45a4b221fb8364ab815793 9d2a143b28add628a17027c669fff4bdea2e04e1 6d34c213b455e9b664a514bdf0b0c4e0cc6f6998889193a9404a0d16558c73ce
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/museutils.js?crc=4250906080 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 17432
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "f04b-5e1a11054d4b7-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 512895
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery-1.8.3.min.js?crc=209076791 | 92.205.199.165 | 200 OK | 33 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery-1.8.3.min.js?crc=209076791 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (65482), with CRLF line terminators Hashe1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32
GET /it/scripts/jquery-1.8.3.min.js?crc=209076791 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 33433
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "16dc5-5e1a11052c949-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?onload=muReCAPTCHA2OnloadCallback&render=explicit | 142.250.74.164 | 200 OK | 16 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=muReCAPTCHA2OnloadCallback&render=explicit IP142.250.74.164:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
Hash41fcc47cddac4e37f29392988ba35e92 4648f67194101e62787cc1f712069a5647f1546b 48e21e77784f6f4157dee14710e36ac93175258ac92b14dfff2ddce6b9dc7c6d
GET /recaptcha/api.js?onload=muReCAPTCHA2OnloadCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 17 Apr 2024 15:53:22 GMT
date: Wed, 17 Apr 2024 15:53:22 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery.musepolyfill.bgsize.js?crc=178212883 | 92.205.199.165 | 200 OK | 2.0 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery.musepolyfill.bgsize.js?crc=178212883 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (517), with CRLF line terminators Hash464d6a23ee9e2589eb3e59a4cdbb1f8e 5d4fb2fcdc6af1d1c62613242ed5b0eeade6102b bc5227cb3ea5fbef2fca192723505acf7258d49a9ba47e95ed93fce3a837d9db
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/jquery.musepolyfill.bgsize.js?crc=178212883 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 1988
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "13f0-5e1a1105b607a-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-03-spectrum.png | 92.205.199.165 | 200 OK | 432 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-03-spectrum.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typegzip compressed data, from Unix Size432 kB (431515 bytes) Hashb3c892ad64890a564346a69986a2372b b154c220ef5013a4990a46d39258a85a1d226c00 05c0c7ce63ed2cec037bd346d0f30e3d1a09565655acea6fc1c5ef22e5269090
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-03-spectrum.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "65f1f-5e1a1151adc59-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/webpro.js?crc=214003453 | 92.205.199.165 | 200 OK | 14 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/webpro.js?crc=214003453 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (585), with CRLF line terminators Hash19c531addbafbc0725beebdcdca9a7e3 0c78f0722dc7327f2e7b46107cb4d781d9f0ec79 09b744c047bf3d9438d9695d6a86f891794f03530438e953501950baf8880720
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/webpro.js?crc=214003453 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 14211
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "cf5a-5e1a1105d6be8-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 565819
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/musewpslideshow.js?crc=168777830 | 92.205.199.165 | 200 OK | 9.3 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/musewpslideshow.js?crc=168777830 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (567), with CRLF line terminators Hash8cb5a1925203f8db724027a15a40efcf 085f620b22dc64d11ac76fe39e377cd6cc4555da 54091ee37bab0b715566ffd5a7d46ba5f3fcff8e781708af2f6d57cca34e524d
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/musewpslideshow.js?crc=168777830 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 9302
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "8627-5e1a1105f1d7e-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 512895
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery.museoverlay.js?crc=4279841063 | 92.205.199.165 | 200 OK | 2.9 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery.museoverlay.js?crc=4279841063 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (534), with CRLF line terminators Hash48e280280dc6427038f4c61ddfd446b0 9c7bfd2a3c290001518b67a7c8675d1961c87404 13181d834f10fe00e17cfed0a7e54e070581ca03eb4ed4c6c40e5f2a18c221e6
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/jquery.museoverlay.js?crc=4279841063 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 2935
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "2208-5e1a11060dacd-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/touchswipe.js?crc=4065839998 | 92.205.199.165 | 200 OK | 3.9 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/touchswipe.js?crc=4065839998 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (532), with CRLF line terminators Hash81b64ac823a577303924ce58b8d847ed 8723f392e86a07488d20855e7ca357e1835e6fcd 9d247c2b691076aab85df0dc9f4922ddb3d628f15c7d11ed9ad104dea3dc5c4c
GET /it/scripts/touchswipe.js?crc=4065839998 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 3926
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "2782-5e1a1106274f4-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery.musemenu.js?crc=112316522 | 92.205.199.165 | 200 OK | 2.2 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery.musemenu.js?crc=112316522 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (545), with CRLF line terminators Hash194d4b580e8373bd745a2410cbe24216 fe4d24396049c27cb91eb925176be8e0b459a362 641d285f5dbc19ffdb7652d15d88f8ac0ae18ea1b64aacbcab9acaef89cfecda
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/jquery.musemenu.js?crc=112316522 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 2154
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "17f8-5e1a11068d1d6-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery.watch.js?crc=399457859 | 92.205.199.165 | 200 OK | 972 B |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery.watch.js?crc=399457859 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (501), with CRLF line terminators Hashd338333904c46202a036c6bcabda1431 33d1e7a7881c38c881215bc1756b8169b047781d bab32181e9d025908cd9fa8e1a99d38dbe9aa3ac93e1bbd9feacce5c71e46c41
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/jquery.watch.js?crc=399457859 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 972
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:03 GMT
etag: "73b-5e1a11059b6b3-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/scripts/jquery.scrolleffects.js?crc=3781904385 | 92.205.199.165 | 200 OK | 8.3 kB |
URL GET HTTP/2fakinthefunk.net/it/scripts/jquery.scrolleffects.js?crc=3781904385 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeJavaScript source, ASCII text, with very long lines (582), with CRLF line terminators Hashe52fe823d0ac5a4010f95468ac9669c9 984aeb67758188bb644da7c71ba671c07ce02d84 5951de923eabdc5fe3cfd05924fe8b047d1ce22647c2929f4efea9ae80e4d6da
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/scripts/jquery.scrolleffects.js?crc=3781904385 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: application/javascript
content-length: 8307
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:06:04 GMT
etag: "759d-5e1a1106a8b3d-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/f92087f2/www-embed-player.vflset/www-embed-player.js | 142.250.74.14 | | 98 kB |
URL www.youtube.com/s/player/f92087f2/www-embed-player.vflset/www-embed-player.js IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashb1882b5e3edaca0885f674750fe7bd88 b1c29c838ece05563e2ef1eb10cf7a986c588301 5a1b22f96bab9384df7827c7710b6477229500a6d2c0f6d8f9cff3d33d428894
GET /s/player/f92087f2/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97847
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:21:52 GMT
expires: Wed, 16 Apr 2025 07:21:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 117090
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/embed/1Cf5acKmB8U?rel=0 | 142.250.74.14 | 200 OK | 38 kB |
URL GET HTTP/2www.youtube.com/embed/1Cf5acKmB8U?rel=0 IP142.250.74.14:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58088) Hasha61fa8102be405ddc988e0cd536bff95 c04513c93725788ab71c9e72d23723424b5b8b14 48d7f9aa58aba76f4a27a02365b5e4f43803ceee79d0edc42ebf4a151d8def6b
GET /embed/1Cf5acKmB8U?rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=sjOXDh8BIaY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=7Cf7sDhjB2o; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIBU%3D; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.251.209.131 | 200 OK | 206 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.251.209.131:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fakinthefunk.net
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:14:29 GMT
expires: Wed, 16 Apr 2025 00:14:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 142733
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/base.js | 142.250.74.14 | | 809 kB |
URL www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/base.js IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size809 kB (809144 bytes) Hash0d2406f6a79bde4d11ad5f70b18ba433 699a5d887b0557a5f788fea125e4260cf41fdb55 001b4c1ed0ccce6c39372a81fc4e9464950f77c72fd53aea1f78f999c0dd9bd3
GET /s/player/f92087f2/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:25:31 GMT
expires: Wed, 16 Apr 2025 07:25:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 116871
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 808 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size808 kB (808471 bytes) Hash277db9b3e1103b9cbc8d235e0a2d90f0 48afe203acbfb1bc1a056add488dcb2821018960 a9e803a861a3efdacc5e6f1069962b11f9e1a022917732041a632366fa390bc8
GET /s/player/03dc2242/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 808 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size808 kB (808471 bytes) Hash277db9b3e1103b9cbc8d235e0a2d90f0 48afe203acbfb1bc1a056add488dcb2821018960 a9e803a861a3efdacc5e6f1069962b11f9e1a022917732041a632366fa390bc8
GET /s/player/03dc2242/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 808 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size808 kB (808471 bytes) Hash277db9b3e1103b9cbc8d235e0a2d90f0 48afe203acbfb1bc1a056add488dcb2821018960 a9e803a861a3efdacc5e6f1069962b11f9e1a022917732041a632366fa390bc8
GET /s/player/03dc2242/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js | 142.250.74.14 | 200 OK | 808 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/base.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size808 kB (808471 bytes) Hash277db9b3e1103b9cbc8d235e0a2d90f0 48afe203acbfb1bc1a056add488dcb2821018960 a9e803a861a3efdacc5e6f1069962b11f9e1a022917732041a632366fa390bc8
GET /s/player/03dc2242/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808471
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:28:11 GMT
expires: Tue, 15 Apr 2025 07:28:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 203111
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js | 142.250.74.14 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash4e0d3ea4920caa4f0f3a3039642a42c9 0f5d43dd4a61142c0217a4c0aee7c0c03a13964d 891100b36946076341377b6cfadca9e8323fc9179f76e205ca979bac78b0ad23
GET /s/player/03dc2242/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:30:40 GMT
expires: Tue, 15 Apr 2025 07:30:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 202964
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/remote.js | 142.250.74.14 | | 34 kB |
URL www.youtube.com/s/player/f92087f2/player_ias.vflset/en_US/remote.js IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash462a38de456c9bf85d5fbf305ad911aa 21c5b449394b4f4e1ce291307e01db301405d0e0 308f0e0c362d5cc2a3852a351a7c12929a4601a120d7bacbf3f72d984b694c83
GET /s/player/f92087f2/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33854
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:28:32 GMT
expires: Wed, 16 Apr 2025 07:28:32 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 116692
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/3www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:22 GMT
expires: Thu, 17 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
age: 38942
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js | 142.250.74.14 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash4e0d3ea4920caa4f0f3a3039642a42c9 0f5d43dd4a61142c0217a4c0aee7c0c03a13964d 891100b36946076341377b6cfadca9e8323fc9179f76e205ca979bac78b0ad23
GET /s/player/03dc2242/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:30:40 GMT
expires: Tue, 15 Apr 2025 07:30:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 202966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/3www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:22 GMT
expires: Thu, 17 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
age: 38944
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js | 142.250.74.14 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash4e0d3ea4920caa4f0f3a3039642a42c9 0f5d43dd4a61142c0217a4c0aee7c0c03a13964d 891100b36946076341377b6cfadca9e8323fc9179f76e205ca979bac78b0ad23
GET /s/player/03dc2242/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/eGVAJ98anpg?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:30:40 GMT
expires: Tue, 15 Apr 2025 07:30:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 202966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713369205947
Content-Type: application/json
X-Goog-Visitor-Id: CgtIOVlYVXVTQTJXNCjx4P-wBjIOCgJOTxIIEgQSAgsMIEk%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240414.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713369203096&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C720&vis=1&wgl=true&ca_type=image
Content-Length: 10206
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 17 Apr 2024 15:53:26 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/5kbDTxVR17c/maxresdefault.webp | 142.250.74.182 | | 23 kB |
URL i.ytimg.com/vi_webp/5kbDTxVR17c/maxresdefault.webp IP142.250.74.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hashcac7a89a76e369899799544f18db9d3b 6567cf4dc8d4a5e9f9fce3d3b1777aedd1593d86 c657ffc0c028e80209ddc64b005504a7df72f0470ddc403036333bef22a950aa
GET /vi_webp/5kbDTxVR17c/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 23020
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Wed, 17 Apr 2024 17:53:26 GMT
cache-control: public, max-age=7200
etag: "1493927080"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hasha35b944089cd9951f02bbe6003503ceb 77885a142949e1bad6299e44282e161d82c6d6e0 e11873c2a2b6432adac1050bb38e64a0b336ea582fbf017ecb25a27d2222bf5e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:26 GMT
server: ESF
cache-control: private
content-length: 42138
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 | 142.250.74.14 | 200 OK | 38 kB |
URL GET HTTP/2www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 IP142.250.74.14:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (58090) Hashea49243b4581ce4408ee3572cf043cfb dbd8462903ef592024464ae562a734b60f607b6d 094fd2d3dbfe923a5bb001d9304f2f141b376feba7208abf340937573d51e78c
GET /embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=LT7wbuiv15w; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=SG7k-Dfsigo; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIFc%3D; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/1Cf5acKmB8U/maxresdefault.webp | 142.250.74.182 | 200 OK | 16 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/1Cf5acKmB8U/maxresdefault.webp IP142.250.74.182:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hashefee5d53164fa87e7967a15bffda3953 7b0819a16220726c35eb87101cb9d6c0b598100d ce67ceb407d150b26c191dbc9cc6302e177967d1bd2b3f2b53d8167bc1387883
GET /vi_webp/1Cf5acKmB8U/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 15622
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Wed, 17 Apr 2024 17:53:26 GMT
cache-control: public, max-age=7200
etag: "1485686448"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hasha0a4d88361bedc2ad650680e8b0ceba1 5b3614e4c935ede6b08a959a5f50540ad6beae68 a458ca2ea561542b7a612a07a62abe72c59e2c8df4cac456e4fa578148d4afbf
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:26 GMT
server: ESF
cache-control: private
content-length: 42048
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashe571cb45feb111f4463552a18c152f05 ca22f836791ecbfe7e47eefe88df383327a5f892 225900b601e75c6dc0443cf8299ec80320d5e58f39fae28c26a098dc19ca80e1
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:26 GMT
server: ESF
cache-control: private
content-length: 42293
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/lhn43jQDRRA/maxresdefault.webp | 142.250.74.182 | | 13 kB |
URL i.ytimg.com/vi_webp/lhn43jQDRRA/maxresdefault.webp IP142.250.74.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hashcb21b585f9482732485f2eb0007fcaae 6081d8f9b7dec7afa44a3b1b83958d9a42ffe9fe 1c770ae8060572066bd7617276abf97ec3e2bedc0d3747e0a6a2e46e254f425a
GET /vi_webp/lhn43jQDRRA/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 13306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Wed, 17 Apr 2024 17:53:26 GMT
cache-control: public, max-age=7200
etag: "1518608611"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/eGVAJ98anpg/maxresdefault.webp | 142.250.74.182 | | 20 kB |
URL i.ytimg.com/vi_webp/eGVAJ98anpg/maxresdefault.webp IP142.250.74.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hash0d673025c042026d09d6c5967ba44cb3 12f56b5374e5ef226cc4ae5195047f1a8e02d602 9b9bab6e6a614bf42536341062c3917d63f3189bb80d8ddb8d8d9e6ae7538c39
GET /vi_webp/eGVAJ98anpg/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Wed, 17 Apr 2024 17:53:26 GMT
cache-control: public, max-age=7200
etag: "1493927070"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/3www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:22 GMT
expires: Thu, 17 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
age: 38944
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css | 142.251.209.131 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css IP142.251.209.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56412), with no line terminators Hash2c00b9f417b688224937053cd0c284a5 17b4c18ebc129055dd25f214c3f11e03e9df2d82 1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:03:24 GMT
expires: Wed, 16 Apr 2025 00:03:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 143402
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash531b88b4236364ecee347772151f90f7 f21b5393e74db05649c7ee672997a04a5cf32641 34171e78f6cf2287a7fa1ca82406c170207f9911d3cde6541a621274fc689576
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:26 GMT
server: ESF
cache-control: private
content-length: 42287
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.251.209.131 | 200 OK | 206 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.251.209.131:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:14:29 GMT
expires: Wed, 16 Apr 2025 00:14:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 142737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/generate_204?N4x_YA | 142.250.74.14 | | 0 B |
URL www.youtube.com/generate_204?N4x_YA IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?N4x_YA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:53:26 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 917 B |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash848612131cdd35c94c95ff0090537dfd 6c7c2dc49b1e492fc6c8c5be2086d1e8ea50dc88 cdb97cd916e51c995b76a65826e581150f11c2a457d0c98c8b71b858b010c0c6
GET /ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 18 Apr 2024 15:53:26 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 17 Apr 2024 15:53:26 GMT
server: fife
content-length: 917
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/generate_204?uUiuAQ | 142.250.74.14 | | 0 B |
URL www.youtube.com/generate_204?uUiuAQ IP142.250.74.14:0
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?uUiuAQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:53:26 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 565823
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js | 142.250.74.164 | 200 OK | 7.5 kB |
URL GET HTTP/3www.google.com/js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17614) Hasha0b566c1ba416a3899181051b4e22648 6e24d55d8094a8e96bbcdb2c8b2baec42ad59128 4564d3de8c55a639cc6a4deab39befeed839c5292aed8a9730636cdda0573214
GET /js/bg/RWTT3oxVpjnMak3qs5vv7tg5xSkq7YqXMGNs3aBXMhQ.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:03:42 GMT
expires: Thu, 17 Apr 2025 05:03:42 GMT
cache-control: public, max-age=31536000
age: 38984
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.251.209.131 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.251.209.131:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:59:56 GMT
expires: Thu, 18 Apr 2024 02:59:56 GMT
cache-control: public, max-age=604800
age: 564810
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC | 142.250.74.164 | 200 OK | 206 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206169 bytes) Hashcc7146073f3cd862905d3706b50af59b 337e481f0127a520fd5e4e46065da454513da1f3 20a324fa421e66b9256335997260ed6697c2915f93df1300c158b1139745cdfb
GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 17 Apr 2024 15:53:26 GMT
date: Wed, 17 Apr 2024 15:53:26 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/generate_204?1eIFsg | 142.250.74.14 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?1eIFsg IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?1eIFsg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 15:53:26 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 917 B |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash848612131cdd35c94c95ff0090537dfd 6c7c2dc49b1e492fc6c8c5be2086d1e8ea50dc88 cdb97cd916e51c995b76a65826e581150f11c2a457d0c98c8b71b858b010c0c6
GET /ytc/AIdro_nvqKaYMWxQKHX3irrayXVlPOWmdsHJYcohmzd1eEc=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 917
x-xss-protection: 0
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Thu, 18 Apr 2024 15:53:26 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js | 142.250.74.14 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/03dc2242/player_ias.vflset/en_US/remote.js IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash4e0d3ea4920caa4f0f3a3039642a42c9 0f5d43dd4a61142c0217a4c0aee7c0c03a13964d 891100b36946076341377b6cfadca9e8323fc9179f76e205ca979bac78b0ad23
GET /s/player/03dc2242/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/8Lwz27LHt5g?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 07:30:40 GMT
expires: Tue, 15 Apr 2025 07:30:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 04:14:42 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 202966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashb43d3c4b0bf370db00db2473b3107a20 05c559077822ca8bdf03640345783288a4982a4a e0e5a08c1cc254f7ef383213319810142b0b5ed5ff617b99add83a86df367f94
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:26 GMT
server: ESF
cache-control: private
content-length: 42071
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/3www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:04:22 GMT
expires: Thu, 17 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
age: 38944
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| i.ytimg.com/vi_webp/8Lwz27LHt5g/maxresdefault.webp | 142.250.74.182 | | 18 kB |
URL i.ytimg.com/vi_webp/8Lwz27LHt5g/maxresdefault.webp IP142.250.74.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hash61b488d0016d303ad5bf51e39d352cf3 e69cf0ccfb10b1f8a37a8cb3494fd7ff57e3c3fc 134450d3656cea730d34e73ec48e234716371f9b8f4bb736c80391a3b73b4c58
GET /vi_webp/8Lwz27LHt5g/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18492
date: Wed, 17 Apr 2024 15:53:26 GMT
expires: Wed, 17 Apr 2024 17:53:26 GMT
cache-control: public, max-age=7200
etag: "1493927053"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713369206892
Content-Type: application/json
X-Goog-Visitor-Id: CgtKc1J2d3drTW91byjx4P-wBjIOCgJOTxIIEgQSAgsMIEE%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240414.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713369202481&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C720&vis=1&wgl=true&ca_type=image
Content-Length: 10222
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lhn43jQDRRA?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 17 Apr 2024 15:53:26 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 114 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash4def6dbcab6e4abd2156d40a8ad91bc4 196123d07eccc639418d0a7dfa2c3e85a0a7b774 3103a66063f124d13afb8372d82fabbaad401128fede8a1757fb9fa32db277d0
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1271
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:27 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 114 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash04bb1fd8f2de5b3af5ef87f607aec053 dc39a506352efa258d99a2af1eeee190e4d5cbbc 7ff6baec3bb868056ae69f50d92d087fd5cc4f7e15b35c4537a9e0b2f781bf78
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1272
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:27 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 | 142.250.74.164 | 200 OK | 54 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 IP142.250.74.164:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (38586) Hash9b2cf9d658dfb5481aab5c0fb9b40bf6 b11d1b5804c39d4541ad99784bc4e70ae9cf8708 575543f8e7ff728de7100a53874caa14db9fd47056e5c8fdde8d168c7dc28587
GET /recaptcha/api2/anchor?ar=1&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC&co=aHR0cHM6Ly9mYWtpbnRoZWZ1bmsubmV0OjQ0Mw..&hl=en&type=image&v=QoukH5jSO3sKFzVEA7Vc8VgC&theme=dark&size=normal&cb=czs50pxcsrk9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:24 GMT
content-security-policy: script-src 'nonce-Z5Z22vGdcFEh0NCcoYQYHg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.251.209.131 | 200 OK | 206 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.251.209.131:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:14:29 GMT
expires: Wed, 16 Apr 2025 00:14:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 142738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 110 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash6826ec0b8a15eecbb0ad5614187c3920 d438b07531ab591cb1a3243a347f6ff802f7a610 33fbbe70e46e2cd613d235609a0c2b0db9c564e59cf286e31280d058062af8bc
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 866
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:27 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 110 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashc48332acc22b3d558f38dab7f615aa7b 674e646a470b45a7e171bdd867bcbb18516f9af3 b5009df2ae7a05969a8a34be3ee433a99dcf8895ed6651d707f59119c0722af9
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1274
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:27 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 17 Apr 2024 15:53:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 114 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashb1cb7646433e555a801fe44029a2e0f6 ae2ebe050bdb3632aff443ab853f5d172648bd61 a69349712ca3074a5be02d7aaf9ec385b7cb20885ba9e74021558e0ef2d1ed45
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1335
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 17 Apr 2024 15:53:27 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713369207921
Content-Type: application/json
X-Goog-Visitor-Id: Cgs3Q2Y3c0RoakIybyjx4P-wBjIOCgJOTxIIEgQSAgsMIBU%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240414.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713369202525&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C854%2C480&vis=1&wgl=true&ca_type=image
Content-Length: 11272
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 17 Apr 2024 15:53:27 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.14 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.14:443
Requested byhttps://www.youtube.com/embed/1Cf5acKmB8U?rel=0 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713369231307
Content-Type: application/json
X-Goog-Visitor-Id: Cgs3Q2Y3c0RoakIybyjx4P-wBjIOCgJOTxIIEgQSAgsMIBU%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240414.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713369202525&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C854%2C480&vis=1&wgl=true&ca_type=image
Content-Length: 912
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/1Cf5acKmB8U?rel=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 17 Apr 2024 15:53:51 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 | 142.250.74.14 | 200 OK | 92 kB |
URL GET HTTP/2www.youtube.com/embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 IP142.250.74.14:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/5kbDTxVR17c?autoplay=0&loop=0&showinfo=0&theme=dark&color=red&controls=1&modestbranding=1&start=0&fs=1&iv_load_policy=3&wmode=transparent&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=NBncA97z5JE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=H9YXUuSA2W4; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIEk%3D; Domain=.youtube.com; Expires=Mon, 14-Oct-2024 15:53:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC IP142.250.74.164:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (7672), with no line terminators Hashd6b764353da56e72c9f099a6da5d7f7f 6d4c05f3cd6a90a05db84b3f57c54740e3c22a0d cdaa90c44f7b39963034c15cab151c55b896e0c2f147b29b765d608f3b02e3dc
GET /recaptcha/api2/bframe?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&k=6LdVAxQUAAAAAAYJJMBhqnzaSdp0b2c5muiHGfTC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 17 Apr 2024 15:53:27 GMT
content-security-policy: script-src 'nonce-a14-yhunPws__Yu1NrlUxA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Raleway | 142.250.74.106 | 200 OK | 1.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Raleway IP142.250.74.106:443
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1799), with no line terminators Hasheee9e4fb6b8c4d949b482179e4435d44 367dfc68f15a6dc5c6b7340e50d916e1c2589c76 54918a6094507d1ed222b493334bb86f01c8ca545e35543670a8dce67cd55239
GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 15:53:21 GMT
date: Wed, 17 Apr 2024 15:53:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-02-results.png | 92.205.199.165 | 200 OK | 85 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-02-results.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 1072 x 572, 8-bit/color RGBA, non-interlaced Hash1342d039920cd780604cb864085d271e 54fdfd973e74ecfe4c7891068eaf5ace355f3f92 66a0b17075a5a4a9b598850f22c16d8e7bf3aceb86f2489d2cbd567f8b387d47
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-02-results.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "14ace-5e1a1151ded7e-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/assets/fakinthefunk-06-rightclick-menu.png | 92.205.199.165 | 200 OK | 89 kB |
URL GET HTTP/2fakinthefunk.net/it/assets/fakinthefunk-06-rightclick-menu.png IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typePNG image data, 1072 x 572, 8-bit/color RGBA, non-interlaced Hash46c70110f4d4e2a7ac6cd3050a4f705c 4b4e00956f1c4d6e0d81d561842c786d8b33da70 e42eb23a7d3e05f49582ff380934831b9bdd4faa02fc1fbd3a53e18fa3961fe8
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/assets/fakinthefunk-06-rightclick-menu.png HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:21 GMT
content-type: image/png
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:07:23 GMT
etag: "15b83-5e1a115168315-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
X-Firefox-Spdy: h2
|
|
| fakinthefunk.net/it/images/home-favicon.ico?crc=4254068288 | 92.205.199.165 | 200 OK | 18 kB |
URL GET HTTP/2fakinthefunk.net/it/images/home-favicon.ico?crc=4254068288 IP92.205.199.165:443 ASN#60253 Host Europe GmbH
Requested byhttps://fakinthefunk.net/it/ CertificateIssuerStarfield Technologies, Inc. Subjectfakinthefunk.net FingerprintB6:02:7F:EF:82:A0:53:97:12:FA:17:CC:55:2F:47:FE:28:7D:02:A6 ValiditySun, 03 Mar 2024 08:46:34 GMT - Fri, 07 Mar 2025 08:19:38 GMT
File typeMS Windows icon resource - 1 icon, 64x64, 32 bits/pixel Hash6c6cf340f6866f4342aec105dac8fe12 dc1aee055c5abb09efdd721f3af259b147806079 81cfc1e8854adbbaf82ba6f98978470b45db1e16da08e0311d804df60532e768
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. |
GET /it/images/home-favicon.ico?crc=4254068288 HTTP/1.1
Host: fakinthefunk.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fakinthefunk.net/it/
Cookie: visits=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 15:53:22 GMT
content-type: image/vnd.microsoft.icon
content-length: 3925
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Jun 2022 09:05:38 GMT
etag: "443e-5e1a10edba764-gzip"
cache-control: max-age=2592000, public
expires: Fri, 17 May 2024 15:53:22 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-cache-status: BYPASS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|