| 52.36.94.173/telcomsel/xg/?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=v59JLFPyYA3Vjconfirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=2wmC70m40lMR9confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=wVMeDMo8I4znS | 52.36.94.173 | | 1 B |
URL User Request GET 52.36.94.173/telcomsel/xg/?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=v59JLFPyYA3Vjconfirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=2wmC70m40lMR9confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=wVMeDMo8I4znS IP52.36.94.173:0
File typevery short file (no magic) Hash7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /telcomsel/xg/?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=v59JLFPyYA3Vjconfirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=2wmC70m40lMR9confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=wVMeDMo8I4znS HTTP/1.1
Host: 52.36.94.173
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 19 Apr 2024 13:56:26 GMT
Server: Apache/2.4.6 (Red Hat Enterprise Linux) OpenSSL/1.0.2k-fips PHP/5.6.38
X-Powered-By: PHP/5.6.38
Set-Cookie: PHPSESSID=lloq9dch2865he3a3peb2k7c80; path=/
Expires: 120
Cache-Control: public,private,max-age=120
Pragma: public,private,max-age=120
Location: confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=bCw4sKm2Oc0cr
Content-Length: 1
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| 52.36.94.173/telcomsel/xg/confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=bCw4sKm2Oc0cr | 52.36.94.173 | | 1 B |
URL User Request GET 52.36.94.173/telcomsel/xg/confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=bCw4sKm2Oc0cr IP52.36.94.173:0
File typevery short file (no magic) Hash7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /telcomsel/xg/confirm.php?camp=C2COFRMSCPA&rcid=D-20568491-1713535057-34G28G137G125-JLCWB1998&transaction_id=bCw4sKm2Oc0cr HTTP/1.1
Host: 52.36.94.173
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=lloq9dch2865he3a3peb2k7c80
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 19 Apr 2024 13:56:28 GMT
Server: Apache/2.4.6 (Red Hat Enterprise Linux) OpenSSL/1.0.2k-fips PHP/5.6.38
X-Powered-By: PHP/5.6.38
Expires: 120
Cache-Control: public,private,max-age=120
Pragma: public,private,max-age=120
Location: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Content-Length: 1
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i | 43.255.196.38 | 200 OK | 3.3 kB |
URL User Request GET HTTP/1.1auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash3ad23aa03431229f0222c81fcf68f713 98a2dbf96f654c891f65e3e2d8d5fc5e6b9e4f70 68ca8b213de937c8f9dfcceb2be14610a927916e4a4009f9a66091271302d0b3
GET /transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:43 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
Set-Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; expires=Fri, 19-Apr-2024 15:58:43 GMT; Max-Age=7200; path=/; HttpOnly
TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; Path=/
TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
|
|
| auth2.telkomsel.com/media/css/weboptin.css?1605959181 | 43.255.196.38 | 200 OK | 5.7 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/css/weboptin.css?1605959181 IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeassembler source, ASCII text, with very long lines (492) Hashc8bfa65b82b8dba5dbc3f13bad7ae3dd a0ba6590c0bb98874254bdc92eacc72813b2ac6f 9b25bace3e00a64310eb9557d4ea95fd172df66aeb167bb378b5168aeac40880
GET /media/css/weboptin.css?1605959181 HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: text/css
Content-Length: 5697
Last-Modified: Sat, 21 Nov 2020 11:46:21 GMT
Connection: keep-alive
ETag: "5fb8fe0d-1641"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/content/js/const.js?1605957967 | 43.255.196.38 | 200 OK | 1.8 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/content/js/const.js?1605957967 IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
Hash9e63bd88361b21f891fc0999d9a737db fd0eee5c2324eba3d98795afc1ae49c4bc9fd997 cf99981b6e72d325870fca9e1198976556a7c2fc0710663b57b9d3ca01cbbab0
GET /media/content/js/const.js?1605957967 HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: application/javascript
Content-Length: 1786
Last-Modified: Sat, 21 Nov 2020 11:26:07 GMT
Connection: keep-alive
ETag: "5fb8f94f-6fa"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/content/js/purchase.js?1633725898 | 43.255.196.38 | 200 OK | 3.8 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/content/js/purchase.js?1633725898 IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (307) Hashbf362480e0f321e40db6eab118d5fdcc a33ad49e98702660bb755b877c8a81afeadb21ae 9de69bf33ea35039727c68967a0dfbb43c5f13db1e2315bb021a944368bd3a09
GET /media/content/js/purchase.js?1633725898 HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: application/javascript
Content-Length: 3822
Last-Modified: Fri, 08 Oct 2021 20:41:41 GMT
Connection: keep-alive
ETag: "6160ad05-eee"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/content/js/captcha.js?1605957967 | 43.255.196.38 | 200 OK | 160 B |
URL GET HTTP/1.1auth2.telkomsel.com/media/content/js/captcha.js?1605957967 IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeASCII text, with CRLF line terminators Hashc2cf03bfed3031a2de16e98785a320e0 e1651e061268f96bdc92a3aab0133062a328cf2f 952d344446ce5ff2dfb5a1ec56e8c822c5fdb049b96f20643b18f77d40d305df
GET /media/content/js/captcha.js?1605957967 HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: application/javascript
Content-Length: 160
Last-Modified: Sat, 21 Nov 2020 11:26:07 GMT
Connection: keep-alive
ETag: "5fb8f94f-a0"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/content/js/notification.js?1605957967 | 43.255.196.38 | 200 OK | 553 B |
URL GET HTTP/1.1auth2.telkomsel.com/media/content/js/notification.js?1605957967 IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
Hashf8e5ece40a15092b44c88dc813123dd0 17985cc0a789e8802f78a7d9f347fbc45685c8b7 867d95fb4a34a2c253f7c8f931b656ac1b6560b3d2a92835e7d597959efdc0e7
GET /media/content/js/notification.js?1605957967 HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: application/javascript
Content-Length: 553
Last-Modified: Sat, 21 Nov 2020 11:26:07 GMT
Connection: keep-alive
ETag: "5fb8f94f-229"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/common/js/jquery-3.5.0.min.js | 43.255.196.38 | 200 OK | 90 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/common/js/jquery-3.5.0.min.js IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators Hash3b011cde1904a8612c991366e544c673 0f6e13b881dd1d4a57588abbf7d0634680f7fce7 363054e7d9c05dc3221f89a624387dbb220e1207da6c7ac7499b94b0ef32bb44
GET /media/common/js/jquery-3.5.0.min.js HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: application/javascript
Content-Length: 89493
Last-Modified: Sat, 21 Nov 2020 11:44:27 GMT
Connection: keep-alive
ETag: "5fb8fd9b-15d95"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/css/bootstrap.css | 43.255.196.38 | 200 OK | 147 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/css/bootstrap.css IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (540) Size147 kB (147432 bytes) Hashf8d383de5bd0bc72595c76912a72f839 c7ea62a98129f1067f657acef586e2ccf4c5c466 64e0638e2801d423669e3e47036cf5f28ccd07848bed9470fb6e07e23f8d2da5
GET /media/css/bootstrap.css HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:44 GMT
Content-Type: text/css
Content-Length: 147432
Last-Modified: Sat, 21 Nov 2020 11:26:07 GMT
Connection: keep-alive
ETag: "5fb8f94f-23fe8"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/img/telkomsel_logo.png | 43.255.196.38 | 200 OK | 27 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/img/telkomsel_logo.png IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typePNG image data, 800 x 240, 8-bit/color RGBA, non-interlaced Hashdbba9ef3a677061954688b2bc1d7a166 203b017b0540ff543a924025c51c4e9c80c302d6 ceb84d3cc4939afa24880728db459beb475a47e6563d8ba7ea6159f40d36db64
GET /media/img/telkomsel_logo.png HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:45 GMT
Content-Type: image/png
Content-Length: 27295
Last-Modified: Fri, 23 Jul 2021 17:50:18 GMT
Connection: keep-alive
ETag: "60fb015a-6a9f"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| auth2.telkomsel.com/media/css/fonts/HelveticaNeueLTStd-Lt.otf | 43.255.196.38 | 200 OK | 28 kB |
URL GET HTTP/1.1auth2.telkomsel.com/media/css/fonts/HelveticaNeueLTStd-Lt.otf IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
Hash06137036ee2d59941c9bda383866b943 aabb0e321b4793884c02eaf6cd4874acb36331ae 3ab0b3bf4fdaabba440268441464a42070e9adb66c8942a9224e2feacf1d3a61
GET /media/css/fonts/HelveticaNeueLTStd-Lt.otf HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/media/css/weboptin.css?1605959181
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 13:58:45 GMT
Content-Type: application/octet-stream
Content-Length: 28120
Last-Modified: Wed, 02 Dec 2020 15:47:47 GMT
Connection: keep-alive
ETag: "5fc7b723-6dd8"
X-Frame-Options: DENY
Accept-Ranges: bytes
|
|
| www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js | 142.250.74.163 | 200 OK | 206 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Size206 kB (206057 bytes) Hash8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab
GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth2.telkomsel.com
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 16:10:43 GMT
expires: Tue, 15 Apr 2025 16:10:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 337682
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| auth2.telkomsel.com/favicon.ico | 43.255.196.38 | 404 Not Found | 1.2 kB |
URL GET HTTP/1.1auth2.telkomsel.com/favicon.ico IP43.255.196.38:443 ASN#23693 PT. Telekomunikasi Selular
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerDigiCert Inc Subjectauth2.telkomsel.com FingerprintB9:31:BA:08:B6:70:8D:1A:D2:1C:14:CF:82:71:BA:8F:48:F7:D6:1D ValidityTue, 20 Feb 2024 00:00:00 GMT - Thu, 13 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text Hasha56c53d7ed194b5d31d8ca2284c29461 86eb1ebfa13ed6ebe970f7cbe35cc6a264fe738a b8ef0ff4737e3b145aa15c04e2d46f135505426f8ea2200d0b53f0559b5d21e4
GET /favicon.ico HTTP/1.1
Host: auth2.telkomsel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i
Cookie: PHPSESSID=0pdje0a8m1go3r01ghc3i7o75o; TS01f7c288=016a595b9c29a8808da6f8d9675984c3bc6e3036726b402ede9d3cb502e07dd6019f35ebaba02acd60a02bd7d3ad7766a0417aa744aeea9a550c4c14caa0c274ca91837469; TS01fa1110=019f61d29cc57c25336bfd6b8494e2411c1d4d4a8d26385facb32368b80be57e8010d74652f79a720df10017b5d87713953a5c4a1057e6baf45352dcdde6426403799859a2d24e2cfc253e6039e81a3bde0395aba8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 19 Apr 2024 13:58:45 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Transfer-Encoding: chunked
|
|
| www.google.com/recaptcha/api.js | 142.250.74.164 | 200 OK | 850 B |
URL GET HTTP/2www.google.com/recaptcha/api.js IP142.250.74.164:443
Requested byhttps://auth2.telkomsel.com/transaksi/tauthwco?token=xtlw4nkex6jxuj819t2i CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (850), with no line terminators Hash7c792e0e26e2bd74f8e53c7da0d6b8a2 a43099555724ee257f66ca05de55cb56a14c8fca d782a59ef4bab02833ce95b5e9c9bd622f328683659f43a34f1dbcf54f1d4443
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth2.telkomsel.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Fri, 19 Apr 2024 13:58:43 GMT
date: Fri, 19 Apr 2024 13:58:43 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|