{"report_id":"5b127eec-fb3f-4959-9d11-b52d08e07215","version":0,"status":"done","tags":[],"date":"2026-07-02T12:40:12Z","url":{"schema":"https","addr":"type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","fqdn":"type.tebasbotak.com","domain":"tebasbotak.com","tld":"com"},"ip":{"addr":"104.21.20.168","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","fqdn":"type.tebasbotak.com","domain":"tebasbotak.com","tld":"com"},"title":"Halaman Tidak Ditemukan","dom":{"size":12421,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (6883)","md5":"162146be3aace3dbdeb30a4c7e732696","sha1":"ebfe6cda7f67f0aa095b58b7572033e8a17c662d","sha256":"63453556db209384203af85b88859e2f44eef41f7e4ceeae338ef29ef45fca0d","sha512":"09762cd00d2e6264b28b09de852fad903793c4b682f4ccf69ec52b9d4aa12b291df974a93eb54da08c885295dff40168cbcd04e0847891e931525d5b79191328","ssdeep":"192:/d7L4UGeVroA5eLU+LMeLNVLsXy0/gpl/TsoUYKvgkWF:qW0A3XN/VWF","tlshash":"a1420f57b588719d516bd32284d2f77f3d38c80297320d5eca00bba8db59f867a3250b","dom_hash":"domhashf487f6949e215ce507e47b1c5d8b43e3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","fqdn":"type.tebasbotak.com","domain":"tebasbotak.com","tld":"com"},"ip":{"addr":"104.21.20.168","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-06T12:40:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"type.tebasbotak.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"type.tebasbotak.com","ip":{"addr":"172.67.193.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":3252,"sent_data":1066,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}]},{"fqdn":"cdn.ampproject.org","ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2015-08-31","domain_rank":3289,"first_seen":"2015-10-09T04:27:01Z","last_seen":"2026-06-29T17:09:05.933234Z","alert_count":0,"request_count":2,"received_data":295606,"sent_data":960,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012605071401000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"eeab4d27caf84c1910394b32972534d7","sha1":"d54987e0185f51433f78f48d19d459bc3540c2f8","sha256":"504ab7d62040901f4d1e436173330840d22534237065b78d6c87691ca4f81dc9","sha512":"57f2d3d3363dfc6031d89410e517f3a72856710f09e48eeab9c414af6a4f45409ae95d8ed5e4e8578dc411cbbf12e01e1a09811d97122c7b29d9b2c49fa486d8","ssdeep":"96:mTKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:+KqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"0df197dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","size":7798,"data":"","first_seen":"2026-05-12T16:12:58.401546Z","last_seen":"2026-07-03T23:57:08.436214Z","times_seen":2858,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8eb923bf5519b560429c8b0db37c1e3f","sha1":"988f0e1f0cb30b8a288e6c783bbb25c2c3f841a3","sha256":"57fa43a35f28bb6db0d02ef6507ecb2cd4b952aa6d4441f5d156bdbeca8ff229","sha512":"993e2dcb331f86a5bc7c241c4f28bf064c4df1a3fffca040a57d3e2ed4f37dae7428dfbdb66d2add1d11f5d5bee37ea0931bf1c4af2a45d017b5fe0ee67ec666","ssdeep":"3072:Q8SU/TMOu6O7A0AvxZYtG7t8bbiLiJ2lttwnK7DgQ:tSU/TMOu6O7UvaG7t8bbiWJ0ttwnK7X","tlshash":"af54839db286b0724793b074803f150ae33ba955644a812cf56de9d67cbcd8aa037f7c","size":284617,"data":"","first_seen":"2026-05-12T16:12:58.39803Z","last_seen":"2026-07-03T23:57:08.43821Z","times_seen":2956,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"info","text":"Powered by AMP ⚡ HTML – Version 2605071401000https://type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","filename":"https://cdn.ampproject.org/v0.js","line_number":2,"column_number":283346}]},"http":[{"url":{"schema":"https","addr":"type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","fqdn":"type.tebasbotak.com","domain":"tebasbotak.com","tld":"com"},"ip":{"addr":"172.67.193.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-02T12:39:49.867Z","timestamp":1782995989867,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"type.tebasbotak.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Jul 2026 03:16:02 GMT","end":"Wed, 30 Sep 2026 04:15:41 GMT"},"fingerprint":{"sha1":"66:39:D1:A8:52:B2:75:46:C7:C7:05:E5:A4:F7:A4:46:44:E4:3F:DB","sha256":"1F:25:0B:9F:75:1A:AC:5B:D8:1C:AF:33:59:49:D7:46:58:2B:93:0E:72:57:46:4D:03:5C:65:B2:73:85:8A:EC"}}},"request":{"raw":"GET /elearning.unsrat.ac.id/ratutogel HTTP/1.1\r\nHost: type.tebasbotak.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BGNO82%2F1OpArnjCiO1cnH1UytpsJ%2FjXh42zAHPnRN6fDawz4JQuJzJvlD6BQq6da7yjLa4BLFrqUgn8I2jlz26WlZk%2FaDKkiycT%2BtVD0Ng2jhh0fnsFRtZBvk4CcWwf7%2BwuSLO7L\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/html; charset=utf-8\r\ncf-cache-status: DYNAMIC\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=0, must-revalidate\r\nx-content-type-options: nosniff\r\nreferrer-policy: strict-origin-when-cross-origin\r\nvary: accept-encoding\r\npriority: u=0,i\r\nserver: cloudflare\r\ncontent-encoding: br\r\ndate: Thu, 02 Jul 2026 12:39:49 GMT\r\ncf-ray: a14db728def1c272-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}],"data":{"size":1821,"size_decoded":1442,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"c6be43f25edc032cee3a94d9b2951520","sha1":"05fb9c4dcd492cb4675304bae4a33aa2770eb0b9","sha256":"c397d8844b85415498f194f1526970a5ac0a4db376247c366d32ac8c72291a70","sha512":"7aef686304396004900456b92a79b8f4313258cacc635ab225f8ee4d4fe5843221b7110d953b268412a648a8c5bcb3d00ed0e022ae1d37e38daad9a5dc67fe95","ssdeep":"","tlshash":"5c3140d704c61925b667c4e15228f7841c419c214e635e3bb3e173bfa9c8a69c3a0b2f","first_seen":"2026-07-02T12:40:18.140426Z","last_seen":"2026-07-02T12:40:18.140426Z","times_seen":1,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":-1,"dns":12,"connect":16,"send":0,"wait":71,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"type.tebasbotak.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/v0.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","date":"2026-07-02T12:39:50.398Z","timestamp":1782995990398,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Jun 2026 08:39:58 GMT","end":"Mon, 07 Sep 2026 08:39:57 GMT"},"fingerprint":{"sha1":"CC:4C:2F:FB:2E:D0:2B:01:C1:9A:10:B7:61:BF:D0:C1:86:AB:BA:05","sha256":"77:92:DB:B0:14:81:6D:1E:DD:52:0C:51:DE:43:35:1E:27:19:23:8F:D6:F6:2F:D6:95:5C:DD:63:DD:2A:34:0D"}}},"request":{"raw":"GET /v0.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://type.tebasbotak.com/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\ncontent-type: text/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73119\r\ndate: Thu, 02 Jul 2026 12:39:50 GMT\r\nexpires: Thu, 02 Jul 2026 12:39:50 GMT\r\ncache-control: private, max-age=3000, stale-while-revalidate=1206600\r\netag: \"d1c4b9bc9bd9eb67\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":284617,"size_decoded":74733,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (64627)","md5":"8eb923bf5519b560429c8b0db37c1e3f","sha1":"988f0e1f0cb30b8a288e6c783bbb25c2c3f841a3","sha256":"57fa43a35f28bb6db0d02ef6507ecb2cd4b952aa6d4441f5d156bdbeca8ff229","sha512":"993e2dcb331f86a5bc7c241c4f28bf064c4df1a3fffca040a57d3e2ed4f37dae7428dfbdb66d2add1d11f5d5bee37ea0931bf1c4af2a45d017b5fe0ee67ec666","ssdeep":"3072:Q8SU/TMOu6O7A0AvxZYtG7t8bbiLiJ2lttwnK7DgQ:tSU/TMOu6O7UvaG7t8bbiWJ0ttwnK7X","tlshash":"af54839db286b0724793b074803f150ae33ba955644a812cf56de9d67cbcd8aa037f7c","first_seen":"2026-05-12T16:12:58.39803Z","last_seen":"2026-07-03T23:57:08.43821Z","times_seen":2956,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":4,"connect":14,"send":0,"wait":29,"receive":26,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"type.tebasbotak.com/favicon.ico","fqdn":"type.tebasbotak.com","domain":"tebasbotak.com","tld":"com"},"ip":{"addr":"172.67.193.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","date":"2026-07-02T12:39:50.596Z","timestamp":1782995990596,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"type.tebasbotak.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Jul 2026 03:16:02 GMT","end":"Wed, 30 Sep 2026 04:15:41 GMT"},"fingerprint":{"sha1":"66:39:D1:A8:52:B2:75:46:C7:C7:05:E5:A4:F7:A4:46:44:E4:3F:DB","sha256":"1F:25:0B:9F:75:1A:AC:5B:D8:1C:AF:33:59:49:D7:46:58:2B:93:0E:72:57:46:4D:03:5C:65:B2:73:85:8A:EC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: type.tebasbotak.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 \r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qVtAdaZsdThzw1x1wEx9p1YmybRJtjMpO6y80x31hb7rK8UQswWjfh9Gb6zxmJsCCVqA9G%2FIqAeb2VZKdk7819GGB4Y3EHiSVHdE3YU87EFfG%2BG5WSs3M2q5ECK7mUCYGKr6vHGF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver-timing: cfExtPri\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\nreferrer-policy: strict-origin-when-cross-origin\r\npriority: u=6,i=?0\r\nserver: cloudflare\r\ncf-cache-status: BYPASS\r\ndate: Thu, 02 Jul 2026 12:39:50 GMT\r\ncf-ray: a14db72d3f55c272-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":651,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T00:16:42.306544Z","times_seen":16954898,"resource_available":true,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-02","alert":"Sinkholed","trigger":"type.tebasbotak.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.ampproject.org/rtv/012605071401000/v0/amp-auto-lightbox-0.1.js","fqdn":"cdn.ampproject.org","domain":"ampproject.org","tld":"org"},"ip":{"addr":"142.250.178.65","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://type.tebasbotak.com/elearning.unsrat.ac.id/ratutogel","date":"2026-07-02T12:39:50.702Z","timestamp":1782995990702,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"misc-sni.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Jun 2026 08:39:58 GMT","end":"Mon, 07 Sep 2026 08:39:57 GMT"},"fingerprint":{"sha1":"CC:4C:2F:FB:2E:D0:2B:01:C1:9A:10:B7:61:BF:D0:C1:86:AB:BA:05","sha256":"77:92:DB:B0:14:81:6D:1E:DD:52:0C:51:DE:43:35:1E:27:19:23:8F:D6:F6:2F:D6:95:5C:DD:63:DD:2A:34:0D"}}},"request":{"raw":"GET /rtv/012605071401000/v0/amp-auto-lightbox-0.1.js HTTP/1.1\r\nHost: cdn.ampproject.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://type.tebasbotak.com/\r\nOrigin: https://type.tebasbotak.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\ncontent-encoding: br\r\naccess-control-allow-origin: *\r\ncontent-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"amphtml-china-available\"\r\nreport-to: {\"group\":\"amphtml-china-available\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/amphtml-china-available\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 2963\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 30 Jun 2026 15:38:33 GMT\r\nexpires: Wed, 30 Jun 2027 15:38:33 GMT\r\ncache-control: public, max-age=31536000\r\nage: 162077\r\netag: \"0382c16cac8af8aa\"\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7798,"size_decoded":4540,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (7676)","md5":"eeab4d27caf84c1910394b32972534d7","sha1":"d54987e0185f51433f78f48d19d459bc3540c2f8","sha256":"504ab7d62040901f4d1e436173330840d22534237065b78d6c87691ca4f81dc9","sha512":"57f2d3d3363dfc6031d89410e517f3a72856710f09e48eeab9c414af6a4f45409ae95d8ed5e4e8578dc411cbbf12e01e1a09811d97122c7b29d9b2c49fa486d8","ssdeep":"96:mTKoAosPGpV3yMDc0jGAM+G0mj1hVXxSZ4tqSKN0OV0TjLRkiGj0ldmq43bDjHI:+KqswV3yv0jGAFCPX/tqKyWp4M0rDTI","tlshash":"0df197dc7ac2b83a5757b4b780af414fa63ba94624ad9120d120f0d83cb995ed633e5c","first_seen":"2026-05-12T16:12:58.401546Z","last_seen":"2026-07-03T23:57:08.436214Z","times_seen":2858,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":0,"dns":0,"connect":38,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}
