r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7449
Expires: Sat, 08 Oct 2022 18:39:59 GMT
Date: Sat, 08 Oct 2022 16:35:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 15:47:18 GMT
Expires: Sat, 08 Oct 2022 16:23:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JSD6Kap-z-cDrrlbQbD22qLJygzWmWDvnAW9VXyEpTU_t96t2nzZsQ==
Age: 2912
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9951
Expires: Sat, 08 Oct 2022 19:21:41 GMT
Date: Sat, 08 Oct 2022 16:35:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tOBYvMDXu9JULCUx6QIqSryDvQR7Z2X7VW2//WPOIziBRMe5CqV8Inlm/s3GWttdnrdxnKNV2DM=
x-amz-request-id: S4F610R8HT3S1P46
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 16:31:43 GMT
age: 247
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 16:35:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
Analyzer Verdict Alert fortinet Phishing
GET /repository/free-robux-on-computer_gm431946152.pdf HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
set-cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj; expires=Sun, 09-Oct-2022 04:35:50 GMT; Max-Age=43200; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 08 Oct 2022 16:29:41 GMT
Expires: Sat, 08 Oct 2022 17:23:35 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q4W_exqEEHOOCKBIsyNrIHNvyepdY2Rw1BWkXYLm-wcSIpmRtyw_3A==
Age: 369
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2165
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 16:35:51 GMT
Last-Modified: Sat, 08 Oct 2022 15:59:46 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
perpustakaan.baytalhikmah.sch.id/repository/template/core.style.css
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/template/core.style.css
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash 86312c12846b0ad11c1069910f161adb
84e5f68695627e354fc8c5e33c929e6850de9c8d
f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5
GET /repository/template/core.style.css HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/js/colorbox/colorbox.css
185.237.144.175200 OK 1.4 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/js/colorbox/colorbox.css
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Hash 01c5e1bc5d2323c2b2c442671d3ca473
6f55652a01e958bfc02a8b0844ad464aec6a17bf
624e38222f86738d5ef4fdf4c1c7ca0b6ea0c9adcb2070111caf2f6cbad1aa0f
GET /js/colorbox/colorbox.css HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:50 GMT
content-type: text/css
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1435
date: Sat, 08 Oct 2022 16:35:50 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/template/default/css/tango/skin.css
185.237.144.175200 OK 728 B URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/template/default/css/tango/skin.css
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Hash 94a3f6ffdebcab4f48d2e5a6d571d095
948e3f04cbf0e3fc8496da28d32d48271cb3c8fb
b3993130121ae2d4eca01c35242ce66ac91b29e1bdb4ca1fbf5dbe2d949c0067
GET /template/default/css/tango/skin.css HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: text/css
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 728
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/template/default/style.css
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/template/default/style.css
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/template/default/style.css HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/js/form.js
185.237.144.175200 OK 1.7 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/js/form.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 62e80ceb5bdc14d04d28456153ab2ea0
40163d69bea0be2fe54b92ed4cb4ee27797cb0eb
b3fcc82ca1fa77b118b1ece5e159c91eb11c499a14c25501d1eb9d6ebd2d91ec
Analyzer Verdict Alert fortinet Phishing
GET /js/form.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1695
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/js/jquery.js
185.237.144.175200 OK 34 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/js/jquery.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65482), with CRLF line terminators
Hash 338a8cb4b3bd475394415e14788a258b
5d1cc9c51062e6e66e784f42d807ad22e9e10ec5
77d249bfb6e373a53ff9e93100063680c93a1a607dcd49842fa42a4bbe0e7507
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 33555
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/js/colorbox/jquery.colorbox-min.js
185.237.144.175200 OK 4.5 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/js/colorbox/jquery.colorbox-min.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10488)
Hash 0ade67f373f399a8a91044ad42b36919
627322805e9b4dc837de76f6670cfcba08dd945a
028fb8f28f491f3fd335a434585f31bde4106d5d4b005373c3da25a8aa39a374
Analyzer Verdict Alert fortinet Phishing
GET /js/colorbox/jquery.colorbox-min.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4463
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/template/default/js/jquery.jcarousel.min.js
185.237.144.175200 OK 4.6 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/template/default/js/jquery.jcarousel.min.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15622)
Hash 01e0eeca44daf58c5d6e3b3a2a74da36
f496b283d4134c109790103e72e1b932850c8d3d
11dcaa12ba22e5e32cde8cb467c15efbe188bd068ffb409edd22bc20447238d0
Analyzer Verdict Alert fortinet Phishing
GET /template/default/js/jquery.jcarousel.min.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4558
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/js/gui.js
185.237.144.175200 OK 4.2 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/js/gui.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text
Hash 65e38dad926fda87895c62e912a6beb4
a1bcb26496755cbc75abced38504367b4d2e9e16
d3b7e4120fc38d966b5cb6160ee95cab49d2c31d8d79d0df945f26e04cbe24a1
Analyzer Verdict Alert fortinet Phishing
GET /js/gui.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 16:35:51 GMT
content-type: application/javascript
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4186
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
push.services.mozilla.com/
52.41.246.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.246.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: esEp/c+a34eWkN4tlemxCQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q6JdiRnZ+SFZt1nvV0ftPRqZ1eY=
perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash 86312c12846b0ad11c1069910f161adb
84e5f68695627e354fc8c5e33c929e6850de9c8d
f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5
Analyzer Verdict Alert fortinet Phishing
GET /repository/js/highlight.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/Tere_Liye_-_Matahari.jpg.jpg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/Tere_Liye_-_Matahari.jpg.jpg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/images/docs/Tere_Liye_-_Matahari.jpg.jpg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/cover_depan_page-0001.jpg.jpg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/cover_depan_page-0001.jpg.jpg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/images/docs/cover_depan_page-0001.jpg.jpg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/template/default/img/rss.png
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/template/default/img/rss.png
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/template/default/img/rss.png HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
Analyzer Verdict Alert fortinet Phishing
GET /repository/js/highlight.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/saring-sebelum-sharing.jpg.jpg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/saring-sebelum-sharing.jpg.jpg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/images/docs/saring-sebelum-sharing.jpg.jpg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-08-26_at_09.49.09(1).jpeg.jpeg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-08-26_at_09.49.09(1).jpeg.jpeg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
Analyzer Verdict Alert fortinet Phishing
GET /repository/images/docs/WhatsApp_Image_2021-08-26_at_09.49.09(1).jpeg.jpeg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-08-30_at_10.21.36.jpeg.jpeg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-08-30_at_10.21.36.jpeg.jpeg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
Analyzer Verdict Alert fortinet Phishing
GET /repository/images/docs/WhatsApp_Image_2021-08-30_at_10.21.36.jpeg.jpeg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/Cari_Duit_3D.jpg.jpg
185.237.144.175200 OK 3.8 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/Cari_Duit_3D.jpg.jpg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Hash a39560abea6f891116cfcd14081ad026
a5bd6a4f63565475ff26ed7128a3219e806351ef
3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
GET /repository/images/docs/Cari_Duit_3D.jpg.jpg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-01-13_at_11.27.22.jpeg.jpeg
185.237.144.175200 OK 7.7 kB URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2021-01-13_at_11.27.22.jpeg.jpeg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Hash c1c25ac4a329d1be85f3657342d3977f
3f9a4ddede4fd75d2d22e1fee1c04852148db0ba
25f52e8f9f7982d4c1d4112500a95e4d4e75227b37be1cc67452d891c4776eed
Analyzer Verdict Alert fortinet Phishing
GET /repository/images/docs/WhatsApp_Image_2021-01-13_at_11.27.22.jpeg.jpeg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Sat, 08 Oct 2022 18:57:25 GMT
Date: Sat, 08 Oct 2022 16:35:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Sat, 08 Oct 2022 18:57:25 GMT
Date: Sat, 08 Oct 2022 16:35:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Sat, 08 Oct 2022 18:57:25 GMT
Date: Sat, 08 Oct 2022 16:35:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Sat, 08 Oct 2022 18:57:25 GMT
Date: Sat, 08 Oct 2022 16:35:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8493
Expires: Sat, 08 Oct 2022 18:57:25 GMT
Date: Sat, 08 Oct 2022 16:35:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d67e1b7a9224fb617581c14af1e369ac
941b8fdd8736691d796738233681f12900af92c4
ed88575e76e6919ab4702bb29db5c48c5bd250ad2a89047d4d8a31cf3c77f12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9112
x-amzn-requestid: 94c5c303-a221-4b00-9d01-95607233fbc4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp2PxHXuoAMFZzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409d97-5080b3765b6cd57c64e36e80;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:43:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YVO6dS_rRDS-b0gyrKubWZKQY-Dn2EC_VyUE05i4KVGc5LTON9rzbg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:43:52 GMT
etag: "941b8fdd8736691d796738233681f12900af92c4"
content-type: image/jpeg
age: 67920
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Vy9jQu1a8BGypY4C4u_9gao5wPEkVHgArhG2zMNdH8KfBS0lfmyHBA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:43:41 GMT
age: 67931
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aaHDHE38nByvpccXO4wHgHk6BAOPZDsFdXxi2-KgjUaXvjC58nlGUQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:55:27 GMT
age: 67225
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6207431ae268d805fb92237925c8fc0
075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87
bb8966bd5b80f1ba6c974925df0610e0a219759ab92df062e135baae02fa0071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: c9408e3c-29f6-4a53-b09d-0c3f49e99287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AzFQ3oAMF_Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed1-1da6e8c500879b080c66fdfe;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M8TN3UdactHymyCJFQHV86X0fYsS-_V7Yu-7dUWFnOUyRonAqQHpGw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:14:30 GMT
age: 66082
etag: "075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcf23b32642f7a82a0a7d734a631bca
9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7
add9aab4427819610f8d693758a752910cf314346e974b7636a82381ab9daa4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4252
x-amzn-requestid: 8d6a225c-6389-4f20-9b90-494841f47c99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4GjCIAMFX-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-4076dc933185d9fd6b68e802;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Wb1JAlWtR9sSEi_KuYZivvMivSxZjo92LGpWgFppol5zgapK6eQ-dg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:39:48 GMT
etag: "9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7"
content-type: image/jpeg
age: 68164
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wWlD3C6HI9oxa0VAYA6N5afAcUDTQXdO8X31eZUglfdC6jSQo_gew==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 04:44:42 GMT
age: 42670
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2020-12-31_at_10.23.53.jpeg.jpeg
185.237.144.175200 OK 0 B URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_2020-12-31_at_10.23.53.jpeg.jpeg
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /repository/images/docs/WhatsApp_Image_2020-12-31_at_10.23.53.jpeg.jpeg HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/template/default/js/bootstrap.min.js
185.237.144.175200 OK 0 B URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/template/default/js/bootstrap.min.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /repository/template/default/js/bootstrap.min.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
perpustakaan.baytalhikmah.sch.id/repository/template/default/js/supersized.3.2.7.min.js
185.237.144.175200 OK 0 B URL HTTP/1.1 perpustakaan.baytalhikmah.sch.id/repository/template/default/js/supersized.3.2.7.min.js
IP 185.237.144.175:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /repository/template/default/js/supersized.3.2.7.min.js HTTP/1.1
Host: perpustakaan.baytalhikmah.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://perpustakaan.baytalhikmah.sch.id/repository/free-robux-on-computer_gm431946152.pdf
Cookie: SenayanMember=hgc1lp3f3alar4puchg7j91tejli0opj
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 08 Oct 2022 16:35:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff