r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5996
Expires: Tue, 06 Dec 2022 15:33:43 GMT
Date: Tue, 06 Dec 2022 13:53:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4907
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:47 GMT
Last-Modified: Tue, 06 Dec 2022 12:32:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2328
Expires: Tue, 06 Dec 2022 14:32:35 GMT
Date: Tue, 06 Dec 2022 13:53:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 13:18:39 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2108
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hxPAVe0EXhWzbSwlxK01YUKUAaW/+D5qGSWdi6shh0X0ZH+i/HhpPClCIOszdEg7JMYl3reTV1LEf8Xi5B8+nQ==
x-amz-request-id: BTNN8CYZYRRD8XPA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 13:47:07 GMT
age: 400
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 13:53:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 13:11:20 GMT
cache-control: public,max-age=3600
age: 2547
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4893
Cache-Control: max-age=160476
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:47 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 10:28:23 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Open+Sans%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
142.250.74.74200 OK 841 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
IP 142.250.74.74:0
Hash 0a02d48f82530eb190dc6a0505338b38
b9353d1017d4b8aaa79f575b03e66b3abb46daaf
1c68a2385d73001c886215dc40b43f86fa4b4631ae6b349e0c55bbc2c9e93850
GET /css?family=Open+Sans%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Dec 2022 13:53:48 GMT
Date: Tue, 06 Dec 2022 13:53:48 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Roboto%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
142.250.74.74200 OK 797 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
IP 142.250.74.74:0
Hash b4830a028eadfcf0e28efd352c8913e3
442fd69e3339aacd6b2c369f7ab6e959e58b7ae1
27b635c889921ad0ad9b9c41aad3cf77142aab629e7185366e610764938d8129
GET /css?family=Roboto%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Dec 2022 13:53:48 GMT
Date: Tue, 06 Dec 2022 13:53:48 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Titillium+Web%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
142.250.74.74200 OK 483 B URL HTTP/1.1 fonts.googleapis.com/css?family=Titillium+Web%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8
IP 142.250.74.74:0
Hash e876f002bbddd9feb37a7441268508fd
32bcf8116992622becdc87085bf621972c33d323
2f484987bbfeed157cc51c184447220dd8ff6b3903623205b1683f12d8a77cd0
GET /css?family=Titillium+Web%3A1%2C300%2C400%2C400italic%2C700%2C700italic&ver=5.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Dec 2022 13:53:48 GMT
Date: Tue, 06 Dec 2022 13:53:48 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
push.services.mozilla.com/
52.89.114.252101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.114.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xVHXZkJ39r3vhgYOegUfXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oUxGG0nYovC1jhZTeU0knner7Zs=
www.fgwilson.id/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.5.0
103.89.7.45200 OK 1.8 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.5.0
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 270d05c0ca7ab3b98eb99183bf1e1ef2
c68771f89466e43ebc4ed54028627be4b3e33977
5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.5.0 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 11:23:10 GMT
ETag: "71e-5a9ec552de380"
Accept-Ranges: bytes
Content-Length: 1822
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 76e12144b6be9bc0a17dd880c5566156
c57db768b452aea923a2b083162e9e6ffb98d2f8
070edfef42e0980783d0acf8fa9ca6a9833b994eca13ffaa94e9a2deb47c92cf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 18 Aug 2021 04:24:23 GMT
ETag: "a50-5c9cdcf10e882"
Accept-Ranges: bytes
Content-Length: 2640
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/product/p110-6/
103.89.7.45200 OK 157 kB URL HTTP/1.1 www.fgwilson.id/product/p110-6/
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (49889)
Size 157 kB (157333 bytes)
Hash 8a50d5791a0b51ac035ffe230b2e3faf
586a1153e8fbe5d9723b6ac1b145a38ff123441b
3961cede88c44ec4ff4d87c1975a153a3cb6c9f7973fe49a746b39760eda4a2f
Analyzer Verdict Alert fortinet Malware
GET /product/p110-6/ HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
X-Powered-By: PHP/7.3.33
X-Pingback: http://www.fgwilson.id/xmlrpc.php
Link: <https://www.fgwilson.id/wp-json/>; rel="https://api.w.org/", <https://www.fgwilson.id/wp-json/wp/v2/product/1023>; rel="alternate"; type="application/json", <https://www.fgwilson.id/?p=1023>; rel=shortlink
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.5.4
103.89.7.45200 OK 5.0 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 0967be818f65405ea5ffcbb828b50147
f3520a0f7efd814b4832721ffacd32026064a455
a5f3619bf2c88a86f163972f5f5717413408585da7abd628cf4770720df2ff58
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.css?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "1384-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 4996
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.5.4
103.89.7.45200 OK 12 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 4d237d79eea0a345c32cd2bbf89e6c26
9db3a3ebab6915e525872d950f48b9a440ad9217
c95e1a50212e024d086197551b51798ddab0e5cbd02072c8a9b2b86bd6d101e9
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.css?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "2d45-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 11589
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1
103.89.7.45200 OK 30 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (29418), with CRLF line terminators
Hash 9f4f00ef6543d1605d902f51fe083c2d
ee85e1283c695be178cf766524aa61ea36372a57
2e81985d6b2a407b4760c2c85a2cdfebeb13dfa8c07781162c429f7e8381aa45
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 08 Jun 2018 06:08:12 GMT
ETag: "745d-56e1b3988eb00"
Accept-Ranges: bytes
Content-Length: 29789
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-includes/css/dist/block-library/style.min.css?ver=5.8
103.89.7.45200 OK 81 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/css/dist/block-library/style.min.css?ver=5.8
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "13abe-5c82a2857767e"
Accept-Ranges: bytes
Content-Length: 80574
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.5.4
103.89.7.45200 OK 62 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Unicode text, UTF-8 text, with very long lines (62378), with no line terminators
Hash 0d6f1a7e4cc3bc89cc90839239ffb208
ca461a8b7a6e44d46cb82569a98b0cf0dafd9c1e
9575dd0a8289678d89fee43f35b59fa4a6dde8dbf5329441468cb0f680e9d51e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "f3b8-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 62392
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/style.css?ver=17.7.1
103.89.7.45200 OK 284 B URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/style.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 68a6be27f4b5c1980fcf5beb5a2bc451
0b4cefd89e53aeca209be5cf182ef19f7df139fb
c2f2cb501bda7d776e3eea5c7597a8a6c5da29e3a46b727ca319bc91be09d86a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/style.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:29 GMT
ETag: "11c-54d1b02bdc440"
Accept-Ranges: bytes
Content-Length: 284
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.5.4
103.89.7.45200 OK 16 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (16542), with no line terminators
Hash 89656ed6fb2e45c6049482e121fc2d88
907811dd535b9f4ec4371fc23a37d115fe3355e2
e42a7af0f19adf1cf7d67e8fbecad6713ec9cde539f7dc5d134544366679e521
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "409e-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 16542
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/assets/animations/animations.min.css?ver=17.7.1
103.89.7.45200 OK 58 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/animations/animations.min.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (58508), with no line terminators
Hash e84ea59f1f6d11b5553e816613eb659f
d22c414356217e342565d629ce96a684a5005aba
e803d4290c5baec790ecde06d9308c6bf17f967c8232e3651844bfd60dd2a9f5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:31 GMT
ETag: "e48c-54d1b02dc48c0"
Accept-Ranges: bytes
Content-Length: 58508
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: text/css
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 45c67557705d01150de278787f977991
74afba2751b9c1ac40ab471497055f363c72a224
71c60b6487e06947bcb7cf47b0c5ece29b6f254088f7caaff7627d80f8a27a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 03:43:21 GMT
Expires: Sun, 11 Dec 2022 03:43:20 GMT
Etag: "74afba2751b9c1ac40ab471497055f363c72a224"
Cache-Control: max-age=394771,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775582872ec7b50b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 45c67557705d01150de278787f977991
74afba2751b9c1ac40ab471497055f363c72a224
71c60b6487e06947bcb7cf47b0c5ece29b6f254088f7caaff7627d80f8a27a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 03:43:21 GMT
Expires: Sun, 11 Dec 2022 03:43:20 GMT
Etag: "74afba2751b9c1ac40ab471497055f363c72a224"
Cache-Control: max-age=394771,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775582873a360b31-OSL
www.fgwilson.id/wp-content/themes/betheme/css/base.css?ver=17.7.1
103.89.7.45200 OK 52 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/css/base.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (2051)
Hash 608486bc61f977c66608fc8a1510a347
8e73afb93a9168cce77a0f21f61c56ec862b6c59
a3838988a02ec60dfca8ddd23cfdcccc61145ba0c7351dcad921c4ada56b986e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/css/base.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:41 GMT
ETag: "cb2f-54d1b0374df40"
Accept-Ranges: bytes
Content-Length: 52015
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=17.7.1
103.89.7.45200 OK 18 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (402)
Hash 670aab09302df69a9c33f3ab02eb93ad
15d7686fbf16f725ff14068ee171aae7d1424502
43a19f940f46c4d62b4ebd581d263575a774143d9533c921164fc9f487542167
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:33 GMT
ETag: "47d4-54d1b02facd40"
Accept-Ranges: bytes
Content-Length: 18388
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/css/layout.css?ver=17.7.1
103.89.7.45200 OK 114 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/css/layout.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (401)
Size 114 kB (114215 bytes)
Hash 3533de581b94fd67df44779a208464db
69d21515375bb502ee89bd924c28a22f057f0add
83546e664b2b7210775d9ad3cfd3f95b0beb5ea8afd91d1c41dde6c4795fa5db
GET /wp-content/themes/betheme/css/layout.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:41 GMT
ETag: "1be27-54d1b0374df40"
Accept-Ranges: bytes
Content-Length: 114215
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/css/shortcodes.css?ver=17.7.1
103.89.7.45200 OK 139 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/css/shortcodes.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (404)
Size 139 kB (138973 bytes)
Hash 9722c8520800e0e2be7d2bff15a6bc67
57995c357f3864b3bd032d1d2f8abbbd9bfc0195
18dba8a9094cda2b31a3dd91ec9fe40464b6ede35057836e1f491e31f2d94966
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/css/shortcodes.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:41 GMT
ETag: "21edd-54d1b0374df40"
Accept-Ranges: bytes
Content-Length: 138973
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=17.7.1
103.89.7.45200 OK 10 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 40444221b85ab406277bf3ca7499cea2
a501e9325d8103d32656fd6138e37b4f942bf484
a1e683ed3c4b45135db0b27f0e206ccf3c819a014d00e2342278aa98b6f753bf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:33 GMT
ETag: "27a1-54d1b02facd40"
Accept-Ranges: bytes
Content-Length: 10145
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=17.7.1
103.89.7.45200 OK 20 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (365)
Hash cf7eacbc2bc887b146299b70f4a21568
888efbb0357eeacf273b870956d266dea627d465
231da2e502aa3aff1a1cbbacc451848edcb3fe7db0901d407505a9a704a17720
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:36 GMT
ETag: "4c90-54d1b03289400"
Accept-Ranges: bytes
Content-Length: 19600
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: text/css
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 45c67557705d01150de278787f977991
74afba2751b9c1ac40ab471497055f363c72a224
71c60b6487e06947bcb7cf47b0c5ece29b6f254088f7caaff7627d80f8a27a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 03:43:21 GMT
Expires: Sun, 11 Dec 2022 03:43:20 GMT
Etag: "74afba2751b9c1ac40ab471497055f363c72a224"
Cache-Control: max-age=394770,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775582889bf6b518-OSL
www.fgwilson.id/wp-content/themes/betheme/css/responsive.css?ver=17.7.1
103.89.7.45200 OK 55 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/css/responsive.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (612)
Hash f42fb2adc33f2f56c853fdc5201d0efd
f84225e975636c76e56ba8b4c441b5dabf1fdfba
5ba13e8cad4217ab30785df018ca17bae9896ae0dfe7cecb0919bf48847c5872
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/css/responsive.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:41 GMT
ETag: "d62c-54d1b0374df40"
Accept-Ranges: bytes
Content-Length: 54828
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-includes/js/wp-emoji-release.min.js?ver=5.8
103.89.7.45200 OK 18 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/wp-emoji-release.min.js?ver=5.8
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:35 GMT
ETag: "4705-5c82a285ebdcc"
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/themes/betheme/css/woocommerce.css?ver=17.7.1
103.89.7.45200 OK 39 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/css/woocommerce.css?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Unicode text, UTF-8 text, with very long lines (423)
Hash 467bc8b3b29a7dba4296ae6f46329827
f167571b35edccefa4c63d91dfe3d3eaf49468fe
a3ab5028266993606ac2a630c34c719f805c71af88f53660a3064f42899483c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/css/woocommerce.css?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:41 GMT
ETag: "9779-54d1b0374df40"
Accept-Ranges: bytes
Content-Length: 38777
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.89.7.45200 OK 11 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "2bd8-5c82a285aa6e8"
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
103.89.7.45200 OK 90 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "15db1-5c82a285ab2a0"
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.5.0
103.89.7.45200 OK 3.5 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.5.0
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash 5d0443a2235b04ea9e33ea6552c17931
bc5f2eab450127a31a348c5c115600455d429730
34e35f893b634d5439db39f3c4f202ddc21aaf406e5724e8c118d513f086752f
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.5.0 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 11:23:10 GMT
ETag: "dd8-5a9ec552de380"
Accept-Ranges: bytes
Content-Length: 3544
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1
103.89.7.45200 OK 108 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (27184), with CRLF line terminators
Size 108 kB (107534 bytes)
Hash ee418e8ccccf81d244d1e84e5f16a6cc
c3006d009fc528a5cd144e923ce9065c57eb6264
09b680f7684309e36e21b59242470b16a0ae396ba6d2ea465d28220db3de6c90
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 08 Jun 2018 06:08:12 GMT
ETag: "1a40e-56e1b3988eb00"
Accept-Ranges: bytes
Content-Length: 107534
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
103.89.7.45200 OK 6.4 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (6406), with no line terminators
Hash 8fe2803a01c9fa77cb1a2618c3552dce
2230dd8f0604e4328e7c2a3f9437a6bf2986f592
e87a1c5e24f9a7c7dcb437417f0b05b0a3c12947ce32d65c990c988a8b5ed4d7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "1906-5c82a28592bff"
Accept-Ranges: bytes
Content-Length: 6406
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
103.89.7.45200 OK 16 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 38400d9c6ba7d41239fccfaa9f523558
fe9a1548961441ce82e5399444f2be5408d2644c
293913879d30bab7499013e935009f5183facbddd63bfc9656a859622590b80b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "4056-5c82a2859436f"
Accept-Ranges: bytes
Content-Length: 16470
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
103.89.7.45200 OK 13 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (12987), with no line terminators
Hash 6ad9165b167d54947b37f4b9de75ab39
4c02f66fd8c26141450e310d6786f50f99913dd4
eea0b9621509f98be77c5af1e9b5c952a675bda2b27c419876364017069e0c19
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 18 Aug 2021 04:24:23 GMT
ETag: "32bb-5c9cdcf116582"
Accept-Ranges: bytes
Content-Length: 12987
Keep-Alive: timeout=5, max=497
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
103.89.7.45200 OK 9.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (9172)
Hash 81b2be18696c4dfe620f7b6d0d75a566
0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd
120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "255e-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 9566
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1
103.89.7.45200 OK 63 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (32003), with CRLF line terminators
Hash b4b495a7dc7db64771070c7f67813615
f36b9f296e3fa9eb6d6e18841540129ea95861fd
1dfd5afa2f6a618d8b7450ddc586413e1b75499322d6534e01accd990ae66925
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 08 Jun 2018 06:08:12 GMT
ETag: "f75b-56e1b3988eb00"
Accept-Ranges: bytes
Content-Length: 63323
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.4
103.89.7.45200 OK 2.7 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type HTML document, ASCII text, with very long lines (2652), with no line terminators
Hash 836196ea33182b6c18884e9fca03f2ee
cc3aa5e6847d8c1e1aaa5eb6eb07ec4382caf4ec
2ab24792c49dc9eaec5d569d532211e24c93242074352e131d627d3169635ae6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "a5c-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 2652
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (2550)
Hash 1b9abba888c1026bfb1172b02e46119e
142427bd4445b3bcc498ba939f35c3a73ab579c1
6ce0c7f629cf153f77723cb3e570c6c1c91a04e303ac3c2b7dd60f565594d879
GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "a38-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 2616
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.1
103.89.7.45200 OK 23 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (22795), with no line terminators
Hash 316ca7dd96ea8b2691bf19372eff814d
85685193493e7f84a98df52b78ec3ea8bff23f2c
ce3210dfeba8317cd8f95216391ea8e5568d7c36d04e1122270cd2db1725af65
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "590b-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 22795
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
103.89.7.45200 OK 32 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (31466)
Hash 32dd3ac8dedae8ed78783aab7c4e4b28
4ffa72d4bf9fa7975a27afe7c2ced38c9e9aece3
f364177179e1e87538b04335cfdc42bbd96e1408658c9752ba08e01651279c9a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "7b4f-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 31567
Keep-Alive: timeout=5, max=496
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
142.250.74.35200 OK 12 kB URL HTTP/1.1 fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Hash 8d4079c3aa4f01e6d9bbd4f1bbcdf114
52ab47c062d0bfdbd34dbd31784008bd0e4c4227
d5c1172f24f4f49f780c65cf5be897527fd08f3662a2ba8db0cfe0057d92e367
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 11796
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 19:06:56 GMT
Expires: Wed, 29 Nov 2023 19:06:56 GMT
Cache-Control: public, max-age=31536000
Age: 586013
Last-Modified: Wed, 27 Apr 2022 15:47:01 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:26:03 GMT
Expires: Tue, 05 Dec 2023 19:26:03 GMT
Cache-Control: public, max-age=31536000
Age: 66466
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK 48 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 47952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:17:40 GMT
Expires: Wed, 06 Dec 2023 01:17:40 GMT
Cache-Control: public, max-age=31536000
Age: 45369
Last-Modified: Mon, 15 Aug 2022 18:22:41 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
142.250.74.35200 OK 12 kB URL HTTP/1.1 fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Hash 0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 12372
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 04:18:09 GMT
Expires: Fri, 01 Dec 2023 04:18:09 GMT
Cache-Control: public, max-age=31536000
Age: 466540
Last-Modified: Wed, 27 Apr 2022 16:19:22 GMT
Content-Type: font/woff2
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
103.89.7.45200 OK 9.9 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type HTML document, ASCII text, with very long lines (9742)
Hash 43f17965d7a09624752f715c495d87b6
5b8dd8650ad58dd4cad0147f9dc6a91acd11afab
ad83333d5ac5200fae8aad7b56d3e7d77553a12aa5bacb916e098f539457b57b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "267d-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 9853
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.5.4
103.89.7.45200 OK 5.9 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Unicode text, UTF-8 text, with very long lines (5856), with no line terminators
Hash 4b10c8649dd7aebb1c58773b093d4b76
70c862acd5b9b03d913ca1aeaa508ae2cc4c2764
92de5ca65ed45ed8e6adcba7b3f7894323ce71c55520f9ba22f3ea9fe99f1995
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/single-product.min.js?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "16e3-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 5859
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
103.89.7.45200 OK 1.8 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (1680)
Hash 943f6eb962c25bd965e0f0e5a284fcd0
b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9
50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "736-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 1846
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/uploads/2020/07/sae150x66.jpg
103.89.7.45200 OK 3.5 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2020/07/sae150x66.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 150x66, components 3\012- data
Hash 16a11789e78b8b3a83436b4dbc6aeaac
5c29e56ca2060f64f5248c698147c2f970134e55
bfeec2b3d662bb748cd65d8ba66b2d2809dc5b8b5fcb1c4849f061f3c6dc1bb3
GET /wp-content/uploads/2020/07/sae150x66.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 09:22:13 GMT
ETag: "d7c-5a9eaa4a0db40"
Accept-Ranges: bytes
Content-Length: 3452
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.4
103.89.7.45200 OK 1.4 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (1402), with no line terminators
Hash a5a1bfcbe64e5d92a029110590b6cb5d
d6a7dc6fb84a16c5de4878b8d594ddbc924755f7
0a8a1c16ef3ef056a530105e55b0d8d9aec811d68e2b66bf76beba05d263e883
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "57a-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 1402
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
s7d2.scene7.com/is/image/Caterpillar/C10524434
23.38.200.69200 OK 13 kB URL HTTP/1.1 s7d2.scene7.com/is/image/Caterpillar/C10524434
IP 23.38.200.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 358x269, components 3\012- data
Hash 56a7f66315f4a8c6dbd15973fa0b2e35
c67609c4c4821e5b62ae3af32dcde8158fb13537
880abddb838dadd67db884b7102c47c413148d091692b7edb74bb922629b25ba
GET /is/image/Caterpillar/C10524434 HTTP/1.1
Host: s7d2.scene7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Expires: Tue, 06 Dec 2022 23:53:49 GMT
Last-Modified: Wed, 04 Sep 2019 13:55:17 GMT
ETag: "56a7f66315f4a8c6dbd15973fa0b2e35"
Server: Unknown
Content-Type: image/jpeg
Content-Length: 13075
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.4
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (2568), with no line terminators
Hash 8939093b911fec2160314e95e5265f4e
b8fdc9e9662352c824c73013136534aec45ff54b
8fad4915319845c1ac13c15ccc2163a680d4c34c61c0f9b6a144718f77cd2b5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "a08-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 2568
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4107
Expires: Tue, 06 Dec 2022 15:02:16 GMT
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4107
Expires: Tue, 06 Dec 2022 15:02:16 GMT
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4107
Expires: Tue, 06 Dec 2022 15:02:16 GMT
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4107
Expires: Tue, 06 Dec 2022 15:02:16 GMT
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4107
Expires: Tue, 06 Dec 2022 15:02:16 GMT
Date: Tue, 06 Dec 2022 13:53:49 GMT
Connection: keep-alive
www.fgwilson.id/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
103.89.7.45200 OK 21 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (7973)
Hash 49fa677b9cd7ddf221dc06537b35e10f
7485f3f99c3c1a57197f2b099f3f8d68b8609d06
0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "5133-5c82a285a7420"
Accept-Ranges: bytes
Content-Length: 20787
Keep-Alive: timeout=5, max=495
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 55886
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9YSJ6eCtWQCdDe_GCPCGgqrM-wfAwEg4n69Tp23Jjz5ORGGvBfzIWw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 23:08:53 GMT
age: 53096
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e11524d75503e35c404d6c9a12ac540
5626b75f5c2523f1a0fc301839a06a4e2407f106
d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6jWrhftx7tANXoWkKtCCjzm66zJDY13bpoA-7qVaZJNHEGsJS8dniw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:05:41 GMT
age: 35288
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:23:09 GMT
age: 55840
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ebd3528452aecd80e39bbf82d3f71f2c
eaa956309d27052d466f7c4bd75b3bdf8443f251
680066dadbddc2cd7179ad5bdfbf9b2014ea601561e585d18dfcda73512ae84a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8b8df80-ffce-4960-a0e3-83eaf7ee52f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6352
x-amzn-requestid: cd970b83-2a99-4e38-afed-580d733040a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuWF1bIAMFcpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-1ba552306e857bb37424d679;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P9Yc2Lh9Kw4AEDZyc9R9WExLdUnCitDeuy0NjttQM-EL1cdVndZxFA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:30:36 GMT
age: 55393
etag: "eaa956309d27052d466f7c4bd75b3bdf8443f251"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jqWuNfsDgPOsqxlX2HGJdhXm9GnGC-TBafSbSCrztICFgEwcyqc_iA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:22 GMT
age: 55887
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fgwilson.id/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
103.89.7.45200 OK 3.4 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (3202)
Hash f5fec54ae43bea19a01d7479cdd6d0ee
3abf306a1352402f2b0fae989eb3211c4af0bede
93ffe8a780b4034c7b14ac0d57d752368b53eafc734d906c8cdf3d3642a9eb36
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "d34-5c82a285a7420"
Accept-Ranges: bytes
Content-Length: 3380
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1
103.89.7.45200 OK 25 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type HTML document, ASCII text, with very long lines (24601)
Hash 904fcdbaee289ec1c7d12b20105d362a
66a27842c1b0e6ab9f6fe3bc90e0c0e4bd2732e8
02586346efed5128cce6f2d1859e185757fd3adb4467f6c6402e9b66e7194445
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "60ce-5c82a285a87a8"
Accept-Ranges: bytes
Content-Length: 24782
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1
103.89.7.45200 OK 12 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (11738)
Hash c10761607ca4fa5e283d6016c6db6876
35f1057ae807f3b1c42d88bfcbe501a94e4cad37
d75561e1329acbfb10dd90ae27ac97aac6d6081e89700a8eaba0ae5ab0156c5f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "2e8b-5c82a285a6c50"
Accept-Ranges: bytes
Content-Length: 11915
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/uploads/2020/07/sae_logo_300dpi.png
103.89.7.45200 OK 29 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2020/07/sae_logo_300dpi.png
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type PNG image data, 535 x 236, 8-bit/color RGBA, non-interlaced\012- data
Hash d8bc8a209964f910e838dcd2bc69525d
783d7b67cb5c0ee52ac35d3944e22ed402340ad7
41e687fe9a833b1e4334a03a588ce673f57f4982290aa20b80bc0de6c9702659
GET /wp-content/uploads/2020/07/sae_logo_300dpi.png HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 10:28:14 GMT
ETag: "7003-5a9eb90b8eb80"
Accept-Ranges: bytes
Content-Length: 28675
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/png
www.fgwilson.id/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1
103.89.7.45200 OK 8.7 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (8481)
Hash bace1eb365db6f2d91a69efed971087f
7cc4b836a34e985b607daf9b15372a332c9c150d
638caa40d39dec20d95e4119187482e3c5939616252d96ded196b05c2e1cfc27
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "21d7-5c82a285a8f78"
Accept-Ranges: bytes
Content-Length: 8663
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/themes/betheme/js/menu.js?ver=17.7.1
103.89.7.45200 OK 2.4 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/js/menu.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash fb1ee53d04c799b2093dbc0e9b4c22c3
1fdbcea2a8dc3e59a431d3ec490fb75bdbd3b4c1
9d3d90f939789eee6791294614fa2472015f8d1b28aa77fd48b1f18415c6cd6c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/js/menu.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:04:44 GMT
ETag: "991-54d1b0e5d3b00"
Accept-Ranges: bytes
Content-Length: 2449
Keep-Alive: timeout=5, max=494
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/themes/betheme/assets/animations/animations.min.js?ver=17.7.1
103.89.7.45200 OK 1.9 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/animations/animations.min.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (1723)
Hash ecd2988783bb4e49f6a242620d54ac21
6863076f3f4c1d0203e511258703af9f02fc97a7
20fbf71645de91c6368d758f878b980c72bce11166a26902bc3e9625eac51833
GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:31 GMT
ETag: "768-54d1b02dc48c0"
Accept-Ranges: bytes
Content-Length: 1896
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=17.7.1
103.89.7.45200 OK 53 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (634)
Hash bcff4f0f0eaaf75435e924eec527616d
fe1e7850635b2a1564e8f7f3195617d2eaba73d7
552825b186d7451e0bf6df23e2b78b333e0ccc81aea2dd19055a8adf4b9fe329
GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:32 GMT
ETag: "cdde-54d1b02eb8b00"
Accept-Ranges: bytes
Content-Length: 52702
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/uploads/2018/06/Logo_fg-wilson..jpg
103.89.7.45200 OK 48 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/Logo_fg-wilson..jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=420, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1024], baseline, precision 8, 300x123, components 3\012- data
Hash f6b314e9717b83dc5a77e492b445f585
5dc22b9826ef4b4038cba888d7e19aa09c80e881
ca14465819a9238c945eb6a730580f698bb76e1f4a40031c70c6c0f453651ea8
GET /wp-content/uploads/2018/06/Logo_fg-wilson..jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Sat, 16 Jun 2018 06:25:37 GMT
ETag: "bb61-56ebc668d5a40"
Accept-Ranges: bytes
Content-Length: 47969
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/themes/betheme/js/parallax/translate3d.js?ver=17.7.1
103.89.7.45200 OK 6.7 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/js/parallax/translate3d.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
Hash af31b2d759ddae795f623b8ff403c3ef
a45db8f433ad5d481258e452d75e444f02a0473d
473fbe193000b252278e08104106331b16cd71d1d671d52062d98b283a95b94e
GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:04:44 GMT
ETag: "1a30-54d1b0e5d3b00"
Accept-Ranges: bytes
Content-Length: 6704
Keep-Alive: timeout=5, max=492
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-2-600x450.jpg
103.89.7.45200 OK 22 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-2-600x450.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x450, components 3\012- data
Hash 0002374cac716bcb55041e566e54ab97
d4c0d7d4a595468bd0ae44310f1116fd928fb841
0558ab25e619e3fcc552b4fe2875bc9006007ba06c107bd50a98e0fe90ffa233
GET /wp-content/uploads/2018/06/P33-3-2-600x450.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:49 GMT
ETag: "5688-5a9e985187540"
Accept-Ranges: bytes
Content-Length: 22152
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/themes/betheme/js/plugins.js?ver=17.7.1
103.89.7.45200 OK 197 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/js/plugins.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (32011)
Size 197 kB (196938 bytes)
Hash 0316b4ca49139d98050f4968d399d05e
72f43f0591ed0ffa9d1dc197ed390c71e36a5255
df9c1b792fdbf7048b9e5c00841e54a527ffd3a5dc4b5370203390f1c762634c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/js/plugins.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:04:44 GMT
ETag: "3014a-54d1b0e5d3b00"
Accept-Ranges: bytes
Content-Length: 196938
Keep-Alive: timeout=5, max=492
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-600x450.jpg
103.89.7.45200 OK 42 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-600x450.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x450, components 3\012- data
Hash 77b89c8bfe81aae4115eaec1c6c27962
587f06691f1fda8df5a16acd18eac878477d6bd2
a6c29cee13f93b4f357219d84795d6f6b963e4ba42892664f1a10ea33726ca83
GET /wp-content/uploads/2018/06/P33-3-600x450.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:49 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:53 GMT
ETag: "a392-5a9e985557e40"
Accept-Ranges: bytes
Content-Length: 41874
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-includes/js/comment-reply.min.js?ver=5.8
103.89.7.45200 OK 3.0 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/comment-reply.min.js?ver=5.8
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (2949)
Hash 3b59c3b33879d70b46063089ec505e03
4054dbf1c08e09d8514df72dbe137d02efae907a
143ce443c390db3b8598f951de20bd04623859a581a15b8cde43ebfa1f8ec103
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=5.8 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "ba8-5c82a285b6a39"
Accept-Ranges: bytes
Content-Length: 2984
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-includes/js/wp-embed.min.js?ver=5.8
103.89.7.45200 OK 1.4 kB URL HTTP/1.1 www.fgwilson.id/wp-includes/js/wp-embed.min.js?ver=5.8
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 28 Jul 2021 07:44:34 GMT
ETag: "592-5c82a285b75f1"
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=492
Connection: Keep-Alive
Content-Type: application/javascript
www.fgwilson.id/wp-content/themes/betheme/fonts/mfn-icons.woff?23391439
103.89.7.45200 OK 81 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/fonts/mfn-icons.woff?23391439
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type Web Open Font Format, TrueType, length 80636, version 1.0\012- data
Hash 3da843d15ed5d4d39e269cfbad8345fb
1d915a3fd051f9e9cf6f545dfe31939fdb368738
f6134456d89988ada75cfdf21df40c6abdccccf01b48a669add0223f3fa38ec4
GET /wp-content/themes/betheme/fonts/mfn-icons.woff?23391439 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.fgwilson.id/wp-content/themes/betheme/css/base.css?ver=17.7.1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:01:44 GMT
ETag: "13afc-54d1b03a2a600"
Accept-Ranges: bytes
Content-Length: 80636
Keep-Alive: timeout=5, max=492
Connection: Keep-Alive
Content-Type: application/font-woff
www.fgwilson.id/wp-content/themes/betheme/images/box_shadow.png
103.89.7.45200 OK 108 B URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/images/box_shadow.png
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type PNG image data, 5 x 3, 2-bit colormap, non-interlaced\012- data
Hash 449d9ef55c135a86ebd8ec91c7f170e6
acbb68ea104cfdd08081c66ce8a151e4668ef313
3f10d52942270b9e2da36af3915028bd73dfab3703bc13f060234cb0aa5bae2f
GET /wp-content/themes/betheme/images/box_shadow.png HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/wp-content/themes/betheme/css/layout.css?ver=17.7.1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:04:36 GMT
ETag: "6c-54d1b0de32900"
Accept-Ranges: bytes
Content-Length: 108
Keep-Alive: timeout=5, max=491
Connection: Keep-Alive
Content-Type: image/png
www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.5.4
103.89.7.45200 OK 6.8 kB URL HTTP/1.1 www.fgwilson.id/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.5.4
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type ASCII text, with very long lines (6758), with no line terminators
Hash 98f4e97f86b642bf082c65ae518ad010
e4e05eb15ee57f2cdb00a2a97419c02cfebb2732
5302d7ef47b197c6cc07e5db5152dcce3b6886ac18f727875fe78ba8e8129224
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.5.4 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Thu, 07 Feb 2019 14:49:41 GMT
ETag: "1a66-5814ef3c8ab40"
Accept-Ranges: bytes
Content-Length: 6758
Keep-Alive: timeout=5, max=491
Connection: Keep-Alive
Content-Type: text/css
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-4-600x450.jpg
103.89.7.45200 OK 32 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-4-600x450.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x450, components 3\012- data
Hash 971eaef761ae4d08b592627ada240e33
3797082880e472879dbd81b8b502d26fd868e5d5
83cec01d828f67cabf1fba6830a0669eb2d471546000b10f3433ce8b98a10852
GET /wp-content/uploads/2018/06/P33-3-4-600x450.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:52 GMT
ETag: "7d9f-5a9e985463c00"
Accept-Ranges: bytes
Content-Length: 32159
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-3-600x450.jpg
103.89.7.45200 OK 33 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-3-600x450.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x450, components 3\012- data
Hash dcdc8d5a50c777a61b351c26d84d510a
4462f022f0e0972fa6e2968aa33e48edcf41ca83
efb83daafbdd2b1c2161f4dc9b2d7c4016c74fada0ac48f841b1c9745b4f32f0
GET /wp-content/uploads/2018/06/P33-3-3-600x450.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:50 GMT
ETag: "7feb-5a9e98527b780"
Accept-Ranges: bytes
Content-Length: 32747
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-1-600x450.jpg
103.89.7.45200 OK 22 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-1-600x450.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x450, components 3\012- data
Hash 67dfce5fac19176099cdab515142ce84
b0479bc07d2579ab53b4fabc178f320d81712152
ddcbd36249916d0e3dcedc4894d10f3c6489dbc3574ce1417316be646e3649e6
GET /wp-content/uploads/2018/06/P33-3-1-600x450.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:48 GMT
ETag: "544d-5a9e985093300"
Accept-Ranges: bytes
Content-Length: 21581
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-100x100.jpg
103.89.7.45200 OK 3.3 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-100x100.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash f2d872ee5f85aafea52b394c65362c47
f0663fd1e19315d586d3c8a456814e2d8616bf7e
56c88774a1f9b344a94b8a6e377b3860919e2edb95a3f8c0ba8f51e13d5b43b8
GET /wp-content/uploads/2018/06/P33-3-100x100.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:53 GMT
ETag: "cf9-5a9e985557e40"
Accept-Ranges: bytes
Content-Length: 3321
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-4-100x100.jpg
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-4-100x100.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash f636d5928650b2fd2fcd68199d6903af
fdbb3369619e2c208e80cb96df6728cfb7ee55a0
714c9cf584a372d66dba0d9df7b4aac31af451d57fe3d2cf8ddcfe3ff377bdc4
GET /wp-content/uploads/2018/06/P33-3-4-100x100.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:52 GMT
ETag: "a2f-5a9e985463c00"
Accept-Ranges: bytes
Content-Length: 2607
Keep-Alive: timeout=5, max=498
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-1-100x100.jpg
103.89.7.45200 OK 1.9 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-1-100x100.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash c88554a7b8a1a40076c97786f888c929
b2dfa4e94a9c1a309da8772acba19ef91b946ce7
6de95ce628ea869ae8c9648a5a5f4b4101425fa9a1262743655d36d4520ffde3
GET /wp-content/uploads/2018/06/P33-3-1-100x100.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:48 GMT
ETag: "757-5a9e985093300"
Accept-Ranges: bytes
Content-Length: 1879
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/wp-content/uploads/2018/06/P33-3-2-100x100.jpg
103.89.7.45200 OK 2.2 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3-2-100x100.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 5f3e35aaa0bba857cfeaa109f879268e
95a28cf16b84fd77213262f4aff519cdd0455f73
9716bbd5ea7e80bf2c0b042268ef423864cc1830d34c5f91c38bc121adcefa58
GET /wp-content/uploads/2018/06/P33-3-2-100x100.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 08 Jul 2020 08:01:49 GMT
ETag: "868-5a9e985187540"
Accept-Ranges: bytes
Content-Length: 2152
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
www.fgwilson.id/?wc-ajax=get_refreshed_fragments
103.89.7.45200 OK 523 B URL HTTP/1.1 www.fgwilson.id/?wc-ajax=get_refreshed_fragments
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JSON data\012- exported SGML document, ASCII text, with very long lines (523), with no line terminators
Hash c7a1be13c013c4b7923e632de4fa1208
2a6e68f72d8b8ec21374d2effbd5893ea20842ae
05e9cc38b45f19a6b44f35b013cc2c2196f2d75bf69fb7ab8963727d1526ad9f
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
Content-Length: 0
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
X-Powered-By: PHP/7.3.33
X-Pingback: http://www.fgwilson.id/xmlrpc.php
Access-Control-Allow-Origin: http://www.fgwilson.id
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Keep-Alive: timeout=5, max=492
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
www.fgwilson.id/wp-content/uploads/2018/06/P33-3.jpg
103.89.7.45200 OK 69 kB URL HTTP/1.1 www.fgwilson.id/wp-content/uploads/2018/06/P33-3.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 712x534, components 3\012- data
Hash f1d1626d00cd31e0b54a22e779c35f7d
e50e23f70c03466038a0db4f0df0f7869662b755
912c8f35b5941a2a1ab2523ed67bfc1cd8f968feae22cc6a9ccb7a856e376bcd
GET /wp-content/uploads/2018/06/P33-3.jpg HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Wed, 20 Jun 2018 13:21:31 GMT
ETag: "10dee-56f12ad4aacc0"
Accept-Ranges: bytes
Content-Length: 69102
Keep-Alive: timeout=5, max=499
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-9609247137746816
216.58.211.2200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-9609247137746816
IP 216.58.211.2:0
File type ASCII text, with very long lines (4885)
Hash 9c720bc458e456ff87621c4dcb547865
74ec07b7cb8f591f54fe08be6b193d94da64ed04
81c6a999ace6373f799afe2baf76dc13b7426909685d7320c9bed5c5bcb4744b
GET /pagead/js/adsbygoogle.js?client=ca-pub-9609247137746816 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.fgwilson.id
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Dec 2022 13:53:51 GMT
expires: Tue, 06 Dec 2022 13:53:51 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6001470646879290865
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49212
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.fgwilson.id/wp-content/themes/betheme/js/scripts.js?ver=17.7.1
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 www.fgwilson.id/wp-content/themes/betheme/js/scripts.js?ver=17.7.1
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 749e94b287e614ffbd8cf9e16b82c1cf
63c5d6950f23b98bde8a1d21f502efbea9a31767
5b015b96cdd59d2cc2aff88ddfb3b5c5ac49bfe389990929389419455aa9d920
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/betheme/js/scripts.js?ver=17.7.1 HTTP/1.1
Host: www.fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fgwilson.id/product/p110-6/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Fri, 14 Apr 2017 07:04:44 GMT
ETag: "10b15-54d1b0e5d3b00"
Accept-Ranges: bytes
Content-Length: 68373
Keep-Alive: timeout=5, max=493
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 013b65c5b52bb7855158194ff2024fb8
94eae308d8338735898e90536fc6ba076ff28cdd
bb5ab17efd81056c5f0ab03312011b63acb099c0e249364464391af52428098e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.fgwilson.id
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.fgwilson.id
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.fgwilson.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 13:53:51 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.fgwilson.id
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.fgwilson.id
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.fgwilson.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 13:53:51 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 013b65c5b52bb7855158194ff2024fb8
94eae308d8338735898e90536fc6ba076ff28cdd
bb5ab17efd81056c5f0ab03312011b63acb099c0e249364464391af52428098e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2f78233942acf60c67bac813e8557e91
f436e21183923254b12686c4172774933936be3b
778715fa4b279bfe0ba289748f29a738aa1fe49363ef6409f9b0ea71ebf0a552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.fgwilson.id&callback=_gfp_s_&client=ca-pub-9609247137746816&gpid_exp=1
216.58.207.194200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.fgwilson.id&callback=_gfp_s_&client=ca-pub-9609247137746816&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (389), with no line terminators
Hash ce40ffdb4bf4cbfbc9cf7e54e04a0837
14e05d9cfb4237a7682d4498c0b444e9440d4229
53252b039973ef5559b18a916682b767617a21b9a0068a6287a9573941e1ab34
GET /gampad/cookie.js?domain=www.fgwilson.id&callback=_gfp_s_&client=ca-pub-9609247137746816&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 06 Dec 2022 13:53:51 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2f78233942acf60c67bac813e8557e91
f436e21183923254b12686c4172774933936be3b
778715fa4b279bfe0ba289748f29a738aa1fe49363ef6409f9b0ea71ebf0a552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cd9d4f89bcbea2c5864e119bd4e7b4e2
b5fd1c175a2d39de543d59eba6e2f5a1ea35bce2
0dfad90e92a5f592aa1ff61329eda924d665696b7f5746f7f2f999b7bb0d2dd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 06 Dec 2022 13:53:51 GMT
expires: Tue, 06 Dec 2022 13:53:51 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:03:38 GMT
expires: Wed, 06 Dec 2023 11:03:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 10213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fgwilson.id/wp-content/uploads/2018/06/favicon.jpg
103.89.7.45200 OK 2.6 kB URL HTTP/1.1 fgwilson.id/wp-content/uploads/2018/06/favicon.jpg
IP 103.89.7.45:0
ASN #133800 PT Biznet Gio Nusantara
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 32x32, components 3\012- data
Hash 3fba57f8482839dd92f994264234ec16
739f6f3bde78903bb7140e382ae1c22f1a10d4f4
8f5249b7d4147929305ba87647174077fa8b9aae745880e4fa78e4a2dcc204d9
GET /wp-content/uploads/2018/06/favicon.jpg HTTP/1.1
Host: fgwilson.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 13:53:51 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.3.33
Last-Modified: Tue, 12 Jun 2018 09:17:34 GMT
ETag: "a3f-56e6e5620c780"
Accept-Ranges: bytes
Content-Length: 2623
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5006b8e985c5838b7fd2f2b558a65bc4
183ff15e0faedf346305fd6fe1c70c9c7a1eef4a
fcbfec9f5fd0e10d44778c1df64d8612281cd39881cdfd0aa8ca30d13655655a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 13:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
216.58.207.228200 OK 510 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 6ae56457fbf93fb3649522fb21224981
c45212bd9b7ff618c140ccfab856ba15465a1bdf
886ac01b64afc610690606f691cdd682889178177c802058469fb9f5622449e3
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fgwilson.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 06 Dec 2022 13:53:51 GMT
date: Tue, 06 Dec 2022 13:53:51 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce--guEcqRiee7e9oyXhLLE9g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 510
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2