r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3387
Expires: Tue, 17 Jan 2023 04:52:47 GMT
Date: Tue, 17 Jan 2023 03:56:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6609
Expires: Tue, 17 Jan 2023 05:46:29 GMT
Date: Tue, 17 Jan 2023 03:56:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 03:42:15 GMT
content-type: application/json
age: 845
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Tue, 17 Jan 2023 05:21:20 GMT
Date: Tue, 17 Jan 2023 03:56:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iijivU49/XYmrXYRxYSG2jtTedXVDjbJ2DUp53O0qSE/cQa1SiWT4sjVSii9WspPu3u322Kal4Q=
x-amz-request-id: 46PK7NFEKZ3TC6JG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 03:44:51 GMT
age: 689
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
aspphami-dki.or.id/category/berita-terkini/page/3
103.112.245.8301 Moved Permanently 265 B URL HTTP/1.1 aspphami-dki.or.id/category/berita-terkini/page/3
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 65972df40bdcafa7730934113db6669a
31ff5c60958f7aba989d311635765041dc043bf2
ed60837141ad52fe5bb34d30927fc883970a6efce22482521688e0d1be6d8eec
Analyzer Verdict Alert fortinet Malware
GET /category/berita-terkini/page/3 HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 17 Jan 2023 03:56:19 GMT
Server: Apache
Location: https://aspphami-dki.or.id/category/berita-terkini/page/3
Content-Length: 265
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:20 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 03:17:25 GMT
age: 2336
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d03545e1fc5a8876441094039811aac5
99fcc840f3516298625c528e9b408132f7fcbb9c
166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 706
Cache-Control: max-age=105738
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:21 GMT
Etag: "63c513ad-1d7"
Expires: Wed, 18 Jan 2023 09:18:39 GMT
Last-Modified: Mon, 16 Jan 2023 09:06:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.10.36.158101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.36.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4TbVLID17QKzCL2F1hmvMw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dhQV78bjYpMVjXRmORk53tTxkHA=
aspphami-dki.or.id/category/berita-terkini/page/3
103.112.245.8301 Moved Permanently 1 B URL HTTP/2 aspphami-dki.or.id/category/berita-terkini/page/3
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Malware
GET /category/berita-terkini/page/3 HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
x-redirect-by: WordPress
location: https://aspphami-dki.or.id/category/berita-terkini/page/3/
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Tue, 17 Jan 2023 03:56:20 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10636
Expires: Tue, 17 Jan 2023 06:53:38 GMT
Date: Tue, 17 Jan 2023 03:56:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10636
Expires: Tue, 17 Jan 2023 06:53:38 GMT
Date: Tue, 17 Jan 2023 03:56:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10636
Expires: Tue, 17 Jan 2023 06:53:38 GMT
Date: Tue, 17 Jan 2023 03:56:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10636
Expires: Tue, 17 Jan 2023 06:53:38 GMT
Date: Tue, 17 Jan 2023 03:56:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8077a04cfa8a88823a83c3481fe33eb
534966ca691706e724af5a9891859e1ee3c10b78
b8df497111b6e7876f53bd2433d9a0c5153f8b84b1ccd91dc5eb9bfdbe4579aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36b86ae5-6ee8-42e7-bcb0-c54e39e4fbd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4736
x-amzn-requestid: 4f03413a-fd17-4b48-ba36-e1580ee5c19a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm-HLroAMFTMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f9-08fc93b860c346db68f4a83c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hr9MJmIisVsbZYgHhEMd6plnerrtoQ_Hvwf7xWfQDjHqocVoXlSoFA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:50 GMT
age: 22172
etag: "534966ca691706e724af5a9891859e1ee3c10b78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f4b6ad-4bfa-468c-ac97-628f5ed79b68.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f4b6ad-4bfa-468c-ac97-628f5ed79b68.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7558650f7e974b34a7b3cb0c3c3a310c
7adb15e8c38cb18b57a696f8c1f08c523e1137e4
3179a4c545337e9a32d4f1ab851a3ec30ee16b44014c127630e1efcbf77e0c29
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0f4b6ad-4bfa-468c-ac97-628f5ed79b68.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10592
x-amzn-requestid: 7cb5c56a-324a-4eef-b2d0-63e151ae2920
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlLyEhToAMF34Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21be4-7b48a8de0c2957dc329af0e0;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:05:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U4yiXXjOtTAxXIINAt6tIZGqsp1XPD2TMvcDPG_daMfEZ3Cf6fNKDw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 08:25:07 GMT
age: 70275
etag: "7adb15e8c38cb18b57a696f8c1f08c523e1137e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11978fd8515619467879303c76a11092
178546ab6c6779129e49f2a7bd80560cf08fbf7c
3f4bd577a740e0b2fcfb38ba4edd72cef3d2a8da7b5949eef33b2c04d417dca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a57f270-98a9-442f-9239-76f1b01be9ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9186
x-amzn-requestid: 4b5ea40c-6349-4748-9263-0770f7bc63f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tAVH7iIAMFj_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c201-54b832f14fbf83d03590bbeb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:30:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DYSmK9zy0k8OJAOLaY7FH_FTmEdJBFp7wDZEct8h7XDvyKpyariTZw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:51:54 GMT
etag: "178546ab6c6779129e49f2a7bd80560cf08fbf7c"
content-type: image/jpeg
age: 21868
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe32b9b2c-d57e-40ba-bdaa-0cad85d59f33.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe32b9b2c-d57e-40ba-bdaa-0cad85d59f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e29bab4151d6c143d3cf16e7a34b0390
38f5261653926d95074fa5550af5d77a25ebd74e
84bbdf1850d2d76ebb06c7a84446e4723e62a9d9b8e459ec6b833e5892ef66fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe32b9b2c-d57e-40ba-bdaa-0cad85d59f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8488
x-amzn-requestid: 5e260260-bd4b-44a5-919a-a6085a057c0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1xkHSiIAMF9zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1033d-2e4e00dd43f10f0e0a3e0ac4;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:07:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CUYQrmGPsmYN1xGmZWAjnFLQ1N2Fq4o0NxBX93DG0JR8l-iIqDy3-w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 10:02:58 GMT
age: 64404
etag: "38f5261653926d95074fa5550af5d77a25ebd74e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcaf94e244d0b492c26d4964836f4913
fde259440056930606a16b88e6d87e2edc420bd6
6cc207b89ceda6a27a0c9905a3284044984af07cdf5eb91a84b93bc56e414806
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F385b83d3-24b4-4a2f-b857-c5ad36c6c6f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3027
x-amzn-requestid: 9599f603-0ef7-40c7-aa0e-699a82057dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tr0GvUoAMFfmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c318-3d11e6404c85fcb737852aaf;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9U7jKrDbganO37QtU-I_g8A9G3XEHtsj-z6s0UF419IdEj_Zw1-uw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
etag: "fde259440056930606a16b88e6d87e2edc420bd6"
content-type: image/jpeg
age: 22207
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5d0a29e6fe3ce0fb4a9237dd5917778
6919dcbbcdcc241672358cc5733ef064180c928a
6d0d71c35e1ca331ee5f4794bc74747f7c38f2d46863d983377bef526f7ca356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4757d4fe-f057-41bb-b2e2-4ed4877c7af4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7873
x-amzn-requestid: 8a2a267d-8062-4755-8b1d-1e715ee9c413
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exco-GL0oAMF-uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a7d2-567e30c7063b71217f8175fc;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:14:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pmqzTZ1Nuqtw5aryFNr3vcfUpQGBs0PxAW2Eu2NE82Q37Die5cgpbw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 07:23:06 GMT
age: 73996
etag: "6919dcbbcdcc241672358cc5733ef064180c928a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-156598198-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-156598198-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash c3f560c92320a6de7e64f528b8ef80b4
fbb8ba590d44fe6f69a4e6563aade210076d7f7f
0fb33766f5c42facab62ced7a65569e5d048af4b65c8732af55fb896d185fff2
GET /gtag/js?id=UA-156598198-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Jan 2023 03:56:23 GMT
expires: Tue, 17 Jan 2023 03:56:23 GMT
cache-control: private, max-age=900
last-modified: Tue, 17 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44175
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/category/berita-terkini/page/3/
103.112.245.8200 OK 16 kB URL HTTP/2 aspphami-dki.or.id/category/berita-terkini/page/3/
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash d1e5f0fac849968595acc51ac1b97ba8
e96b81838e19eca2f24dfca8ecf8247ffb83d4fa
56ae3e5ba20a7afac5cfa9c02f5b72b7cfd8e1f86bf03d96787493eb0f7deb7a
Analyzer Verdict Alert fortinet Malware
GET /category/berita-terkini/page/3/ HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://aspphami-dki.or.id/wp-json/>; rel="https://api.w.org/", <https://aspphami-dki.or.id/wp-json/wp/v2/categories/24>; rel="alternate"; type="application/json"
vary: Accept-Encoding
content-encoding: br
content-length: 16500
content-type: text/html; charset=UTF-8
date: Tue, 17 Jan 2023 03:56:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1b2e51abfd12507b00ebd8b7afda6308
4d3d5fa49e007714dd37da7da25d9d490d05bd0a
85a04d4cf987fcc2d087ab815a8d373e164a2adf2bf478e7a5c1fae3e109ba26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
103.112.245.8200 OK 982 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 Dec 2019 03:16:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 982
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
103.112.245.8200 OK 5.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash 9e633602430a663f8926961867113857
b6cf5032ef6298fc65f80dd12b400f8df0a0209c
bc88243f60f54ce421990014ea88164f08706ccc921a2f52a0c7f5fb622a090c
GET /wp-content/plugins/instanow/assets/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2016 02:31:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5013
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
103.112.245.8200 OK 789 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2e74e7d05f5c8bdbf544b9b73fe6c887
9c200d7eab4781440a5e644344db58d2d2848f76
6f69ba3b2c3665833fc4675b4aca695ace2ec28bc952522133488d087a462948
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 789
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
103.112.245.8200 OK 870 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 6e1861555b0cc8895850f17c5b68b361
9f6efdec40c3b2ed701b188d2373947617c93430
b7f19ee462c0657acde75e1e2230913b5baa2b101a1a3c49b48d08b1a8a6bcd2
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 870
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
103.112.245.8200 OK 3.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 4a059b9209f7a198387e0a8dc32ffb97
cc11280a0b39cbdaaf823ef484ae132fc402ed42
70d70d0c99dc35188661c8d1c2a4809b7a5ebe63b99f99b864843ca3ee18d4d0
GET /wp-content/plugins/photo-gallery/booster/assets/css/global.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3211
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2397
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6b70b334388cc7c3c2afbf53572e9dca
c4c5b6f3cf3dc8b3cbadcb45fd578ecfcb406eb1
d231560628e5028fb74b132e6de1562cecbc1fc4ab4fc96c8fce638beb8ddbc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
103.112.245.8200 OK 1.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (7609)
Hash 33ae2e7fc9cebb668a16d69092d392d8
ad12ad8658c221f932d53063c6028bf2eeaaae83
a1ec326b7faed25b94c819aff4fe7cc60cffa81147e3faf7f3d957d411bb0486
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1900
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
103.112.245.8200 OK 6.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (45071), with no line terminators
Hash b49a55a386006a5b4f82d6d38dfeaf1c
e00c77f12015e197d9e45bb9de9c693400dc1a94
36f532fd3f6ee61ff393a264bdd97306f82c08e64b9087a99fec2afdde0c1db9
GET /wp-content/plugins/photo-gallery/css/styles.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6773
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (42839), with no line terminators
Hash 72f91a39c592f153826943c0c812f844
7ab17a04ea2c455f85db2e016ebc57ba706074c8
726d33d3d04e52f2eba62692c6e4f38e93d54f4e53e365b586c26f1adbd0f8a3
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3812
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
216.58.211.4200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
IP 216.58.211.4:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 63c6041986af1bcf58b7a868a806e40b
53570c7896438435ba6009f8a73225aca3923fc9
6619956ab718c185e74dc769d439e6010bbef423457bbead05a6032012a476e8
GET /recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 17 Jan 2023 03:56:24 GMT
date: Tue, 17 Jan 2023 03:56:24 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
142.250.74.106200 OK 908 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
IP 142.250.74.106:0
Size 908 kB (907634 bytes)
Hash 17a30194a8980fcd7c09023347c161f9
4966f7686ffcd57af8a03d14bd2f8a425ee91201
644441d395f8cbe7aa29cb53d00aef2f1e0d573c6696c9220e3ec641c2007bfe
GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Jan 2023 03:56:23 GMT
date: Tue, 17 Jan 2023 03:56:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a0c99efce2ba7294ef4b88e9810c411
90e325963c1355d4c2ab6500689850a2df4c419f
957f138460650b9cecf197fb62ec2b92fae42eb5d9d431a348f8f518470612c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 10912
content-type: text/css
date: Tue, 17 Jan 2023 03:56:22 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
103.112.245.8200 OK 502 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 66df1809892b38c8a174c0519603a123
1b338320ff6f8a3cc6d29e25c050ac83c008b469
4b0dbfb22a8a76f9e2c22e90c3c4421cde7162ae85cdd31d8158380eace939b4
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 502
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
103.112.245.8200 OK 315 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (685), with no line terminators
Hash 90b6ed98e867cd14bff93b31e7f0af82
cc2162190788e5d8579eb5844f8ef1f12fe2a69a
8ccc3f277c5d05f7e8aa933156fcf66282133edd7e47d3774d68366bfd4a2a99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 315
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.css?minify=false
103.112.245.8200 OK 1.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.css?minify=false
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (9441), with no line terminators
Hash a1ebfacaf28777b65bcfdb7a234a3d57
0b2598f7735f1eed978c3499e2db136f6dbedd52
0ac30acd60afa79cd3b15ab244c9cb263ab3457c8033a64622ba2dc05e235127
GET /wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.css?minify=false HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:52:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1046
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
103.112.245.8200 OK 518 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 021741aa747d0db9d753f32961540b95
eb447414c4f94fbea94bfb31d5e9c8f3288956c1
a2ac6f3cfa2026b19afb6862bc5802968c2b3a49c29cf5024469208524ac7962
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 518
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
103.112.245.8200 OK 582 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fd5802ba72617db62905092af2a3bc17
feb55d519fc4038c794ec86f38529f516b1638fc
faebc963dfc07b96f7668f2cc4344020546924e2c9668f787d17f6954f5e9c90
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 582
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 86c88c2ae0f2078c796de58f4774c24b
e83cbc82353c42126c10b09399870d227e66e55b
16276db5107db00d233ab72be0659d90c529d3d79e4ee37592d0a2247d35340e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 333edf623cd4e8fc45019e8bcb808dfc
92971051833dda021e183d034929a3183ad00815
a43bcc3e490158ad2afefe405d315169d3ea6688ce7a054de33c9cd786c0925e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
103.112.245.8200 OK 617 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ff2099d576b1be945c004603978a74e6
3c931f15a21f981cb075faef1521db0ac8f6681a
d0e2093c728340a03f4b352b75ddb1dd92ea1b4029e6d317a5608c3abd61518a
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 617
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/0.gif
103.112.245.8200 OK 400 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/0.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 46e624c3b570195c2671fd39af7d4163
cb52287d16ea014a911025138d83d2dfb5d1fdb3
42c0276dfeb0383cba1ace6a668b6d5f261d1df1bf44b3c8c52cd764ed1f4963
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/0.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 400
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
103.112.245.8200 OK 399 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 895ac18afe3f1131c4c20aa6c8f30b79
ade54f548b21ffaaac4d31acd0ee1bbf044757bc
e27bf21a7727b4ed8780b743a7ef0021b5c378ae3c6f1e5d920cbcb8f13aeb7f
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 399
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
103.112.245.8200 OK 2.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7798717735ba8ccb8b11a9650e81f6e6
84c6a9d5d32905b98960d9dc9d111e48d486d311
fd6d9e22b1d26c2e6974198e43fd5aeb1ac03bab50c5bfcc7e12f07c74ec98fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2909
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
103.112.245.8200 OK 432 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d0a4de6c6ec8b1e0af3a869e6326b92
b9887a6963d5374f192e4c7ba57d1bf47f793e8e
d3282d528c0ad954cc592f0f2101db95c2df821b7d963c225b51c2666c55e029
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 432
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
103.112.245.8200 OK 196 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 573c3f5acc1e799e59c6a9895cf2d84f
f6bf177d896025c716535154f239ef2f7acc8802
47c06ad2fbb3b5d7c389c5b2439b8f35a718d0ad5e251603b84fff8410701302
GET /wp-content/plugins/mechanic-visitor-counter/styles/css/default.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 196
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
103.112.245.8200 OK 1.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 6bb522141185cacc5528778100681577
77cc2f1066c18b91fabb17d0c38fa6d06b923853
155871907ba4d22e117d839d7130e9ce47717ada12e094f9b24627ed41a23469
GET /wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Oct 2013 13:21:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1196
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/slideshow/view.css?minify=false
103.112.245.8200 OK 1.7 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/slideshow/view.css?minify=false
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11222), with no line terminators
Hash 669e68b953587ff654ecb9440dbeedb9
1ba59b5f874ed2a671e8b9adfed47ca6c8de66c2
1c9ea188454d994bdc1a67c36f0005abce89b026d5d2f419c51f1e1e9ae89a52
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/blocks/slideshow/view.css?minify=false HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:52:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1665
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6475), with no line terminators
Hash fd9569e5d4d99499e7712f61cd673089
96c465e0479831743968bdd243bd3bcbfaaa6e44
ea064fac3384ce935085b6a08a0b5379be3b747b3ce9ea87b6c9d41d1cd93f02
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2362
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
103.112.245.8200 OK 2.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 14c0c8f6e08d1adef360e265482a157f
a27ef5bacbac54593bd9ba068862a4f6def26780
6a8feab74d7a9f9b0022d7bff80eaaf9c17b8fdfcadfc3ba347d10e8ce7618d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2020
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
103.112.245.8200 OK 2.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6875), with no line terminators
Hash f2bd7e399895d013c4e93845c0be19b9
a1fe0841205b550a4d41ae88bb92cc2e6bf9b76b
16db98ffe8ef5a8110299b5751ec58f377e6e420622d39f507f3c1f6c92a3fd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 18:06:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2220
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
103.112.245.8200 OK 2.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 62fd26ba0f3afd2f29fd8598809c007f
f4143b66e46d558cdb3ece8abbe45774969078c8
0275052289528e4521ca57360ac80c02e85fd50fb9492c21dfce1c8a8407c5a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/global.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2294
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 40b936bde2f3a58b2499ab9a1c7ccdfd
2bc9295868aa1c9947cd31af26fdb340b020952c
9ed392f0abb8511f0bbb4b7c6ca5e44b3ba4ef5384a92cd5fb4dbfc58aec909a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3834
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
103.112.245.8200 OK 4.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
103.112.245.8200 OK 4.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 97c883c677574fa42cadf2fb5dc9ec8e
59d87b563be66e52a60de3f546e71fd13a268867
8011dda8c4364bc94801cd6fb8d01e26c399ba9455e7bdf7397bbe3653ccdb07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4254
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
103.112.245.8200 OK 4.0 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3998
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
103.112.245.8200 OK 6.9 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 4a34d3eeefdfb2b1a548f75ecb99db19
a8f92fe0c33c92570728caf600747febfe2c606f
17c9f16c33e87b7d28f051b238b2142c3cde1de2660e1cbe0942c4f4c524e9c4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6896
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
103.112.245.8200 OK 7.6 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1518)
Hash 29fa40a22a17ec4ad3662699ca8a9e35
49eb53ec8441e7825ebf15bcde0cbd398b500054
c1f54649d3329ed21e8ddf95b0524654ec046704570abdec442268714c567455
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7553
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
103.112.245.8200 OK 8.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (25075)
Hash 21504d4151d84f4a776fca56a5caa442
a41463e5b623972952077f1cf602374e67621520
3eaa4b5f64cee76d631e4b0990294a8bc5af448139628485c4fde96f50f61b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8763
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (32404)
Hash 5a58c16103378675ff8a7775a553598f
55c7e777b687b60a7f9594d2904a6ccc203eee16
1a4b25da7e2fc6c4806627b9e7feb1820ad4e37efcb843f5290d01b7460a9e0f
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Dec 2022 18:06:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11282
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
103.112.245.8200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (32001)
Hash 3d483cdd677f67a09bd1508ee6d5d64f
2b35746e32b7cf2069f44e793b2303bed89b2f84
1cb39659ec11d6300d173c5a50150364c69fd1eca4d3641d1f5ba770e0a81d02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12374
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/block-serialization-default-parser.min.js
103.112.245.8200 OK 1.1 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/block-serialization-default-parser.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type exported SGML document, ASCII text, with very long lines (2402)
Hash afc5de91cc04276a0080a65ab6827e1b
1cefe803610781466b5a3682d6cec4bbad6ac68b
0852cbbfc4e43ed4bfc992d159aaded9ed0e59773bfd0c5dd5a5f7fd5f7d4d3b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/block-serialization-default-parser.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1061
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
103.112.245.8200 OK 16 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash cb96571a8a4b67fb4bf268234f5bf318
fec4550ca7eda671380162fc5615c0ab4fbee476
277aea95c9efacab03cae9176d7802e347048a4b6bbf6792dbb5352ba9e12413
GET /wp-content/plugins/jetpack/css/jetpack.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 15694
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
142.250.74.106200 OK 23 kB URL HTTP/2 fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
IP 142.250.74.106:0
Hash 4c195fae3cc89c084b2660886314ffc7
99e2a4acdb34092a862ccddaf225ef9d6480fdc5
f9888ce86a970a7cc6c17f2c679130d2ff3c5e5103a53c39448510f6eb4f8727
GET /css?family=Droid+Sans%3Aregular%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Jan 2023 03:56:23 GMT
date: Tue, 17 Jan 2023 03:56:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
103.112.245.8200 OK 22 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65336)
Hash 64dc0c639c8f6d238e5291015ac36930
bddcbdd2865e18793691aebe6c4aadc70f22fdb3
09d327353291ce47759b6538d610b0d5cc7cf0e0e844dfb4b88c347d52623a1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/ilightbox.packed.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 Nov 2015 16:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22100
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/blob.min.js
103.112.245.8200 OK 447 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/blob.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (917)
Hash 44f0de6ee850a17af691a779cd99d7dc
53d808e56184d2bf505b8b0f70c613f9d8efd4aa
f102f0009ff39b3508efc82471aff1510da494bb5e4153fac7987d121878c085
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/blob.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 447
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/deprecated.min.js
103.112.245.8200 OK 465 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/deprecated.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (777)
Hash f9fe4d13a37e68ee5c4f4cef4d30887b
c45dd6579f1d764d7630935eb9d711ea7e6f7be0
dbd9c783bd76281d0e164a380fd8bc082d69074e1faffdd98e714967b140ba78
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/deprecated.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 465
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/dom-ready.min.js
103.112.245.8200 OK 282 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/dom-ready.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (463)
Hash 026c156883a22d7336abc0da5b349dea
1003dc933aac055602017a46b0e95b6ca3da0cb7
b73c16c488f7d397f0741236d8f8524733f79ef6ec293e9fbb9ff5f986342811
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/dom-ready.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 282
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
103.112.245.8200 OK 529 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 44f111e1c5932ca8e8146974739d1ed3
5602a46739f5450ee5ca0110c3fa12ec46affa08
c3854d2adc094760108453dbec7c3fcb2b315e5cc46da9bfbab2901882c358a5
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 529
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
103.112.245.8200 OK 30 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 Aug 2021 04:12:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 30310
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/a11y.min.js
103.112.245.8200 OK 858 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/a11y.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 58a82ef576c88e44159f79a1f5e8c64d
5cf20b9366f043e2e3f8957f4f8e0fec1b6f2e5c
a9979a3e72b47bd9f2258077195a0a3f930f443fd35dc6dca992d7dba94f599a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/a11y.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 858
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
103.112.245.8200 OK 440 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (999), with no line terminators
Hash 7e0636eac344bd243faab84faf0c2e75
37644038940d000ba9496f5356cab0d71a760efc
bce5b2a964a77c6304d49f6dee21d34ab96d6856239fdc08a0bac6cf998380d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 440
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
103.112.245.8200 OK 31 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65536), with no line terminators
Hash f3bcf6f7a6c750ed17a8b733c272506e
de7ff1248c22dba492fe809466fb76053ad02be2
7cc165aaa8723a7ef2a09088b4bb30e629ad17b0043cfa7b20dcdc9a8ce94681
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 31324
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/style.css
103.112.245.8200 OK 34 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (28229), with CRLF line terminators
Hash bc9071737e3177bfe0789e5e6c158dd5
6da5372fd8d03077f8dfa5e85bb5f666144a293b
46bce56f07cd5ea1aff045732076780edd9305e0b455d5dd26fc50f8f76968d2
GET /wp-content/themes/sahifa/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jun 2016 15:05:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 34096
content-type: text/css
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
103.112.245.8200 OK 524 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 08c025d62551b0cf35d2c64cc5753b10
57cd72e034313cc1f938ae8a6aeb4c6bb562de82
ebbfebd338bf0ceb669e711b4087120f4582b473429267cfdd1d63700fc81946
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 524
content-type: image/gif
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
103.112.245.8200 OK 574 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fed768e65e7e7c4d6cc343cc5fd8d1b
6c909d5d0c4fc7a4c9f13db439abb787e227fb0b
6ac8563bea8e15601f5e4fc011d56c9fd46a9301d7168229bc70a88cec2f3bdd
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 574
content-type: image/png
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/hooks.min.js
103.112.245.8200 OK 1.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/hooks.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4875)
Hash 6e77b1bf3e2473915b3befb8026b84d1
15f7b7013aa1fb46a8bcc054b13586e9442d69d4
93137953eda434f31a656affa88fbc035ea8780eee3ed3b5636fcc2194ca96a7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1574
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/api-fetch.min.js
103.112.245.8200 OK 2.1 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/api-fetch.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (5290)
Hash ea8f7d8c0aa8669ee905ffa05eafad25
8b7f8f4ebe7f57e549e02187ad7657374840853f
c6fba9852299cf771c97f67ba6bcfed0460b42615a7ae5102df5adfa7d24e6fd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/api-fetch.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2149
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/url.min.js
103.112.245.8200 OK 1.9 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/url.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (4852)
Hash 5b710adbcf5da03948ab4b2126588a8a
9db1af0e2da82dba1f0edf55924ab86400e1b046
59ee5c4c7c9721c59f3731c70f5e73a1a9cf23c065aeb2b6c10fe4a2b09d9d3c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/url.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1905
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/i18n.min.js
103.112.245.8200 OK 3.7 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/i18n.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 1ae38a03637361e2f10a5bcd6a885267
f78c413e7e700ad300fec65ccec7b836121d312b
91fb7d71e8a882cb7c0b1e804808106cd0832b4355e652e3e6c47e8bb92fdade
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3720
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
103.112.245.8200 OK 3.4 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash c833e5d89f100bde8eff1946939061cb
220065fd9ca877811822887ddf476417ace3bc2c
e894dad546a9605e4a6a644e47b87ef7c0439a6a1695cba4672fa29342d50411
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/search.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Jan 2015 17:13:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3394
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/react.min.js
103.112.245.8200 OK 4.3 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/react.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11082)
Hash 3c82b1031c942bff41a591c3f2d71729
1c6de183dbec0cb91927ce792db8805ee55214a4
cf872e5a28736346719da8d73e91c873afec0c13e3e4fa3cd22ae18df89de57d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/react.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4287
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/lodash.min.js
103.112.245.8200 OK 24 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/lodash.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (65004)
Hash 9b12b651a8ea8147f55a960b72198884
bebcbbe3585c8072d40a048db76ec8c016766fef
7175fb2d5723493fe43d928dbfe5e926fafadd71409f01249a7cb547d2578634
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/lodash.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 24157
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/react-dom.min.js
103.112.245.8200 OK 37 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/react-dom.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65290)
Hash 908078c8c662602bd630382c63c224ce
feeee7bc9e0e267c45e05a5541ca6175927d8676
6cee5c27c65c0f6cac762f1a5ae45acbcc061f435e801bbaa35e1a9f5c342d02
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/react-dom.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 36924
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/wordcount.min.js
103.112.245.8200 OK 981 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/wordcount.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type exported SGML document, Unicode text, UTF-8 text, with very long lines (2578)
Hash 10810725b8593ca6d227ab57b85213d7
b7d760a301e7fe88002ba216c83801b4e64aafa9
e9535f786ff9900c4e99b56cabd90e99843925ad754e7ed58e52e8027adedebf
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/wordcount.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 981
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/notices.min.js
103.112.245.8200 OK 890 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/notices.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (2364)
Hash af5ad0d696afb75ee3a91b6e8d81d2ac
f0123a5655f0412339bd02807e549372d56887c4
f8fb283d2b77b3295aa23a764709ffcd94f767d93b77128f76c15cce246cd294
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/notices.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 890
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/token-list.min.js
103.112.245.8200 OK 595 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/token-list.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1491)
Hash 4d5652c58b113ea8d87c75014a42a334
59a1111239837e4e986da1d41c604b3404c79da5
81eb9500888939dd6a14fc36c90444e0499f011ab7296649f79ca89a7571b4b4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/token-list.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 595
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/escape-html.min.js
103.112.245.8200 OK 494 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/escape-html.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1104)
Hash 4ede4172fddea2f36679857d9ee13056
1ff6c4bfeb725a5fcb5f4142e25c86d2f2adc2f9
af02211692f2b05b58141de6d3bd4b5ed772735779058cbcc43094f02e5e64be
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/escape-html.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 494
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/keycodes.min.js
103.112.245.8200 OK 1.3 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/keycodes.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (3126)
Hash 4f7adca3bfb921b0132215e475ab0ead
5375f7cb6b4c531a0d7076840e74d06850c17415
e414c27b8900f5435618a9abb11b237c76d773b525fc2641cc993762a20fc334
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/keycodes.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1258
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/primitives.min.js
103.112.245.8200 OK 962 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/primitives.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (2153)
Hash c3bd5f3f877c39259d84a2514de2f588
aeb892ba85487387d3bcdf93e53d6bab465fa7ae
b5a9542353bd9aca130bd5646018b0c98897e0bfcf3a14d190fcac96d95a2145
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/primitives.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 962
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/html-entities.min.js
103.112.245.8200 OK 394 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/html-entities.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (802)
Hash 7276d9bd59562618ce88db5a67c8a74c
8dd69809d9533598f120b229ee94b4fa342c9154
94ffd2870946b84a56daac204c4afd9666cde4721157082a637d235165251b30
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/html-entities.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 394
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/warning.min.js
103.112.245.8200 OK 233 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/warning.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (357)
Hash 564d253a184994a33bc18186430d505d
9f7ac3568a1490177256ff838f4052e31f8706f7
4b12b0b9df6508af91b78497485d657011e5223a97e21f93a70791d704ecd341
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/warning.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 233
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/is-shallow-equal.min.js
103.112.245.8200 OK 489 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/is-shallow-equal.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1062)
Hash 9c3fd326f292bc0b8aa49a7bf1addb53
d8f07ad4a9f171b5f0e3044cbcd2e7a605f3607a
5f85e236d58a67ee0f6710cd235e28308e6548b08a1f4d2b8ce1277aa16bc16c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/is-shallow-equal.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 489
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/priority-queue.min.js
103.112.245.8200 OK 550 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/priority-queue.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1026)
Hash 0b80454a993c43231762d5a2c5cf041a
bf96e552200e49bae9f76ac743400e26f255d555
0e62c9831e4e149fe4cd490a415faba959b96f71a5c80d972a9491b0838ccab4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/priority-queue.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 550
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/keyboard-shortcuts.min.js
103.112.245.8200 OK 1.8 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/keyboard-shortcuts.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4531)
Hash 0f1a693223c273542b1b5f4899a32871
46b07d97b5bd6ee96b2d73be6f6c5dc8a7cd60f2
d30464ba2bd272fefe6b131f478e64b8bbb94e56987590622ab0bb04fcd1d6a6
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/keyboard-shortcuts.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1757
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/shortcode.min.js
103.112.245.8200 OK 1.5 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/shortcode.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (3226)
Hash 468db9f63386dfa87cf0e205347bfdd7
54854042a894d745fafbe2210f31f55d5d23ce63
bb31539884658e2784599c8da9ba02c7acc86b51d70a8e9d6126e8b3b5401cb8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/shortcode.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1470
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/redux-routine.min.js
103.112.245.8200 OK 2.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/redux-routine.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (8872)
Hash 8dc041074992e9dcc04e994eae41eae6
b3a3982a5daa89d73a1655659c585a8dc266809a
8f5967407af8bdca74ce092a9361461f2cd50b9be9cd76aa5326ec969526015f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/redux-routine.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2588
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.js?minify=false
103.112.245.8200 OK 3.5 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.js?minify=false
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10949), with no line terminators
Hash 5905b3ada4e9446e72e3b008d9738664
7556683a04c21c11b5e4db962c523047e694920e
2793a686d7e05b6c12e209b757e64f1c3a4c3bbdb3e4b50f09f658590d6b76ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/blocks/tiled-gallery/view.js?minify=false HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:52:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3519
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/dom.min.js
103.112.245.8200 OK 4.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/dom.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (12653)
Hash da834d6e383ce1b9475f735328b7be7f
722290242db75a37db0708ca67b0c9f4b88a6c8a
e4d9b8f9c18122618dfc0c182d0ec4df834a3133df555b1ec996207e57053323
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/dom.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4418
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/element.min.js
103.112.245.8200 OK 4.2 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/element.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10925)
Hash ea423e5e7899b1bca1e4821b92ccfc6e
b06f46a56e14cffb2358822cf9c2c15b8d89c07a
06f0246acc2d8e2c4f559fdc520b42373fab111e199aee2ec97ce188a4e752fa
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/element.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4180
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
103.112.245.8200 OK 7.1 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (24374), with no line terminators
Hash bcb3e6b0ef3c83d1a8e4ba9d7c9c5c40
de7686b62e21759c21e5a7c6c96731a55ca5b944
15acca9f4358ba1d2e6aa3cc99ca6cd721fa891bb4ab550359cf748fee500828
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7093
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/data.min.js
103.112.245.8200 OK 8.5 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/data.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (27766)
Hash d8a8a7bad2c056610cf16377a7462e8e
cb9ff356b558d85cb812c2f96eba2d908d717692
ddea735a759c4a1a3ebca0c64f823887a7c4f5e434cd7acb0e39f40f7dcfa281
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/data.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8474
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/slideshow/view.js?minify=false
103.112.245.8200 OK 13 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/blocks/slideshow/view.js?minify=false
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (26976)
Hash 77b85785f60fda2f091810ea2e4f4324
de9a18aeb6094637146ab55a0a2c58ada44455bf
625aaf8d02c11568eac666565af06385d815b470ec9cf699d2215c2993550292
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/blocks/slideshow/view.js?minify=false HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:52:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12631
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/rich-text.min.js
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/rich-text.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (35439)
Hash c264677e2409296dead486be7ea351d8
9acdc5637a97b7917c34f89e97d200b64846d40f
7df23e3e1f8054c57ed2d2e05ca52b31660e20becb88c4e952919844582bbd60
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/rich-text.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 10820
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/moment.min.js
103.112.245.8200 OK 18 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/moment.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (58024), with no line terminators
Hash c548009fd88bf49d5e84f5405df75be8
9a0b9b587f71d73d3caef604cd30d43796917411
b02a6cf9b8082aa27adb450bbf9ff02ec4f999e5a4015f99b96a6729f5ce5b5a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/moment.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 04:25:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 18197
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1
192.0.77.2200 OK 10 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 160x125, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d42da77089b5664a7fcff90df6fbd326
7822a2ccbfe9fe9945c94421085f3936c0f16b22
5b824f80720881186a5051cf4220bfd3f10aaf2e2ba6cf8ab6e838bda53d4f8a
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:25 GMT
content-type: image/webp
content-length: 10146
last-modified: Tue, 17 Jan 2023 03:56:25 GMT
expires: Thu, 16 Jan 2025 15:56:25 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "86d77096c014a3d0"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/compose.min.js
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/compose.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (33731)
Hash 3f11971a81285a961a982d70474555f2
372a859a54ae5b430909cf7d195cf53a5bfd97ac
d11f75022d3d610fcaace9ec268b9bfdcddda5aaa16cc658ec85fc1ba39fdc21
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/compose.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 10776
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/date.min.js
103.112.245.8200 OK 30 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/date.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (62024)
Hash a299789b0d585ff0932dfbd12a1f077f
6eff658f0605c4de37ad4fa11658f19dbdacc9de
6f6d839bee4ac5e23a02a6b9aa66c0f3ff6fd77dd2d74d17f7a84a4f8483ba3c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/date.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 04:25:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 30435
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/blocks.min.js
103.112.245.8200 OK 46 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/blocks.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (60687)
Hash e4a33b296ba00a2ec1d60a5d4f5db80c
dae5cefcccad96b68f732060a53deda192fb5250
8d746c4805ea17fe386c69874493bb7ec5bb3dc95ab0f0c46d6cd40a7bfddada
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/blocks.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 45540
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
103.112.245.8200 OK 21 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 264 x 264, 8-bit colormap, non-interlaced\012- data
Hash b40e39a8e3747e74f4dfcf6d88ecc535
17e825efe06f1d04a8a3c398329d51b0ddf14b53
7a6ac6e588a725241e6f43feaad46fb36de9682576f5f29c570edc3ec5247477
GET /wp-content/themes/sahifa/images/patterns/body-bg7.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jan 2015 19:28:34 GMT
accept-ranges: bytes
content-length: 21146
content-type: image/png
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
103.112.245.8200 OK 93 B URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 12 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 51386a2f66885faebd7ce34fceee3c7f
d428fb21cb1c35bb8d1a579df9aa7034c62f8e61
23c79bb552706be2ca97bdb259921e3269a5263326b147676c2f7909a45b58c9
GET /wp-content/themes/sahifa/images/stripe.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Sep 2012 13:24:44 GMT
accept-ranges: bytes
content-length: 93
content-type: image/png
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
103.112.245.8200 OK 1.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 30 x 78, 8-bit colormap, non-interlaced\012- data
Hash 2ca35c0c6c0a17872bc7c6ef7fb1d6e5
6504abb26cf52c2250ea8e9c5645bb9439cefba9
6039cdb2c8028b73ddb9d711e7eb22834a8e11ba865283a7ed2fd2c75a401040
GET /wp-content/themes/sahifa/images/home.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Jan 2015 13:15:38 GMT
accept-ranges: bytes
content-length: 1022
content-type: image/png
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
103.112.245.8200 OK 257 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1350], baseline, precision 8, 1350x1350, components 3\012- data
Size 257 kB (257360 bytes)
Hash fe694df042f2c4016f3081e36bf90483
8a930a3b5f974c9b55bd72b8557e607faa27e6c2
dffac83649a1dbf3c8e646fd28e86fd63b2f1810ad8de4c6085818ba338ef4d5
GET /wp-content/uploads/2020/11/Artboard-3hdpi.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:55:15 GMT
accept-ranges: bytes
content-length: 257360
content-type: image/jpeg
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
103.112.245.8200 OK 72 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 May 2016 09:44:26 GMT
accept-ranges: bytes
content-length: 71896
vary: Accept-Encoding
content-type: font/woff2
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
103.112.245.8200 OK 20 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format, CFF, length 19996, version 1.300\012- data
Hash 07db5c04835629ee7284a0481197443d
9f56f7e1b14b89828393aef3ff581a4a22320af0
e8c2e4d6ab0ad2f055a6cc3c777d31531e665758db5ca815f2613afad72f7088
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Feb 2015 20:13:40 GMT
accept-ranges: bytes
content-length: 19996
vary: Accept-Encoding
content-type: font/woff
date: Tue, 17 Jan 2023 03:56:24 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/08/IMG_8034.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 15 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/08/IMG_8034.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 797d661eb47f0e5ba7c21a7de8c236a9
f45664e784cc367ec426be709b26fd44fddea61a
ee77612f79b9474c85d4d5a3f4e3c3b4c7a519762fb398e08e0cab11e6f8667c
GET /aspphami-dki.or.id/wp-content/uploads/2019/08/IMG_8034.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:25 GMT
content-type: image/webp
content-length: 14576
last-modified: Tue, 17 Jan 2023 03:56:25 GMT
expires: Thu, 16 Jan 2025 15:56:25 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/08/IMG_8034.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8a3ba72410b370ce"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0cd18c4a19cce4db4c1ee660e9a0a967
a60b429532788a57a53e8674de365ddd84fcf3e4
878401e98ec0ea4de88dad035d00618a4d3f382329f326711f3916b4325aab88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 17 Jan 2023 02:41:07 GMT
expires: Tue, 17 Jan 2023 04:41:07 GMT
cache-control: public, max-age=7200
age: 4519
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0cd18c4a19cce4db4c1ee660e9a0a967
a60b429532788a57a53e8674de365ddd84fcf3e4
878401e98ec0ea4de88dad035d00618a4d3f382329f326711f3916b4325aab88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0cd18c4a19cce4db4c1ee660e9a0a967
a60b429532788a57a53e8674de365ddd84fcf3e4
878401e98ec0ea4de88dad035d00618a4d3f382329f326711f3916b4325aab88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1559985775&t=pageview&_s=1&dl=https%3A%2F%2Faspphami-dki.or.id%2Fcategory%2Fberita-terkini%2Fpage%2F3%2F&ul=en-us&de=UTF-8&dt=BERITA%20TERKINI%20%E2%80%93%20Page%203%20%E2%80%93%20DPD%20ASPPHAMI%20DKI%20JAKARTA&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=284443337&gjid=1553490861&cid=1566244054.1673927786&tid=UA-156598198-1&_gid=393903936.1673927786&_r=1&_slc=1>m=2ou1a1&z=2035492794
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1559985775&t=pageview&_s=1&dl=https%3A%2F%2Faspphami-dki.or.id%2Fcategory%2Fberita-terkini%2Fpage%2F3%2F&ul=en-us&de=UTF-8&dt=BERITA%20TERKINI%20%E2%80%93%20Page%203%20%E2%80%93%20DPD%20ASPPHAMI%20DKI%20JAKARTA&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=284443337&gjid=1553490861&cid=1566244054.1673927786&tid=UA-156598198-1&_gid=393903936.1673927786&_r=1&_slc=1>m=2ou1a1&z=2035492794
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1559985775&t=pageview&_s=1&dl=https%3A%2F%2Faspphami-dki.or.id%2Fcategory%2Fberita-terkini%2Fpage%2F3%2F&ul=en-us&de=UTF-8&dt=BERITA%20TERKINI%20%E2%80%93%20Page%203%20%E2%80%93%20DPD%20ASPPHAMI%20DKI%20JAKARTA&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=284443337&gjid=1553490861&cid=1566244054.1673927786&tid=UA-156598198-1&_gid=393903936.1673927786&_r=1&_slc=1>m=2ou1a1&z=2035492794 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://aspphami-dki.or.id
date: Tue, 17 Jan 2023 03:56:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (534)
Size 163 kB (162972 bytes)
Hash 76ec8636078661afbc2c6fdd811b0b76
035c5fe2d57e0363a7abaedc294ef890a6e2a081
194068b0223ebb32c7e7026851a4c1eb6b70c988b269c7fa10f4dd3362bd650a
GET /recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 15:07:39 GMT
expires: Tue, 16 Jan 2024 15:07:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 00:08:35 GMT
content-type: text/javascript
age: 46127
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.130200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (4885)
Hash c399cb204e77008b15a14091f042adf1
09fa3c9114f8a8eb226d3ca7303eb3b3c753f325
9e30c63746bdd6a8ac47cdcbd39279df07e0ee4d8ef633101f94177f34205b17
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 17 Jan 2023 03:56:26 GMT
expires: Tue, 17 Jan 2023 03:56:26 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6246200701592286035
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49316
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0cd18c4a19cce4db4c1ee660e9a0a967
a60b429532788a57a53e8674de365ddd84fcf3e4
878401e98ec0ea4de88dad035d00618a4d3f382329f326711f3916b4325aab88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 21:48:03 GMT
expires: Fri, 12 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 367703
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/07/IMG_7015.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 12 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/07/IMG_7015.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2276b0de1a047d12eccee6dae5da0999
1f3d24e5de6cc769ff8d4873f6ec1357251e3ad1
39ba357f9960f4850603e8de18412e1552e2de16177aff836f2f02e3b85b6d26
GET /aspphami-dki.or.id/wp-content/uploads/2019/07/IMG_7015.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:26 GMT
content-type: image/webp
content-length: 12520
last-modified: Tue, 17 Jan 2023 03:56:26 GMT
expires: Thu, 16 Jan 2025 15:56:26 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/07/IMG_7015.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e41d8bff0656e173"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/PEST-ACADEMY-2019_BROCHURE-FINAL_UPDATED_11042019-4.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 9.9 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/PEST-ACADEMY-2019_BROCHURE-FINAL_UPDATED_11042019-4.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1b3b4f930404af872e28673950cf9e44
af643d7c71abf0d47e6da587c7301981585bd667
71ef85772fb53f464d07a5e0da105bd149baa850636a1b584aae97e69ec16845
GET /aspphami-dki.or.id/wp-content/uploads/2019/05/PEST-ACADEMY-2019_BROCHURE-FINAL_UPDATED_11042019-4.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:27 GMT
content-type: image/webp
content-length: 9894
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/05/PEST-ACADEMY-2019_BROCHURE-FINAL_UPDATED_11042019-4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "fd3a5ebaf25252bb"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 987da7c7dd69f6f24c4ee56f2624da00
191d2b68e49b0d05619116c073280a71514fe005
46c51c5b9f40f44dc0989d595caf8a2de02cc02acf78b3803d8a371997eb8208
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:27 GMT
content-type: image/webp
content-length: 12872
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7e684abb6536ebf7"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/Lebaran-2019-hal-1.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 7.5 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/Lebaran-2019-hal-1.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f5cde9262af31736e48d57679ea5b56
80ce44d0ecb7feb4c49e4a0eb0ad0d52a8cd4895
becaa47f5f9cb3d931d4850bafee8a0b8970981a040888a586ce42082da9c67e
GET /aspphami-dki.or.id/wp-content/uploads/2019/05/Lebaran-2019-hal-1.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:27 GMT
content-type: image/webp
content-length: 7470
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/05/Lebaran-2019-hal-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "beb055125b8a518e"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 756 B URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 118f4aa5df75ca98c7e06b07ee64646f
3211457f6addab16236baab27a0e3a78b522482d
fd654663c0e4302ff28a11f8c4465942b9dec7279aa4f2a2c72ec8aa9be3229f
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:27 GMT
content-type: image/webp
content-length: 756
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4720fe0cd3a975c0"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a0c99efce2ba7294ef4b88e9810c411
90e325963c1355d4c2ab6500689850a2df4c419f
957f138460650b9cecf197fb62ec2b92fae42eb5d9d431a348f8f518470612c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 17 Jan 2023 03:56:27 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9c27cc551532f9424a9c944b490c3c45
1da7d84941c2ac6ffe4dfdf044d96c5b07d38b11
ae4dcb0d9d7fd53177cefc7d6c4c4101af88a85a2970a4693b33217d8dfdcf48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 17 Jan 2023 03:56:27 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9c27cc551532f9424a9c944b490c3c45
1da7d84941c2ac6ffe4dfdf044d96c5b07d38b11
ae4dcb0d9d7fd53177cefc7d6c4c4101af88a85a2970a4693b33217d8dfdcf48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/P_20190330_165455_vHDR_Auto_HP.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/P_20190330_165455_vHDR_Auto_HP.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4ff3cfbed24a49b9a824f9d1d0e7980c
2877e9c4a83612e9e6eaa4838cb0db28b2720b03
6a0b3fc5db8855ffe14e303ec51d53bb602df2d866ff185811fe8d61c6766789
GET /aspphami-dki.or.id/wp-content/uploads/2019/05/P_20190330_165455_vHDR_Auto_HP.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:27 GMT
content-type: image/webp
content-length: 13614
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/05/P_20190330_165455_vHDR_Auto_HP.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9c91b5fe7e49cc13"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 65da68ebd2261838345d8d3c901f68e1
eca2d245e8088e234ff653f952d20a5c02b30782
7be389a576bdf77f00aa9c51e86a5ca524a2d606501539d58f635f5057956dd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640&gpid_exp=1
216.58.207.226200 OK 257 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (403), with no line terminators
Hash 9023f95b8f54089579595a759d064dad
06b2baafd3d38a2b34ed4b30ba371e42b0aa58ee
f7d95f6a702efe839b885f26db75ea451cdaf9b99d66241be6b0ac028f55e5a1
GET /gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 17 Jan 2023 03:56:28 GMT
server: cafe
cache-control: private
content-length: 257
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 65da68ebd2261838345d8d3c901f68e1
eca2d245e8088e234ff653f952d20a5c02b30782
7be389a576bdf77f00aa9c51e86a5ca524a2d606501539d58f635f5057956dd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/Inagrichem.jpeg?resize=310%2C165&ssl=1
192.0.77.2200 OK 11 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2019/05/Inagrichem.jpeg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 91bdb7ce89a1dc825eafbef1bd3250f3
41eb42848198af6d32f05df643be186107344443
b7b8cbb2690068cd78e162200588a40dd478b07aa5cdc400b798a7125c82cd86
GET /aspphami-dki.or.id/wp-content/uploads/2019/05/Inagrichem.jpeg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 03:56:28 GMT
content-type: image/webp
content-length: 11386
last-modified: Tue, 17 Jan 2023 03:56:28 GMT
expires: Thu, 16 Jan 2025 15:56:28 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2019/05/Inagrichem.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "24d06b18d1b9ac64"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1ab3c7781d7bfdd4978054e71e8a2d41
1c38ed215f24ed5be893edd64aae2d0c732f32ee
5026934ea312f7ec6622df4df7560a949266c732a1404189105d8b99e00de217
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 03:56:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.193200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 17 Jan 2023 03:56:28 GMT
expires: Tue, 17 Jan 2023 03:56:28 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.207.193200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 12:37:02 GMT
expires: Tue, 16 Jan 2024 12:37:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 55166
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/components.min.js
103.112.245.8200 OK 0 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/components.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/components.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 04:25:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/block-editor.min.js
103.112.245.8200 OK 0 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/block-editor.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/block-editor.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 04:25:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 141375
content-type: application/javascript
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
103.112.245.8200 OK 0 B URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
GET /wp-content/uploads/2020/11/AA.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/berita-terkini/page/3/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:38:44 GMT
accept-ranges: bytes
content-length: 715788
content-type: image/jpeg
date: Tue, 17 Jan 2023 03:56:23 GMT
server: Apache
X-Firefox-Spdy: h2