Overview

URL dapatkan-pulsa.gq/
IP195.20.52.201
ASNAS31624 Verotel International B.V.
Location Netherlands
Report completed2018-11-27 19:38:57 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-11-27 19:38:27 CET 2 Client IP  35.186.233.234 ET POLICY HTTP Request to a *.tk domain
2018-11-27 19:38:26 CET 2 Client IP  35.186.233.234 ET POLICY HTTP Request to a *.tk domain
2018-11-27 19:38:32 CET 2 Client IP  35.186.233.234 ET POLICY HTTP Request to a *.tk domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-11-27 2 dapatkan-pulsa.gq/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 195.20.52.201

Date UQ / IDS / BL URL IP
2018-12-02 13:18:34 +0100
0 - 1 - 0 01229745950.ml/ 195.20.52.201
2018-10-03 08:09:06 +0200
0 - 1 - 1 ghjchgdgfzgmcos.cf/129info.com/main2 195.20.52.201
2017-09-24 21:09:45 +0200
0 - 0 - 1 kwjx2.ga/ 195.20.52.201
2017-07-22 13:50:10 +0200
0 - 0 - 2 vviruslove.cf/2016/12/2017.html 195.20.52.201

Last 10 reports on ASN: AS31624 Verotel International B.V.

Date UQ / IDS / BL URL IP
2019-01-20 22:32:10 +0100
0 - 3 - 0 webchuan.tk/ 195.20.46.36
2019-01-20 18:51:26 +0100
0 - 0 - 1 smarts-toys.tk/mail.exe 195.20.47.78
2019-01-20 17:53:41 +0100
0 - 1 - 0 petratours.cf/ 195.20.48.39
2019-01-20 17:51:12 +0100
0 - 1 - 0 bestofilmel.tk/ 195.20.45.58
2019-01-20 17:03:42 +0100
0 - 1 - 0 skin-free.hol-2018.gq/ 195.20.49.143
2019-01-20 17:01:49 +0100
0 - 1 - 1 lehorir.cf/ 195.20.54.61
2019-01-20 16:31:34 +0100
0 - 3 - 0 helpermy2510123456789.tk/ 195.20.40.204
2019-01-20 15:59:36 +0100
0 - 0 - 1 whoast.tk/index 195.20.42.199
2019-01-20 15:54:47 +0100
0 - 0 - 1 mindgetting.tk/index 195.20.47.29
2019-01-20 15:32:35 +0100
0 - 0 - 1 meganfotx.tk/jdd 195.20.43.215

Last 10 reports on domain: dapatkan-pulsa.gq

Date UQ / IDS / BL URL IP
2018-11-26 23:38:56 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-25 16:41:31 +0100
0 - 0 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-24 07:38:59 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-22 13:38:56 +0100
0 - 6 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-21 06:39:10 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-19 05:17:23 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-17 23:35:55 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-17 02:48:47 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-15 07:07:56 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135
2018-11-14 18:29:09 +0100
0 - 10 - 2 dapatkan-pulsa.gq/ 149.202.166.135


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (36)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: dapatkan-pulsa.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         195.20.52.201
HTTP/1.1 203 Non-Authoritative Information
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Nov 2018 18:38:26 GMT
Content-Length: 659
Connection: keep-alive
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: JSESSIONID=B564C40C700BE318A0976C5D56CF3DFC; Path=/; HttpOnly
X-Server: b883eac4ec8a


--- Additional Info ---
Magic:  HTML document text
Size:   659
Md5:    4849a60dc2005c7f30f8720958a2124f
Sha1:   a48019a3a636fcbc4a07ad84b0a7b3f50a2949e0
Sha256: 5c051245fc521d46923613e47b6b465ea1e540ac1e17e82892da9cd433112412

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dapatkan-pulsa.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=B564C40C700BE318A0976C5D56CF3DFC

                                         
                                         195.20.52.201
HTTP/1.1 429 Too Many Requests
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 27 Nov 2018 18:38:26 GMT
Content-Length: 178
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    403214dab1dc8abd38496301eff419c1
Sha1:   b4c91f28fc64e602d63ae40f9e8ec23f2cd73c45
Sha256: ac061aeb038d56f49ccd10f7684c8f20b7a75d965279217bdd9665c65992bbc9
                                        
                                            GET /p/?d=DAPATKAN-PULSA.GQ&i=77.40.129.123&c=47&ro=0&ref=unknown&_=1543343905698 HTTP/1.1 
Host: domain.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dapatkan-pulsa.gq/

                                         
                                         217.115.151.99
HTTP/1.0 302 Found
Content-Type: text/html; charset=ISO-8859-1
                                        
Date: Tue, 27 Nov 2018 18:38:25 GMT
Server: Apache/1.3.41 (Unix) mod_perl/1.30
Location: http://www.dot.tk/
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dapatkan-pulsa.gq/

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:25 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:25 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:25 GMT
Date: Tue, 27 Nov 2018 18:38:25 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /en/index.html?lang=en HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dapatkan-pulsa.gq/
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 17:51:05 GMT
Content-Length: 24164
X-GUploader-UploadID: AEnB2UrdBwPHcI30DdGyRMyrS0o7JF8pittiGlARGMTiW5KqJ--d3DK2P4gzZkivOGSwL9vIpe40SsHB_ZfsinJXoUSHZGVMiA
Expires: Tue, 27 Nov 2018 18:51:05 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "c18547c6af07588201e6fb4c5c305553"
x-goog-generation: 1486570374609937
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 24164
Content-Language: en
x-goog-hash: crc32c=A/RRCw==, md5=wYVHxq8HWIIB5vtMXDBVUw==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 2840
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   24164
Md5:    c18547c6af07588201e6fb4c5c305553
Sha1:   9469da6afe1f452401d990e3f4b582cb3b530304
Sha256: 993dbb4fcd63aa077b64b6196526201741baa8d71e956c0db7930a1032fa5899
                                        
                                            GET /images.v2/logo.png HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 18:05:01 GMT
Content-Length: 9309
X-GUploader-UploadID: AEnB2UpgYFtGWsDe9byu7QiFArWaD5DFIC2LXltYW4ohGVuVw_rGoprwhiSCex3SiQSq14CYHD3wk7zPLaNmfHsHnrE1Wmr1RA
Expires: Tue, 27 Nov 2018 19:05:01 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:46 GMT
Etag: "cf869c0a6dbfa71c1981c35d85fd8053"
x-goog-generation: 1465472206459000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9309
Content-Language: en
x-goog-hash: crc32c=i689kw==, md5=z4acCm2/pxwZgcNdhf2AUw==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 2005
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  PNG image, 300 x 200, 8-bit/color RGBA, non-interlaced
Size:   9309
Md5:    cf869c0a6dbfa71c1981c35d85fd8053
Sha1:   b47d8e7d26cf0fc2989e79ada637ecf4a3df4328
Sha256: 8e03bc9d923ade686eb09696983c7a6961f75595178fda35681f5f561b03c5d1

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /ajax/libs/jquery/2.0.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29440
Date: Tue, 27 Nov 2018 15:26:06 GMT
Expires: Wed, 27 Nov 2019 15:26:06 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 11540


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29440
Md5:    28af7f5e92a03473c5dce4c935ce3050
Sha1:   33d1ea00351b34426b7cdab04c41038b403b2016
Sha256: ac81a37b4a51234bcd7d53ad9b26513ca6a07b50a9aa4060791d37e528984a0c
                                        
                                            GET /css/reset.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 17:44:47 GMT
Content-Length: 3924
X-GUploader-UploadID: AEnB2Uqt59_Dvob8o6M8AcTlnchmH_jDb5rdgnS2smy7LO2AFf8uv5FDZW4KCn5aAck7DAC3EesO_0qDMBm1q0Oywo1nR73Umg
Expires: Tue, 27 Nov 2018 18:44:47 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:36 GMT
Etag: "8219336bd4c8c7266d6ee6d8cbbc57fd"
x-goog-generation: 1465472196758000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3924
Content-Language: en
x-goog-hash: crc32c=Dlg3aQ==, md5=ghkza9TIxyZtbubYy7xX/Q==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Cache-Control: max-age=3600,public
Age: 3219


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   3924
Md5:    8219336bd4c8c7266d6ee6d8cbbc57fd
Sha1:   bfbd30e06fe1a5f4fcd84b3f77327d4bc32e4c0b
Sha256: a3216d8151c1701c2bb64a7c24f19e05a2e73eef994f3bfb54cc85d4fd093ef0
                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 17:39:52 GMT
Content-Length: 20287
X-GUploader-UploadID: AEnB2UrZ6zt0wXtaoNUz6NEww5JpXQtGh4cE3Yy6zwiLIE9hRCxhLJ9PUEhdi2_8yXg8FJqzm-TXwJL2GMnBLl64onE0p2F0bA
Expires: Tue, 27 Nov 2018 18:39:52 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "1a4bc294c01009244e93bc9981945932"
x-goog-generation: 1486570374566291
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20287
Content-Language: en
x-goog-hash: crc32c=QtS1mQ==, md5=GkvClMAQCSROk7yZgZRZMg==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Age: 3514
Cache-Control: max-age=3600,public


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   20287
Md5:    1a4bc294c01009244e93bc9981945932
Sha1:   01a125067639cb5966291b33a5a77f2c38b4be33
Sha256: 14b25cff57af5967c41fd02971a342972037a5096f7c665b505e4b2e488ac333
                                        
                                            GET /js/rotatingbg.js HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 17:43:26 GMT
Content-Length: 1751
X-GUploader-UploadID: AEnB2UqHgVKAk9hDLAnHTA1O9Rbk4dBLRYTaUEDaPBevBiVuBbuEXR9w7e6qhgp1jSMb8rmupGJvCIGK-goYbn8uY9f0_r7fVg
Expires: Tue, 27 Nov 2018 18:43:26 GMT
Last-Modified: Wed, 08 Feb 2017 16:12:54 GMT
Etag: "313c0f5d884c7f780d69abc422ea0e44"
x-goog-generation: 1486570374978085
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1751
Content-Language: en
x-goog-hash: crc32c=qQ23fg==, md5=MTwPXYhMf3gNaavEIuoORA==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Cache-Control: max-age=3600,public
Age: 3300


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1751
Md5:    313c0f5d884c7f780d69abc422ea0e44
Sha1:   a662cc07beded0473e46739737ce322f28442c19
Sha256: 0d0529bb9ba7a196880355c2f59828de90a09733065e08c98cd8e4f6f3758ffd
                                        
                                            GET /css/availability.css HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 18:08:41 GMT
Content-Length: 22354
X-GUploader-UploadID: AEnB2UqoBIESStcyV3y1aOKo011PeQtfavYMUGvQbwD7P5qxNyAPXaqumA0XZ0vtm42EBrulXYvbDLP3Ku5u2Un2Rk2Z3TMSiA
Expires: Tue, 27 Nov 2018 19:08:41 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:37 GMT
Etag: "86d246c9551d66a032950723f08ac7e1"
x-goog-generation: 1465472197621000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 22354
Content-Language: en
x-goog-hash: crc32c=RNiRqw==, md5=htJGyVUdZqAylQcj8IrH4Q==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google
Cache-Control: max-age=3600,public
Age: 1785


--- Additional Info ---
Magic:  ASCII C program text, with CRLF line terminators
Size:   22354
Md5:    86d246c9551d66a032950723f08ac7e1
Sha1:   3f1a791aaa19aa0e898c1a7aa74694f579d09a24
Sha256: 176859b8b2c7587c8f2f59fd68a1842641ca4bc3be58e2e15b88d162d1bdfada
                                        
                                            GET /ui/1.11.2/jquery-ui.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         205.185.208.52
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 113672
Last-Modified: Fri, 24 Oct 2014 00:16:08 GMT
Server: nginx
Etag: W/"54499a48-7296c"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1543343906.dop001.sk1.t,1543343906.cds046.sk1.c


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   113672
Md5:    e6e59c2adcb2d2ffddd4473670a793f0
Sha1:   0a39a7ada2975e109e1ac5b9ff389d16a42964b0
Sha256: b426d31b38119c3c13198b79597976f60024eafb459e356313925e242bf10a92
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Nov 2018 18:38:26 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    5a5bcdcbebaec7e89d571d0941d87d5a
Sha1:   19d83edcc1273cf30bf5f22d0c455c0fb6eb1cf5
Sha256: 98b8f461f70e80da438f5be8bf60245401f242cb5247ed374a7c1e70387eb7c7
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Nov 2018 18:38:26 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 23 Nov 2018 03:41:19 GMT
Etag: 87BCF3E84931FA05A33F43B422A79409ECB67346
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=204729
Expires: Fri, 30 Nov 2018 03:30:35 GMT
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d932110f045a82ac3a05d0fbefdf5df8
Sha1:   87bcf3e84931fa05a33f43b422a79409ecb67346
Sha256: cc62960691fabf0d8ff9c9aff25480da557da4af3192eeae992a42fb2c579484
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 24 Nov 2018 02:14:26 GMT
Etag: 5E6CBA00B2255F801F40C35094736536A95E43BD
X-OCSP-Responder-ID: (null)
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=285914
Expires: Sat, 01 Dec 2018 02:03:40 GMT
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    63187578e3801e8fbea97d4abfa59a68
Sha1:   5e6cba00b2255f801f40c35094736536a95e43bd
Sha256: 85f4bc1e3edf80243b4dffdd58fb81d52fc6b60547ea887da16d71eb2f50d59a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 24 Nov 2018 02:14:26 GMT
Etag: 65362B1C5AFC1336FBACCBBD8836A14D8048B242
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=285934
Expires: Sat, 01 Dec 2018 02:04:00 GMT
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4a0eef7a52f794ba0e648cb9c0db519c
Sha1:   65362b1c5afc1336fbaccbbd8836a14d8048b242
Sha256: 007dbf78545056ff7e09e961bf72c80db461f31da5374803bf2e1ce5f8545464
                                        
                                            GET /ajax/libs/jquery/1.6.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 32222
Date: Sun, 11 Nov 2018 23:40:29 GMT
Expires: Mon, 11 Nov 2019 23:40:29 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 1364277
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   32222
Md5:    a015b68cda88f520df0928508a54a7c0
Sha1:   a848deb0d23d4d7d9284713d63c166b83224ef79
Sha256: cbbe607200143bcb0190054543cd723ec1317aac43ab5f03a291dc9ab6163074
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 24 Nov 2018 01:31:11 GMT
Etag: 07A67235EFDC976E6DB1F10689B30FB3B2F4EF4D
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=283337
Expires: Sat, 01 Dec 2018 01:20:43 GMT
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    19fc096feaddb0ec84fda04a2c9a5923
Sha1:   07a67235efdc976e6db1f10689b30fb3b2f4ef4d
Sha256: 5b313d8917609508e0653354d9da41e164e5f83c65b9831006c3450663185249
                                        
                                            GET /css?family=Lato:400,300,100,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 27 Nov 2018 18:38:26 GMT
Date: Tue, 27 Nov 2018 18:38:26 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   267
Md5:    c19afbae780ee2fe8eac1f4df92c4430
Sha1:   2ea8d0445eb1f296ee6cef2adda4df8c87b25f5c
Sha256: 4f4a041e6f1e1576d1e9ee6e41de110a32ece8633b52d9a31edcdfacf9d70b60
                                        
                                            GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Tue, 27 Nov 2018 18:38:26 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1518903977"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 4292
Last-Modified: Sat, 17 Feb 2018 21:46:17 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4292
Md5:    18902a41533d4e631e65a8d0c1f61282
Sha1:   c956a0dc434b90d06c2528b76c4e5273a30f9ac0
Sha256: 09b434cbaea55c0879a0598d4e3ae8b7ecd3a3a1edd8a995e600f4064ceb5454
                                        
                                            GET /includes/domains/fn-available.js HTTP/1.1 
Host: my.freenom.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         52.51.75.102
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3
Date: Tue, 27 Nov 2018 18:38:26 GMT
Content-Length: 3302
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: no-cache="set-cookie"
Content-Encoding: gzip
Etag: "4a9a-57a23f3480678-gzip"
Last-Modified: Thu, 08 Nov 2018 09:35:07 GMT
Set-Cookie: AWSELB=BB755F330E44FE27E970EAECFCC78F629EB1F82E68734E4AB95DE8A0F941A50818B34F03586F13770100F9C73722798C3D57C651D372F6E3F013AAB976C41977BA4D0359C4;PATH=/
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3302
Md5:    3ebecd9c78ac87ed9374fdc387619c00
Sha1:   525cce5f94d0816cbfc5cae71ed72fa3ac676aaa
Sha256: b6453ad8d9e58cdb014340fb2a3a3179316593027087257ee9099d57e0eddea4
                                        
                                            GET /external/jsrender.min.js HTTP/1.1 
Host: my.freenom.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         52.51.75.102
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.10.3
Date: Tue, 27 Nov 2018 18:38:26 GMT
Content-Length: 16069
Connection: keep-alive
x-amz-id-2: V41rvIwY99F5qUd9N1+gOHAu11Zzqa1T0nDilVZ4P5RZGwpr7w5ARWq6B5N7aC0wIxSyQIR2vLI=
x-amz-request-id: 878A86FF3B0009F8
Last-Modified: Wed, 16 Mar 2016 12:40:52 GMT
Etag: "36e17e14ff43dfd5349677522b3821a3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode (with BOM) C++ program text, with very long lines
Size:   16069
Md5:    36e17e14ff43dfd5349677522b3821a3
Sha1:   1eef675b40347067eefb8fd55e9b899fa9cd4216
Sha256: 5bf5e6b88eefc8f7ef5f4c00f9496657f3be732fd74c10a895d9a24c9a753e48
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Tue, 27 Nov 2018 16:51:00 GMT
Expires: Tue, 27 Nov 2018 18:51:00 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 6447


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Nov 2018 18:38:27 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    75f3354e31f1702aaa271acc125e9555
Sha1:   cf3dd15a1826b3a53b303f4f7d04388c7b15ce64
Sha256: 8d9d7fd41646d6942d8e031216e7c7acd081c3f903c44abc2e0c2d7e8b0f0819
                                        
                                            GET /r/collect?v=1&_v=j72&a=1605645003&t=pageview&_s=1&dl=http%3A%2F%2Fwww.dot.tk%2Fen%2Findex.html%3Flang%3Den&dr=http%3A%2F%2Fdapatkan-pulsa.gq%2F&ul=en-us&de=UTF-8&dt=Dot%20TK%20-%20Find%20a%20new%20FREE%20domain&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=196565704&gjid=1914025928&cid=1949177616.1543343908&tid=UA-29857775-3&_gid=845502050.1543343908&_r=1&z=1669558132 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 27 Nov 2018 18:38:28 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /s/lato/v14/S6u9w4BMUTPHh7USSwiPHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29852
Date: Tue, 27 Nov 2018 17:18:24 GMT
Expires: Wed, 27 Nov 2019 17:18:24 GMT
Last-Modified: Wed, 11 Oct 2017 18:24:02 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 4804
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   29852
Md5:    ba2452bdc790a4fee05202eac3c092b3
Sha1:   6382414b3b2df2fb2946e09d5909e27afdadb7dd
Sha256: 8084a57f30a2d3d730b5d25b8d2ccb18369d90d333144231704418d555c20c0f
                                        
                                            GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
Origin: http://www.dot.tk

                                         
                                         209.197.3.15
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Tue, 27 Nov 2018 18:38:28 GMT
Connection: Keep-Alive
Accept-Ranges: bytes
Etag: "1518903988"
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 44433
Last-Modified: Sat, 17 Feb 2018 21:46:28 GMT
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: HIT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   44433
Md5:    122359bdfee05a5b4ce0f19b244e85bb
Sha1:   35d57f1553391ddfdb1525ffd37ca902f79d2d7e
Sha256: 3e8f404d881f687fdcc53a1a7f8c59d3bdfa201c14e3d8470fb55eb99c4fdc4a
                                        
                                            GET /s/lato/v14/S6u9w4BMUTPHh6UVSwiPHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 27848
Date: Tue, 27 Nov 2018 11:37:44 GMT
Expires: Wed, 27 Nov 2019 11:37:44 GMT
Last-Modified: Wed, 11 Oct 2017 18:24:05 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 25244
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   27848
Md5:    96759e32fdc800c78b527a3e53fe2be6
Sha1:   e12403cfe60f852a8fbbe05d84d58d33c6c2a6b9
Sha256: 60c05ee47e768315541e487d11b92eec54a7f5336f84cecc8b5825c87bb70053
                                        
                                            GET /s/lato/v14/S6uyw4BMUTPHjx4wWA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:400,300,100,700
Origin: http://www.dot.tk

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 28412
Date: Tue, 27 Nov 2018 16:36:06 GMT
Expires: Wed, 27 Nov 2019 16:36:06 GMT
Last-Modified: Wed, 11 Oct 2017 18:23:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 7342
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   28412
Md5:    62fb51e9e645f63599238881b9de15dd
Sha1:   82b144e3c8b4ff40aeca34ddf7bc35985311b90e
Sha256: 5aeb07f9980663c2501c9620371e11ae7aa6e320d94dd753d0ef56d8308c74b3
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dapatkan-pulsa.gq
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: JSESSIONID=B564C40C700BE318A0976C5D56CF3DFC

                                         
                                         195.20.52.201
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Tue, 27 Nov 2018 18:38:29 GMT
Content-Length: 2048
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Server: 7e89e25f690e
Cache-Control: no-cache


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   2048
Md5:    9d88adf1b48d0395e690bd17e5625851
Sha1:   1874190d30c93ca117b3b1d65f150be38ec55a56
Sha256: 817d5d40f1addc3a4247e62aaf58400a7a81830addc9692b2ba65dd5068f02c8
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.1949177616.1543343908; _gid=GA1.2.845502050.1543343908; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 18:38:29 GMT
Content-Length: 185
Location: http://www.dot.tk/
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    d1c1428bc0662ffe1841e05e006406f8
Sha1:   d78d57d3ef1731a52e3ca18e385980e3c5e9bdf1
Sha256: d93ecffa2aa7610bc7b83d9f7e0fa1f486055e8fb5751d9073058d60d8d16063

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.1949177616.1543343908; _gid=GA1.2.845502050.1543343908; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:29 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:29 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:29 GMT
Date: Tue, 27 Nov 2018 18:38:29 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.1949177616.1543343908; _gid=GA1.2.845502050.1543343908; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 18:38:32 GMT
Content-Length: 185
Location: http://www.dot.tk/
Via: 1.1 google


--- Additional Info ---
Magic:  HTML document text
Size:   185
Md5:    d1c1428bc0662ffe1841e05e006406f8
Sha1:   d78d57d3ef1731a52e3ca18e385980e3c5e9bdf1
Sha256: d93ecffa2aa7610bc7b83d9f7e0fa1f486055e8fb5751d9073058d60d8d16063

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET / HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en; _ga=GA1.2.1949177616.1543343908; _gid=GA1.2.845502050.1543343908; _gat=1

                                         
                                         35.186.233.234
HTTP/1.1 302 Found
                                        
Server: nginx/1.11.9
Transfer-Encoding: chunked
Set-Cookie: mydottk_languagenr=0; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:32 GMT dottyLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:32 GMT wwwLn=en; domain=.dot.tk; path=/; expires=Wed, 28-Nov-2018 18:38:32 GMT
Date: Tue, 27 Nov 2018 18:38:32 GMT
Location: http://www.dot.tk/en/index.html?lang=en
Via: 1.1 google


--- Additional Info ---
                                        
                                            GET /images.v2/013.jpg HTTP/1.1 
Host: www.dot.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.dot.tk/en/index.html?lang=en
Cookie: mydottk_languagenr=0; dottyLn=en; wwwLn=en

                                         
                                         35.186.233.234
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx/1.11.9
Date: Tue, 27 Nov 2018 18:38:27 GMT
Content-Length: 420768
X-GUploader-UploadID: AEnB2UqXtAcRLNtTkCoDNokoejQ-1SxtwpHTZqQJg0YsJdzyjK6q4wO6yT3zHTDXRyaX9k3uOpwihcRr6_OVgZMjYX0-o01MEw
Cache-Control: max-age=3600, public
Expires: Tue, 27 Nov 2018 19:38:27 GMT
Last-Modified: Thu, 09 Jun 2016 11:36:43 GMT
Etag: "b315567f73e8101b61e9c3a21478a2e6"
x-goog-generation: 1465472203692000
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 420768
Content-Language: en
x-goog-hash: crc32c=4X/cMA==, md5=sxVWf3PoEBth6cOiFHii5g==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Via: 1.1 google


--- Additional Info ---

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain