r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10784
Expires: Wed, 25 Jan 2023 05:59:45 GMT
Date: Wed, 25 Jan 2023 03:00:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18917
Expires: Wed, 25 Jan 2023 08:15:18 GMT
Date: Wed, 25 Jan 2023 03:00:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7357
Expires: Wed, 25 Jan 2023 05:02:38 GMT
Date: Wed, 25 Jan 2023 03:00:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 02:42:47 GMT
content-type: application/json
age: 1034
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6tIIQ0icttO7H17/QNap/HsFs60rxPvY3S47422FZHsrh42VD6fUYJorc36DMgHC6Nr5DJcoe8w=
x-amz-request-id: DV55623P53FM286N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 02:19:30 GMT
age: 2431
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
aspphami-dki.or.id/form-rencana-mengikuti-pelatihan
103.112.245.8301 Moved Permanently 267 B URL HTTP/1.1 aspphami-dki.or.id/form-rencana-mengikuti-pelatihan
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aab6494e20498a53ef422f68115a979a
d0a267949f5dc921900ad8d929551ab410a58bfb
99335d8f51279356caf674d6a679b40db3203981a74b932261c33087f0f91ca4
Analyzer Verdict Alert fortinet Malware
GET /form-rencana-mengikuti-pelatihan HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 25 Jan 2023 03:00:00 GMT
Server: Apache
Location: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan
Content-Length: 267
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 03:00:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 02:17:31 GMT
age: 2550
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18406
Expires: Wed, 25 Jan 2023 08:06:47 GMT
Date: Wed, 25 Jan 2023 03:00:01 GMT
Connection: keep-alive
push.services.mozilla.com/
34.213.106.99101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.106.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9ETV7HR6m1gHGZzEsQLCCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ShgtugnunrFqRLEGXVwPKbZkKsY=
aspphami-dki.or.id/form-rencana-mengikuti-pelatihan
103.112.245.8301 Moved Permanently 1 B URL HTTP/2 aspphami-dki.or.id/form-rencana-mengikuti-pelatihan
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Malware
GET /form-rencana-mengikuti-pelatihan HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
x-redirect-by: WordPress
location: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Wed, 25 Jan 2023 03:00:01 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Wed, 25 Jan 2023 05:43:13 GMT
Date: Wed, 25 Jan 2023 03:00:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Wed, 25 Jan 2023 05:43:13 GMT
Date: Wed, 25 Jan 2023 03:00:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Wed, 25 Jan 2023 05:43:13 GMT
Date: Wed, 25 Jan 2023 03:00:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Wed, 25 Jan 2023 05:43:13 GMT
Date: Wed, 25 Jan 2023 03:00:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9790
Expires: Wed, 25 Jan 2023 05:43:13 GMT
Date: Wed, 25 Jan 2023 03:00:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24a73392615d623dc852bdab43c9f133
3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4
edc11bdc8b40a513dc62b32f7eff0ba1f80db27208bd80bd16235da3c369157b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5732
x-amzn-requestid: 779904e5-f2c8-4d10-a3bf-0ed43b9ca019
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULOFf3oAMFfUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-22f5fe110d67b7d8215368d4;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kYNlMFpl4zmNWdYW1WatxKIqjZw4lWONAX0uXKBi0mfwzND1kTeLOg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 13:55:37 GMT
age: 47066
etag: "3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: c7064a36-7bb0-42c7-9ee8-9ee798ce8cbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEq3UEjVoAMFipg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb582e-5be2ad2a217f9b4b6834a278;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: b4EbiS-go4Yy-UcA4CbKj10TbS6qKgQd6ZgqB3XVyd9ieBPszfx_jw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:47:57 GMT
age: 18726
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805711aaab303931f8966bbf73aeda52
2bd02a45c8b407e36a41a482b121ea3e14f7c722
66268668c1a970268d75beb1b57f66a759bedac76958a3359cb23104de40fbeb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3411
x-amzn-requestid: 62afd364-e94f-45ff-ba6c-9b589fc53e5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyCEzrIAMFb8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-203f51040f82f12d535446c4;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Ke5d5WguVrF_Phnhu9ojzN5Md0VkYnFfxKNoh5HHrmHwPI90IAIdA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 04:49:41 GMT
age: 79822
etag: "2bd02a45c8b407e36a41a482b121ea3e14f7c722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af3ceda828750acf5ac7c837612a6e0f
f6364de0805cf3cfe66d19293085da16a2c2f832
baa0cb6e3cec7f840477dfdcea518968f5b72a828dbd346abb09e2d3e3aa3bee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9091
x-amzn-requestid: c5849f51-8fc6-40c0-a1e3-9deb74e06c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEzxoAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-22d80a0c3e6485dd62f420ef;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JlD-eXZtA8-dDqRe6gMZSyNbPuksroMQ4J_L2g_NjPQB8KQGgZWpXA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:36:12 GMT
age: 19431
etag: "f6364de0805cf3cfe66d19293085da16a2c2f832"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6fa8338e574e2b8272ad3ca7cd9d1d63
298cafecdcac99de25fe5c2c4c993487f73ced6b
f75c20ebc4c0db2df40d958337cd87768714bdf53a48609ad0f97b7129b0b100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6715
x-amzn-requestid: c808c9d9-bbbb-43ff-ab15-33074a760093
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BO5En_oAMFTzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648c5-67151eb46f5a10b0732fbd09;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0pvebF903zoRPgzBK2gxMlcYQTurylOzzCfOO07hYCG5aD7wX_fl9g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 19:26:10 GMT
age: 27233
etag: "298cafecdcac99de25fe5c2c4c993487f73ced6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42c8799a-4bfb-409b-9789-78388344ffa6.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42c8799a-4bfb-409b-9789-78388344ffa6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd550f762800dcbbd86f599c1283050b
f003c2a8a841d70c0c77d28362aa855e5c4826ae
f5d669beac28d5dd73b7850b601b965d41a6192d8dc226c65a2eb85bdb5b77e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42c8799a-4bfb-409b-9789-78388344ffa6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7266
x-amzn-requestid: 97a4233c-38fc-461a-afb5-d89b3f25681b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFHVkGsmIAMFqEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb85bd-634989b11d1b5c7b0e047f57;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:27:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cgsCHmWkKtiMLK9_i-TqXW4dQB2AFgdkZ-U3-5Mpr7YcStQIpAaiGw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 08:57:59 GMT
age: 64924
etag: "f003c2a8a841d70c0c77d28362aa855e5c4826ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 5cb5ee8649350d51046d05d695919869
89374e33a2c85ab3e105983a9990d18727fb4eca
11de33bd9b8aadb5df1cfaaa41c8224784fa4f1010c33c55a6552dc1ddd683cf
Analyzer Verdict Alert fortinet Malware
GET /form-rencana-mengikuti-pelatihan/ HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://aspphami-dki.or.id/wp-json/>; rel="https://api.w.org/", <https://aspphami-dki.or.id/wp-json/wp/v2/pages/997>; rel="alternate"; type="application/json", <https://wp.me/P8a5o8-g5>; rel=shortlink
vary: Accept-Encoding
content-encoding: br
content-length: 11223
content-type: text/html; charset=UTF-8
date: Wed, 25 Jan 2023 03:00:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
142.250.74.132200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 942e8eb47732ffd74066986cbbc508fc
7f9062fc97188998861be64c6b2091511d59a9d4
47b3f08b9c7d8e0a22af72f4958a62960180651c4847095011f16f68ad40db43
GET /recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 25 Jan 2023 03:00:04 GMT
date: Wed, 25 Jan 2023 03:00:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-156598198-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-156598198-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash d07b36561ff8cdeb1b895a26b316d52f
7c3acb4364ad91488ff9fcc0f97841bd7d285583
e65809692ade3e9b54207f969a222225873edd4d84008dca14085a284552c546
GET /gtag/js?id=UA-156598198-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 25 Jan 2023 03:00:04 GMT
expires: Wed, 25 Jan 2023 03:00:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44029
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
199.232.194.2200 OK 907 kB URL HTTP/2 media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
IP 199.232.194.2:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 907 kB (906802 bytes)
Hash 7e82a0d678f579e0ac6b48f0214971dd
9a5fab39b50c6f8ee6cde9824c601326811fe5bd
b9b0c1c6528a199af3da52c4ddca0a71639bc77a9f2e085bfb38447833878a45
GET /media/cMEJTMtj9j1QITc4nx/giphy.gif HTTP/1.1
Host: media1.giphy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Dec 2019 14:21:42 GMT
etag: "7e82a0d678f579e0ac6b48f0214971dd"
content-type: image/gif
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 25 Jan 2023 03:00:04 GMT
age: 687820
x-served-by: cache-iad-kcgs7200034-IAD, cache-bma1640-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1674615604.311183,VS0,VE1
strict-transport-security: max-age=15465600
cache-control: max-age=86400
content-length: 906802
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
103.112.245.8200 OK 3.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 4a059b9209f7a198387e0a8dc32ffb97
cc11280a0b39cbdaaf823ef484ae132fc402ed42
70d70d0c99dc35188661c8d1c2a4809b7a5ebe63b99f99b864843ca3ee18d4d0
GET /wp-content/plugins/photo-gallery/booster/assets/css/global.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3211
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2397
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
103.112.245.8200 OK 982 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 Dec 2019 03:16:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 982
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
103.112.245.8200 OK 870 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 6e1861555b0cc8895850f17c5b68b361
9f6efdec40c3b2ed701b188d2373947617c93430
b7f19ee462c0657acde75e1e2230913b5baa2b101a1a3c49b48d08b1a8a6bcd2
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 870
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/css/classic-themes.min.css
103.112.245.8200 OK 145 B URL HTTP/2 aspphami-dki.or.id/wp-includes/css/classic-themes.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2dfb9ddeabe846b150087876ceb22a74
c9e3350631e53855d04d6dce360a675c84b3131d
26ef5cb63a695419cf11c79a759b46c5568df3716e4f1d36e7612b3695d5b554
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 145
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
103.112.245.8200 OK 5.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash 9e633602430a663f8926961867113857
b6cf5032ef6298fc65f80dd12b400f8df0a0209c
bc88243f60f54ce421990014ea88164f08706ccc921a2f52a0c7f5fb622a090c
GET /wp-content/plugins/instanow/assets/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2016 02:31:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5013
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 47d71bf163265666c21e2410fb568043
54a4b0f241af261f878967ce058f5885be476cc4
8b7ce4c8269941cf55ca12415b1abfd7d4ae7bf5823657f3afe5e8dd34bed80b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.pinterest.com/js/pinit.js
151.101.244.84200 OK 203 B URL HTTP/2 assets.pinterest.com/js/pinit.js
IP 151.101.244.84:0
File type ASCII text, with very long lines (361), with no line terminators
Hash 62d32c28f14783b94192cd8d35bc010d
78c1ba11e104bbd01a07225d0f8c41d7712094d4
e823b68f75484d37c74ebb652e2a5b183a1b65c43f1592985e519a8cabc44b2e
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "62d32c28f14783b94192cd8d35bc010d"
content-encoding: br
content-type: application/javascript; charset=utf-8
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=300
date: Wed, 25 Jan 2023 03:00:04 GMT
content-length: 203
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.linkedin.com/in.js
23.36.76.121200 OK 163 kB URL HTTP/2 platform.linkedin.com/in.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41562)
Size 163 kB (163383 bytes)
Hash 1ccf7f9ad061957d2836e1b4a021ce97
2c08f445b40e2c25643df5f9885d79e32ea98d40
450ce4df19dce74d8b46a0fb059a2bb49115d66245615758d047a1b8e6953a1a
GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Wed, 25 Jan 2023 03:33:01 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 163383
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
x-li-uuid: AAXzDXOC0EeJXPAPRWveJg==
date: Wed, 25 Jan 2023 03:00:04 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1681706e71eac2a50e53a96495478cbf
009f99569fd8d2968f20e090af24f8d8a59d8a73
4c1b106f54e6d87ee4b03540ebb462abd39c86715f633080ff12ed267f7c59ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4291
Cache-Control: max-age=87154
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:04 GMT
Etag: "63cf3be3-1d7"
Expires: Thu, 26 Jan 2023 03:12:38 GMT
Last-Modified: Tue, 24 Jan 2023 02:01:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
103.112.245.8200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (47826)
Hash 5e3752655a7a33c049db06c0edf386e6
573c51b0de413f30a220c9261506635f9daf2b81
d6571c641370e9bb83b25b5a493fca6ae3109ae384f7a8a9507ccdfb9067627d
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11590
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
103.112.245.8200 OK 789 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2e74e7d05f5c8bdbf544b9b73fe6c887
9c200d7eab4781440a5e644344db58d2d2848f76
6f69ba3b2c3665833fc4675b4aca695ace2ec28bc952522133488d087a462948
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 789
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
103.112.245.8200 OK 1.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (7609)
Hash 33ae2e7fc9cebb668a16d69092d392d8
ad12ad8658c221f932d53063c6028bf2eeaaae83
a1ec326b7faed25b94c819aff4fe7cc60cffa81147e3faf7f3d957d411bb0486
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1900
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (42839), with no line terminators
Hash 72f91a39c592f153826943c0c812f844
7ab17a04ea2c455f85db2e016ebc57ba706074c8
726d33d3d04e52f2eba62692c6e4f38e93d54f4e53e365b586c26f1adbd0f8a3
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3812
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif
103.112.245.8200 OK 509 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash a0ab337f60e551f5984731c4108b5702
3a6a12edf2992311ed6a7ffc65ee2020494b1149
d260926fb99df290de26b91bf8e178c93b4da7306baa8bd4db6a1ef85f507b6d
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 509
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
103.112.245.8200 OK 518 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 021741aa747d0db9d753f32961540b95
eb447414c4f94fbea94bfb31d5e9c8f3288956c1
a2ac6f3cfa2026b19afb6862bc5802968c2b3a49c29cf5024469208524ac7962
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 518
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 333edf623cd4e8fc45019e8bcb808dfc
92971051833dda021e183d034929a3183ad00815
a43bcc3e490158ad2afefe405d315169d3ea6688ce7a054de33c9cd786c0925e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 86c88c2ae0f2078c796de58f4774c24b
e83cbc82353c42126c10b09399870d227e66e55b
16276db5107db00d233ab72be0659d90c529d3d79e4ee37592d0a2247d35340e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/2.gif
103.112.245.8200 OK 523 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/2.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 1d6936f96a2b97a72ffde8291b54a054
ab662ab2d7ec15663d71538b1e1a70ba6380bc98
10df0dc47d69d1d241cb1ca62b0dae4e1c0cb851611fa2577cf16159c2e64df0
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/2.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 523
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
103.112.245.8200 OK 502 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 66df1809892b38c8a174c0519603a123
1b338320ff6f8a3cc6d29e25c050ac83c008b469
4b0dbfb22a8a76f9e2c22e90c3c4421cde7162ae85cdd31d8158380eace939b4
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 502
content-type: image/gif
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
103.112.245.8200 OK 617 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ff2099d576b1be945c004603978a74e6
3c931f15a21f981cb075faef1521db0ac8f6681a
d0e2093c728340a03f4b352b75ddb1dd92ea1b4029e6d317a5608c3abd61518a
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 617
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
103.112.245.8200 OK 399 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 895ac18afe3f1131c4c20aa6c8f30b79
ade54f548b21ffaaac4d31acd0ee1bbf044757bc
e27bf21a7727b4ed8780b743a7ef0021b5c378ae3c6f1e5d920cbcb8f13aeb7f
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 399
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
103.112.245.8200 OK 1.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 6bb522141185cacc5528778100681577
77cc2f1066c18b91fabb17d0c38fa6d06b923853
155871907ba4d22e117d839d7130e9ce47717ada12e094f9b24627ed41a23469
GET /wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Oct 2013 13:21:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1196
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
103.112.245.8200 OK 315 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (685), with no line terminators
Hash 90b6ed98e867cd14bff93b31e7f0af82
cc2162190788e5d8579eb5844f8ef1f12fe2a69a
8ccc3f277c5d05f7e8aa933156fcf66282133edd7e47d3774d68366bfd4a2a99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 315
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 40b936bde2f3a58b2499ab9a1c7ccdfd
2bc9295868aa1c9947cd31af26fdb340b020952c
9ed392f0abb8511f0bbb4b7c6ca5e44b3ba4ef5384a92cd5fb4dbfc58aec909a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3834
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
103.112.245.8200 OK 196 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 573c3f5acc1e799e59c6a9895cf2d84f
f6bf177d896025c716535154f239ef2f7acc8802
47c06ad2fbb3b5d7c389c5b2439b8f35a718d0ad5e251603b84fff8410701302
GET /wp-content/plugins/mechanic-visitor-counter/styles/css/default.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 196
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
103.112.245.8200 OK 432 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d0a4de6c6ec8b1e0af3a869e6326b92
b9887a6963d5374f192e4c7ba57d1bf47f793e8e
d3282d528c0ad954cc592f0f2101db95c2df821b7d963c225b51c2666c55e029
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 432
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
103.112.245.8200 OK 2.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 14c0c8f6e08d1adef360e265482a157f
a27ef5bacbac54593bd9ba068862a4f6def26780
6a8feab74d7a9f9b0022d7bff80eaaf9c17b8fdfcadfc3ba347d10e8ce7618d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2020
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
103.112.245.8200 OK 2.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 62fd26ba0f3afd2f29fd8598809c007f
f4143b66e46d558cdb3ece8abbe45774969078c8
0275052289528e4521ca57360ac80c02e85fd50fb9492c21dfce1c8a8407c5a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/global.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2294
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
103.112.245.8200 OK 7.6 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1518)
Hash 29fa40a22a17ec4ad3662699ca8a9e35
49eb53ec8441e7825ebf15bcde0cbd398b500054
c1f54649d3329ed21e8ddf95b0524654ec046704570abdec442268714c567455
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7553
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
103.112.245.8200 OK 2.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6875), with no line terminators
Hash f2bd7e399895d013c4e93845c0be19b9
a1fe0841205b550a4d41ae88bb92cc2e6bf9b76b
16db98ffe8ef5a8110299b5751ec58f377e6e420622d39f507f3c1f6c92a3fd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 04:21:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2220
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
103.112.245.8200 OK 3.4 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash c833e5d89f100bde8eff1946939061cb
220065fd9ca877811822887ddf476417ace3bc2c
e894dad546a9605e4a6a644e47b87ef7c0439a6a1695cba4672fa29342d50411
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/search.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Jan 2015 17:13:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3394
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
103.112.245.8200 OK 4.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 97c883c677574fa42cadf2fb5dc9ec8e
59d87b563be66e52a60de3f546e71fd13a268867
8011dda8c4364bc94801cd6fb8d01e26c399ba9455e7bdf7397bbe3653ccdb07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4254
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
103.112.245.8200 OK 4.0 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3998
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
103.112.245.8200 OK 4.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
103.112.245.8200 OK 6.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (45071), with no line terminators
Hash b49a55a386006a5b4f82d6d38dfeaf1c
e00c77f12015e197d9e45bb9de9c693400dc1a94
36f532fd3f6ee61ff393a264bdd97306f82c08e64b9087a99fec2afdde0c1db9
GET /wp-content/plugins/photo-gallery/css/styles.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6773
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
103.112.245.8200 OK 440 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (999), with no line terminators
Hash 7e0636eac344bd243faab84faf0c2e75
37644038940d000ba9496f5356cab0d71a760efc
bce5b2a964a77c6304d49f6dee21d34ab96d6856239fdc08a0bac6cf998380d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 440
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
103.112.245.8200 OK 8.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (25075)
Hash 21504d4151d84f4a776fca56a5caa442
a41463e5b623972952077f1cf602374e67621520
3eaa4b5f64cee76d631e4b0990294a8bc5af448139628485c4fde96f50f61b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8763
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6475), with no line terminators
Hash fd9569e5d4d99499e7712f61cd673089
96c465e0479831743968bdd243bd3bcbfaaa6e44
ea064fac3384ce935085b6a08a0b5379be3b747b3ce9ea87b6c9d41d1cd93f02
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2362
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
103.112.245.8200 OK 2.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7798717735ba8ccb8b11a9650e81f6e6
84c6a9d5d32905b98960d9dc9d111e48d486d311
fd6d9e22b1d26c2e6974198e43fd5aeb1ac03bab50c5bfcc7e12f07c74ec98fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2909
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (32561)
Hash 57815a83614a2848f4882e6e9e6e5aa3
ef2a56c0dc73bb65cd055a97e3a684d7778aa334
f41bc0a2cf64594c4320a4444959b41a63827e2dee943c2fc08d6f58fcdc4612
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 04:21:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11306
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
103.112.245.8200 OK 6.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 68ac7f65718f620d2a08c8dd44990aee
51864b639a094231cd78cde224b119cb920d7d11
cfb9e332da756003e32aaf8503cd187ac0307b74742742e38348fe783a655b14
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6352
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
103.112.245.8200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (32001)
Hash 3d483cdd677f67a09bd1508ee6d5d64f
2b35746e32b7cf2069f44e793b2303bed89b2f84
1cb39659ec11d6300d173c5a50150364c69fd1eca4d3641d1f5ba770e0a81d02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12374
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
103.112.245.8200 OK 16 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash cb96571a8a4b67fb4bf268234f5bf318
fec4550ca7eda671380162fc5615c0ab4fbee476
277aea95c9efacab03cae9176d7802e347048a4b6bbf6792dbb5352ba9e12413
GET /wp-content/plugins/jetpack/css/jetpack.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 15694
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
103.112.245.8200 OK 22 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65336)
Hash 64dc0c639c8f6d238e5291015ac36930
bddcbdd2865e18793691aebe6c4aadc70f22fdb3
09d327353291ce47759b6538d610b0d5cc7cf0e0e844dfb4b88c347d52623a1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/ilightbox.packed.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 Nov 2015 16:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22100
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/tie-scripts.js
103.112.245.8200 OK 23 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/tie-scripts.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (14222), with CRLF line terminators
Hash 842f622adee5eaa8df587a8b9cd85b6a
5fd42e411b08a3a5809232805b32347705f6277a
05af7a90fba0305089ced6f5c13fcc20ca7bde0521c85bc5d0a2c6a7bb71a5b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/tie-scripts.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Apr 2016 00:01:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22640
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
103.112.245.8200 OK 30 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65447)
Hash fb1aea2f7ce09f9d2e290d73d57defdf
62d40e64c8aeff20834868816d20d6a645fd2565
367cc15d582c7056695a307c1ef9b32a9e4810c16e33f27eac05909a1f57d4b4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 30350
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
103.112.245.8200 OK 31 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65536), with no line terminators
Hash f3bcf6f7a6c750ed17a8b733c272506e
de7ff1248c22dba492fe809466fb76053ad02be2
7cc165aaa8723a7ef2a09088b4bb30e629ad17b0043cfa7b20dcdc9a8ce94681
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 31324
content-type: application/javascript
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/style.css
103.112.245.8200 OK 34 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (28229), with CRLF line terminators
Hash bc9071737e3177bfe0789e5e6c158dd5
6da5372fd8d03077f8dfa5e85bb5f666144a293b
46bce56f07cd5ea1aff045732076780edd9305e0b455d5dd26fc50f8f76968d2
GET /wp-content/themes/sahifa/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jun 2016 15:05:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 34096
content-type: text/css
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
103.112.245.8200 OK 529 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 44f111e1c5932ca8e8146974739d1ed3
5602a46739f5450ee5ca0110c3fa12ec46affa08
c3854d2adc094760108453dbec7c3fcb2b315e5cc46da9bfbab2901882c358a5
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 529
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
103.112.245.8200 OK 574 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fed768e65e7e7c4d6cc343cc5fd8d1b
6c909d5d0c4fc7a4c9f13db439abb787e227fb0b
6ac8563bea8e15601f5e4fc011d56c9fd46a9301d7168229bc70a88cec2f3bdd
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 574
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
103.112.245.8200 OK 582 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fd5802ba72617db62905092af2a3bc17
feb55d519fc4038c794ec86f38529f516b1638fc
faebc963dfc07b96f7668f2cc4344020546924e2c9668f787d17f6954f5e9c90
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 582
content-type: image/png
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
103.112.245.8200 OK 716 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, baseline, precision 8, 1140x360, components 4\012- data
Size 716 kB (715788 bytes)
Hash 650a68fc60b7ce839f4cc613f2c01107
90b996f24ac6788c026782b22bdaecfc34d09307
b0f57c7041677a72960ed873d910a79f633c4b6bbc014fdb87fcb6328265c78f
GET /wp-content/uploads/2020/11/AA.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:38:44 GMT
accept-ranges: bytes
content-length: 715788
content-type: image/jpeg
date: Wed, 25 Jan 2023 03:00:03 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
103.112.245.8200 OK 21 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 264 x 264, 8-bit colormap, non-interlaced\012- data
Hash b40e39a8e3747e74f4dfcf6d88ecc535
17e825efe06f1d04a8a3c398329d51b0ddf14b53
7a6ac6e588a725241e6f43feaad46fb36de9682576f5f29c570edc3ec5247477
GET /wp-content/themes/sahifa/images/patterns/body-bg7.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jan 2015 19:28:34 GMT
accept-ranges: bytes
content-length: 21146
content-type: image/png
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
103.112.245.8200 OK 257 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1350], baseline, precision 8, 1350x1350, components 3\012- data
Size 257 kB (257360 bytes)
Hash fe694df042f2c4016f3081e36bf90483
8a930a3b5f974c9b55bd72b8557e607faa27e6c2
dffac83649a1dbf3c8e646fd28e86fd63b2f1810ad8de4c6085818ba338ef4d5
GET /wp-content/uploads/2020/11/Artboard-3hdpi.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/form-rencana-mengikuti-pelatihan/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:55:15 GMT
accept-ranges: bytes
content-length: 257360
content-type: image/jpeg
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
103.112.245.8200 OK 1.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 30 x 78, 8-bit colormap, non-interlaced\012- data
Hash 2ca35c0c6c0a17872bc7c6ef7fb1d6e5
6504abb26cf52c2250ea8e9c5645bb9439cefba9
6039cdb2c8028b73ddb9d711e7eb22834a8e11ba865283a7ed2fd2c75a401040
GET /wp-content/themes/sahifa/images/home.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Jan 2015 13:15:38 GMT
accept-ranges: bytes
content-length: 1022
content-type: image/png
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
103.112.245.8200 OK 72 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 May 2016 09:44:26 GMT
accept-ranges: bytes
content-length: 71896
vary: Accept-Encoding
content-type: font/woff2
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
103.112.245.8200 OK 93 B URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 12 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 51386a2f66885faebd7ce34fceee3c7f
d428fb21cb1c35bb8d1a579df9aa7034c62f8e61
23c79bb552706be2ca97bdb259921e3269a5263326b147676c2f7909a45b58c9
GET /wp-content/themes/sahifa/images/stripe.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Sep 2012 13:24:44 GMT
accept-ranges: bytes
content-length: 93
content-type: image/png
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
103.112.245.8200 OK 20 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format, CFF, length 19996, version 1.300\012- data
Hash 07db5c04835629ee7284a0481197443d
9f56f7e1b14b89828393aef3ff581a4a22320af0
e8c2e4d6ab0ad2f055a6cc3c777d31531e665758db5ca815f2613afad72f7088
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Feb 2015 20:13:40 GMT
accept-ranges: bytes
content-length: 19996
vary: Accept-Encoding
content-type: font/woff
date: Wed, 25 Jan 2023 03:00:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 01:41:08 GMT
expires: Wed, 25 Jan 2023 03:41:08 GMT
cache-control: public, max-age=7200
age: 4737
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.194200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (4879)
Hash cfe6f8513d1894cec2542f163f1f0fdf
acac43069898ed34e97672f853749689a9a326f4
0978474311c72e6bbb3658c0262020dd9e843e97abcd9c0a39f25aa9f3fc13fe
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 25 Jan 2023 03:00:05 GMT
expires: Wed, 25 Jan 2023 03:00:05 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14589185125748353091
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49704
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (636)
Size 164 kB (163892 bytes)
Hash f2995e9cc3eedf3359420fb8d714b2ca
bdc68875ff161b35dbe9d8d85241e41c862ec8e3
fbe663b4f0f239aca19a5a2720c2b494ac58a53e0d68288155eb772ae04935c1
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 15:41:18 GMT
expires: Wed, 24 Jan 2024 15:41:18 GMT
cache-control: public, max-age=31536000
age: 40727
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 34c6c87358e04f2487a4fcb466d2ad17
2e99bb20b81b80930471f736676e4dd3a093a9cd
db58d2601ad2308da96f8998b9b5e39c3c48b910c0f141230a757b9985b536fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230123/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230123/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230123/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 24 Jan 2023 08:46:27 GMT
expires: Tue, 07 Feb 2023 08:46:27 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 65619
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1e7d2367e887288960ca7c9463bb1c05
23fb7bef446cbe67c606595f2514f75e0c4c831a
a96d71bed38fd06770f4c48bbac812d33b78e25d21a597e203cc2864f04a2e3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 47d71bf163265666c21e2410fb568043
54a4b0f241af261f878967ce058f5885be476cc4
8b7ce4c8269941cf55ca12415b1abfd7d4ae7bf5823657f3afe5e8dd34bed80b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
216.58.207.226200 OK 258 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
IP 216.58.207.226:0
File type ASCII text, with very long lines (403), with no line terminators
Hash c931bbb769033aaff28eb5aa9791457b
aa8e24bbc3352c4fd6294c8e688da21754af2d21
37cd275279cb67570dae9dd93aa3649c045942dda6f64fad88299253fc0e855a
GET /gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 25 Jan 2023 03:00:06 GMT
server: cafe
cache-control: private
content-length: 258
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 21:48:03 GMT
expires: Fri, 19 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 450723
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 25 Jan 2023 03:00:06 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 25 Jan 2023 03:00:06 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1e7d2367e887288960ca7c9463bb1c05
23fb7bef446cbe67c606595f2514f75e0c4c831a
a96d71bed38fd06770f4c48bbac812d33b78e25d21a597e203cc2864f04a2e3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdded3d5e68d5358634880be3d3f2d04
6a02176ed7735b46393d51bd142e0deace6a5007
7077e5a7a6aeee95ad600ca2a943f7062f593e12fa61e74bbb860f6019bf67b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Last-Modified: Wed, 25 Jan 2023 02:03:15 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets.js
93.184.220.66200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1010
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 25 Jan 2023 03:00:06 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
connect.facebook.net/en/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 7597525a6b9fa1da5a9e5eaacf8ae987
0df49dcdb731fc7bfd1bb042ff8f60ce43d8a1ed
74d606497b82d7729f5be01b6ff7adde3b1f7f4d73e91917c1220033b9b88e12
GET /en/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9f91242d0f2f25488b9a8bc7fed70912
etag: "5382e1b58f80c5c55be4a9cbc303ca18"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 25 Jan 2023 03:06:12 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: dZdSWmufodpanl6qz4rphw==
x-fb-debug: Wxhs8yh/EtH9Pm4Us+6/rEI1kRCSV5t3G9/V4tJUE/bVk6WtfyUK7h5bpDqNKeXVu9IWNSsc+66hBDrYNMwYfg==
content-length: 1688
x-fb-trip-id: 1904183273
date: Wed, 25 Jan 2023 03:00:06 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 18c3f86789b38cc2e47d72efbf652d2a
1398387bb4fe0ba4521b1787660cdf8b191e912d
ea79a698ba6c9004fdaa5a9b06d07f2aa23c57b9e82f2dc741261b5e6e555529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
216.58.211.14200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (1429)
Hash f8971f3ad662af35a2ca6871f8c78482
35a0b814d6ecec8deacc9aea87ce9be62b15d92b
a438d380bab44504b1ff13673a0e041c6ac6645d03926e7f076465d1fe049765
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Wed, 25 Jan 2023 03:00:06 GMT
expires: Wed, 25 Jan 2023 03:00:06 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "76c8cfd92e8bfa3b"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Last-Modified: Wed, 25 Jan 2023 02:03:15 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 92904e34bbb167a9a6b1e7a052f3660a
3c76dd786c27c062f603e7c3fcab253e5d558368
f62dae5ccb09d738958b6af5418e5745b35cf3e80a312637c736cd1a97d772f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Faspphami-dki.or.id
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Faspphami-dki.or.id
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Faspphami-dki.or.id HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 19011
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 25 Jan 2023 03:00:06 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.193200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 25 Jan 2023 03:00:06 GMT
expires: Wed, 25 Jan 2023 03:00:06 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=6820fa856bd2df1a3c849642d6098730
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=6820fa856bd2df1a3c849642d6098730
IP 31.13.72.12:0
File type ASCII text, with very long lines (18734)
Hash e49179d794562f96788ec1616f35d217
9495311ab5917472af91d4d94ae9bb42fec181d5
29d42d240c4cba1e2b072720f6e73883add546f11445ba907438c448db5f14c1
GET /en_US/all.js?hash=6820fa856bd2df1a3c849642d6098730 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 94306ff1f30c35bdf5e66dedf17fab63
etag: "6caee7c8da9dd3ed4f042fd9ade7efd3"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 25 Jan 2024 02:43:39 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 5JF515RWL5Z4jsFhbzXSFw==
x-fb-debug: jDAt5jI2emlC5uZeQ3Q7nqJeptKD3ALjYnSeTZCmntnzKPezqc/2KPJqzID5apgQicsW+YSjTmbDkVSJXycmig==
content-length: 86783
x-fb-trip-id: 1904183273
date: Wed, 25 Jan 2023 03:00:06 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 6779a527d4ee6d7e971dcd9148ab3c40
0aa71b9b2c42c3fb288b402453c8a6081b446232
98398ce879abba1bd982edde8591fa879a95ddd8d8729fc522fcd50edc41474a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4063
Cache-Control: max-age=98042
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Etag: "63cf6751-13a"
Expires: Thu, 26 Jan 2023 06:14:08 GMT
Last-Modified: Tue, 24 Jan 2023 05:06:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e1ebc9a5915deca6b65f777a36af2a4
bda2dca64293f09c5cce058bab347db00bc6375d
63f87944d5c3249a86a0b71fb2108202e06a87a5365aff0c292be9acaea2de24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 03:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
log.pinterest.com/?type=pidget&guid=5qzznnwe04iu&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&viaSrc=canonical
151.101.192.84200 OK 0 B URL HTTP/2 log.pinterest.com/?type=pidget&guid=5qzznnwe04iu&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&viaSrc=canonical
IP 151.101.192.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?type=pidget&guid=5qzznnwe04iu&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 3
server: envoy
x-pinterest-rid: 1337274971130811
accept-ranges: bytes
date: Wed, 25 Jan 2023 03:00:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674615607.854895,VS0,VE45
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a
104.244.42.136200 OK 411 B URL HTTP/2 syndication.twitter.com/settings?session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (1207), with no line terminators
Hash 285d370732bbe1dc3c5afb4026ccb28b
d4148e9c7d90859edea00600a9a93840865bdbe7
52310fdb0e8050a612a8e82a61f875eadb7925e6d338b5292d0a516113754fb9
GET /settings?session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 03:00:06 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 25 Jan 2023 03:00:06 GMT
content-length: 411
content-encoding: gzip
x-transaction-id: b0151cb55a44992c
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 106
x-connection-hash: ede0c52cd3f40838d6eb6d0e012d12256d59785681d6fc66fdb37a1add083296
X-Firefox-Spdy: h2
platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
93.184.220.66200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7891), with no line terminators
Hash 50af2557985d9ae5ef0bb111a4066237
b164d515f502d950df3ba208cc32bbe74e70d3d2
a3b6dbbc4e57c65eb23f84b312095c86a69ff47fc57fc745f464394158bda9af
GET /js/button.e7f9415a2e000feaab02c86dd5802747.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 19009
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Wed, 25 Jan 2023 03:00:07 GMT
Etag: "506673dbdb9085e7201e137e893cc152+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:06 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2618
www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1584f39a352e2a%26domain%3Daspphami-dki.or.id%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Faspphami-dki.or.id%252Ff29e4583a5bde4a%26relation%3Dparent.parent&container_width=106&href=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&layout=button_count&locale=en_US&sdk=joey&send=false&show_faces=false&width=90
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1584f39a352e2a%26domain%3Daspphami-dki.or.id%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Faspphami-dki.or.id%252Ff29e4583a5bde4a%26relation%3Dparent.parent&container_width=106&href=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&layout=button_count&locale=en_US&sdk=joey&send=false&show_faces=false&width=90
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1584f39a352e2a%26domain%3Daspphami-dki.or.id%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Faspphami-dki.or.id%252Ff29e4583a5bde4a%26relation%3Dparent.parent&container_width=106&href=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&layout=button_count&locale=en_US&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: kp3xoz+dV7CBEZx/xqCh495EdW6+osu2mfno0bGGBxVpa5VcrrNavJ2haIEgunF2JfVOaUy6CmGPJvShOBjuyw==
content-length: 0
date: Wed, 25 Jan 2023 03:00:06 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32037)
Hash 59524bd7f5584433bb77a21f1431db47
5be6f11aa7a378e597235668f5ec6819e9722c9a
80c4c77841bb8b9c561fb0ed2816c1e32288fda1178130d920b6830f287a9fea
GET /widgets/tweet_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 19007
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 25 Jan 2023 03:00:07 GMT
Etag: "28919252629e2fa1d4ed52f48cb66ac0+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:10 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13592
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.131200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 22:24:54 GMT
expires: Sun, 21 Jan 2024 22:24:54 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 21 Jan 2023 03:10:05 GMT
content-type: text/javascript
age: 275713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674615605307%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a
104.244.42.136200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674615605307%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a
IP 104.244.42.136:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674615605307%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=b0ab657c9d397ebc259cea6f57d4bf349927166a HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 03:00:07 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 25 Jan 2023 03:00:07 GMT
content-length: 43
x-transaction-id: cf5cbf2b057289df
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: ede0c52cd3f40838d6eb6d0e012d12256d59785681d6fc66fdb37a1add083296
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 756 B URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 118f4aa5df75ca98c7e06b07ee64646f
3211457f6addab16236baab27a0e3a78b522482d
fd654663c0e4302ff28a11f8c4465942b9dec7279aa4f2a2c72ec8aa9be3229f
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 03:00:07 GMT
content-type: image/webp
content-length: 756
last-modified: Wed, 25 Jan 2023 03:00:07 GMT
expires: Fri, 24 Jan 2025 15:00:07 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cba70fdb140d6ec8"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 987da7c7dd69f6f24c4ee56f2624da00
191d2b68e49b0d05619116c073280a71514fe005
46c51c5b9f40f44dc0989d595caf8a2de02cc02acf78b3803d8a371997eb8208
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 03:00:07 GMT
content-type: image/webp
content-length: 12872
last-modified: Wed, 25 Jan 2023 03:00:07 GMT
expires: Fri, 24 Jan 2025 15:00:07 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "53a69e04a96c7951"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
IP 142.250.74.106:0
GET /css?family=Droid+Sans%3Aregular%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 25 Jan 2023 03:00:04 GMT
date: Wed, 25 Jan 2023 03:00:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Faspphami-dki.or.id&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
142.250.74.45200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Faspphami-dki.or.id&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 142.250.74.45:0
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Faspphami-dki.or.id&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 25 Jan 2023 03:00:07 GMT
content-security-policy: script-src 'nonce-LD88b_p0hBk3x3gjqNk-fg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 25 Jan 2023 03:00:04 GMT
date: Wed, 25 Jan 2023 03:00:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&callback=PIN_1674615604019.f.callback[0]
151.101.192.84200 OK 0 B URL HTTP/2 widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&callback=PIN_1674615604019.f.callback[0]
IP 151.101.192.84:0
GET /v1/urls/count.json?url=https%3A%2F%2Faspphami-dki.or.id%2Fform-rencana-mengikuti-pelatihan%2F&callback=PIN_1674615604019.f.callback[0] HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Wed, 25 Jan 2023 03:15:05 GMT
x-envoy-upstream-service-time: 4
x-pinterest-rid: 9079930291743185
date: Wed, 25 Jan 2023 03:00:06 GMT
age: 0
content-encoding: br
vary: accept-encoding
accept-ranges: none
X-Firefox-Spdy: h2