urlquery - report: 128.199.72.185/pasang-iklan-judi-online/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
r3.o.lencr.org (7)	344	No data	No data	23.36.77.32
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-30 04:06:17 UTC	34.102.187.140
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
ocsp.pki.goog (5)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.131
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	35.161.148.163
fonts.gstatic.com (2)	0	2014-09-09 00:40:21 UTC	2022-11-30 04:54:31 UTC	216.58.207.227	Domain (gstatic.com) ranked at: 540
fonts.googleapis.com (1)	8877	2013-06-10 20:14:26 UTC	2022-11-30 05:55:22 UTC	142.250.74.106
ocsp.digicert.com (4)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-30 04:06:04 UTC	34.117.237.239
128.199.72.185 (22)	0	2020-05-25 07:44:07 UTC	2020-05-25 08:07:15 UTC	128.199.72.185	Unknown ranking
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
stackpath.bootstrapcdn.com (1)	2467	2018-06-15 20:36:43 UTC	2022-11-30 05:24:02 UTC	104.18.11.207

Scan Date	Severity	Indicator	Comment
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed
2022-11-30	2	128.199.72.185	Sinkholed

Date	UQ / IDS / BL	URL	IP
2022-11-30 15:11:10 +0000	0 - 0 - 22	128.199.72.185/pasang-iklan-judi-online/	128.199.72.185

Date	UQ / IDS / BL	URL	IP
2023-02-04 05:23:27 +0000	0 - 0 - 2	port-3000-php-red-yak-jasminhissou90224029.co (...)	198.199.109.95
2023-02-04 05:22:47 +0000	0 - 0 - 7	piroms.live/2Tj/9.html	159.223.153.123
2023-02-04 05:18:59 +0000	0 - 0 - 2	hauserart.co.il/	64.227.79.103
2023-02-04 05:17:05 +0000	0 - 0 - 11	online-deal.click/bj2/?lpkey={lp_key}	142.93.231.236
2023-02-04 05:15:49 +0000	0 - 0 - 59	homeschooling-hspgserang.sch.id/	139.59.222.63

Date	UQ / IDS / BL	URL	IP
2022-11-30 15:11:10 +0000	0 - 0 - 22	128.199.72.185/pasang-iklan-judi-online/	128.199.72.185

HTTP Transactions (53)

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11893 Expires: Wed, 30 Nov 2022 18:29:12 GMT Date: Wed, 30 Nov 2022 15:10:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a5daf4dc99951793ae2315d4795e8146 Sha1: 4427507ca4d3a5632cc8f598afbc85e2195d00bd Sha256: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5943 Cache-Control: max-age=161963 Date: Wed, 30 Nov 2022 15:10:59 GMT Etag: "638730f7-1d7" Expires: Fri, 02 Dec 2022 12:10:22 GMT Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: f3cf023c797da81728c0ac84c8759331 Sha1: fa07c5e39e4b0741ea484101cccb2202acea9d9c Sha256: 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 30 Nov 2022 14:19:41 GMT cache-control: public,max-age=3600 age: 3078 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10295 Expires: Wed, 30 Nov 2022 18:02:34 GMT Date: Wed, 30 Nov 2022 15:10:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6d9d34c96b9a826ae5676640c966469c Sha1: 8052a16d41a637e420478b7de1ff5a2dc951fccd Sha256: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: TAYkHWHS30YAOA9lAg6ULIPqlbvP41frJijN27rzhoyYolJH76uA6SclIpBrwaEC8j9S5LZzGog= x-amz-request-id: W9YYXEF7FNGW2HT2 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 30 Nov 2022 14:45:54 GMT age: 1505 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Wed, 30 Nov 2022 15:10:59 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /pasang-iklan-judi-online/ HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: 128.199.72.185/pasang-iklan-judi-online/ FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: b4cd9301b2ae3ba783088944cf4685f0ae267121c7204187f4f9959f550a0319 128.199.72.185 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Wed, 30 Nov 2022 15:10:59 GMT Server: Apache/2.4.29 (Ubuntu) Link: <http://128.199.72.185/wp-json/>; rel="https://api.w.org/", <http://128.199.72.185/wp-json/wp/v2/pages/73>; rel="alternate"; type="application/json", <http://128.199.72.185/?p=73>; rel=shortlink Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 6133 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2579), with CRLF, LF line terminators Size: 6133 Md5: 992bd1b2e0253d94a25297340e677e1f Sha1: 1f1763f2231dd61fe8bd271b4a9971525d6a563e Sha256: b4cd9301b2ae3ba783088944cf4685f0ae267121c7204187f4f9959f550a0319 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5978 Cache-Control: max-age=149403 Date: Wed, 30 Nov 2022 15:11:00 GMT Etag: "6386ffc5-117" Expires: Fri, 02 Dec 2022 08:41:03 GMT Last-Modified: Wed, 30 Nov 2022 07:01:25 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 7e8cd73c758ca6307b135b3d15ea36e6 Sha1: 41cb1eb686b0415b438c3668decfc314506f62fa Sha256: d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 15:11:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 146dac10a93604a686550631e14eefb9 Sha1: b4af601ce6d515d9ec124938ce626060e0d43099 Sha256: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 15:11:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 146dac10a93604a686550631e14eefb9 Sha1: b4af601ce6d515d9ec124938ce626060e0d43099 Sha256: bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 30 Nov 2022 15:08:56 GMT cache-control: public,max-age=3600 age: 124 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /wp-content/themes/tempatjudi/css/style.css?ver=1.5.0 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/css/style.c (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 482154e2a3d3e1c3144a7a0c20ac061221246717376d53d8800ec9ed6d289b32 128.199.72.185 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "fc9-5b123a74635b8-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1310 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 1310 Md5: 8a2107a915e8ed79c37e5105c3161c0e Sha1: 6f5471e851638905dc6e9a22c8860fb61440c8e0 Sha256: 482154e2a3d3e1c3144a7a0c20ac061221246717376d53d8800ec9ed6d289b32 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.6.1 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-includes/css/dist/block-library/style (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 369cea2242253710bdcc36de73c059549d83f3dc09a95cadb73265af74e69da6 128.199.72.185 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 10 Dec 2020 17:08:00 GMT ETag: "c8e9-5b61f37cf8858-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 7855 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (27609) Size: 7855 Md5: 91e6b6ad8967be70bb98fa340f67803c Sha1: f933bc73635d44616d42ccde72cd1331096fe3e3 Sha256: 369cea2242253710bdcc36de73c059549d83f3dc09a95cadb73265af74e69da6 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5978 Cache-Control: max-age=149403 Date: Wed, 30 Nov 2022 15:11:00 GMT Etag: "6386ffc5-117" Expires: Fri, 02 Dec 2022 08:41:03 GMT Last-Modified: Wed, 30 Nov 2022 07:01:25 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 7e8cd73c758ca6307b135b3d15ea36e6 Sha1: 41cb1eb686b0415b438c3668decfc314506f62fa Sha256: d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5996 Cache-Control: max-age=156947 Date: Wed, 30 Nov 2022 15:11:00 GMT Etag: "63871d2b-1d7" Expires: Fri, 02 Dec 2022 10:46:47 GMT Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: cfdd00e67ee6ca21712b867eb5288ab6 Sha1: b61d5d6ec3b7ad71619e13e32c87f2d01871b88a Sha256: f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-includes/js/jquery/jquery-migrate.min (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 10 Dec 2020 17:08:00 GMT ETag: "2bd8-5b61f37d091f9-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4169 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (11126) Size: 4169 Md5: 5629711d7fdd5b28441bac39b851299f Sha1: 4e0bf2b7383097f7c352023a1b1b1b48a50356b6 Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/js/main.js?ver=1.1.0 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/js/main.js? (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: c9a493c640a07cb2604a441cfb74088365cc44fad0f5443b84f44b4efc49a3a8 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Wed, 07 Oct 2020 13:21:11 GMT ETag: "299-5b11496d09139-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 365 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 365 Md5: c8672a835cc0f1782f9b6e13abf765bd Sha1: 6d0dd36f005ca15198325589b605828865f971ef Sha256: c9a493c640a07cb2604a441cfb74088365cc44fad0f5443b84f44b4efc49a3a8 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=5.6.1 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-includes/js/wp-embed.min.js?ver=5.6.1 FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Mon, 08 Feb 2021 16:31:15 GMT ETag: "592-5bad5b2e286c2-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 765 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (1391) Size: 765 Md5: fe875afb236ee8f0d50040fe58d848d4 Sha1: e6b1b67093b429c95d5b9db07a7eba39e02cf0e5 Sha256: 328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.6.1 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-includes/js/wp-emoji-release.min.js?v (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: cfe161d7b5764e21a1e8ea764f4a0c0da41f1aba16bb8329bd11acbc7a156e4b 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Mon, 08 Feb 2021 16:31:15 GMT ETag: "3795-5bad5b2e351e3-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4662 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (11272) Size: 4662 Md5: 9c26256ee738b510ab56c09607a7286f Sha1: 197327c8d1cd72ce8d335fc0b8b007ddca60191d Sha256: cfe161d7b5764e21a1e8ea764f4a0c0da41f1aba16bb8329bd11acbc7a156e4b Alerts: Blocklists: - quad9: Sinkholed
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 7C4qUvqnWElXP9MzIBAI1w== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 35.161.148.163 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 35.161.148.163 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: xeQOTRa+GtqWmOekq5NfBprc5Tg= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: a3810469de465100b039f38a6e39a83c11a1de3b4259b3028b2b85338770100c 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 10 Dec 2020 17:08:00 GMT ETag: "15d98-5b61f37d091f9-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 30916 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (65451) Size: 30916 Md5: b50f63138863c21ee4dd2fd747d0eaee Sha1: 24e2e53e39b5980f3021ad881f477387610fbfb6 Sha256: a3810469de465100b039f38a6e39a83c11a1de3b4259b3028b2b85338770100c Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/js/bootstrap.min.js?ver=1.1.0 HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/js/bootstra (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 0340a26dbf5e696d2177ae3e33cfbc23ea745f09086939c751563f444e84b310 128.199.72.185 HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Wed, 07 Oct 2020 13:21:11 GMT ETag: "eb0e-5b11496d09139-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 14890 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (59893) Size: 14890 Md5: f236cc80370139ed4d1587ef5ff6296f Sha1: dd802df8719dd40d40d191cd7d6630524d17813d Sha256: 0340a26dbf5e696d2177ae3e33cfbc23ea745f09086939c751563f444e84b310 Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 15:11:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 15:11:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://128.199.72.185 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5j (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15660 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 29 Nov 2022 22:14:50 GMT expires: Wed, 29 Nov 2023 22:14:50 GMT cache-control: public, max-age=31536000 age: 60970 last-modified: Tue, 19 Apr 2022 18:42:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data Size: 15660 Md5: d7b0b953a50fddaa88089b5b787cf719 Sha1: 2f85bc568b27659a3d6452f58f9fd7678450326d Sha256: e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://128.199.72.185 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5j (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15700 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 29 Nov 2022 15:42:33 GMT expires: Wed, 29 Nov 2023 15:42:33 GMT cache-control: public, max-age=31536000 age: 84507 last-modified: Tue, 19 Apr 2022 18:51:55 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data Size: 15700 Md5: 3d7f7413fca69bff4d231ebdc50aaab0 Sha1: cb18e7943b6a8a0e3672d7242197c19a226b92e8 Sha256: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Nov 2022 15:11:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 608e4d04a251ebcd51660e801f388303 Sha1: fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d Sha256: cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
GET /wp-content/uploads/2020/11/logo.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/uploads/2020/11/logo.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: ec264cf0ff51cb6022fd8a212ae1effd6e1cb3e32e30be8614d0e50898faf4c7 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Sat, 28 Nov 2020 07:40:27 GMT ETag: "2adc-5b525e40a6e09" Accept-Ranges: bytes Content-Length: 10972 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data Size: 10972 Md5: ed87c5642f3b26f3a0ed53c083df74bb Sha1: 674bc51e725a8ed281dfceb59c918150c7a1aede Sha256: ec264cf0ff51cb6022fd8a212ae1effd6e1cb3e32e30be8614d0e50898faf4c7 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/uploads/2020/10/logo.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/uploads/2020/10/logo.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 3a91598c17beac75b07bc8b38400b24fcde04f6d5b94d338b3eec26ce280fe30 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Wed, 07 Oct 2020 14:02:34 GMT ETag: "16b7-5b1152ad1ed23" Accept-Ranges: bytes Content-Length: 5815 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 540 x 110, 8-bit colormap, non-interlaced\012- data Size: 5815 Md5: 170737281c91b721068b3688a66a8e80 Sha1: 8221e04d341b589c401900cf97a6182c2a527fab Sha256: 3a91598c17beac75b07bc8b38400b24fcde04f6d5b94d338b3eec26ce280fe30 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/mozilla.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/mozilla.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 566cf0c0deee0e98acde119f6bd7c0e989f21ffe825ff5455878c03708114ba1 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "180a-5b123a74635b8" Accept-Ranges: bytes Content-Length: 6154 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data Size: 6154 Md5: e450ddff99af2c2ac42ac6207fad249b Sha1: 769bff2e89183d395d2c26d871463f4e3dafc1c7 Sha256: 566cf0c0deee0e98acde119f6bd7c0e989f21ffe825ff5455878c03708114ba1 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/opera.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/opera.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 78565d00ca76644b1aded8d2c14d777c4e9391ccee52464e0df9f543ce19f90e 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "2020-5b123a74635b8" Accept-Ranges: bytes Content-Length: 8224 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Size: 8224 Md5: f991e2bd22d64e969e99d0bc8b67ca40 Sha1: f0a290d5081edfea01c0682665e70c4adf9e97e9 Sha256: 78565d00ca76644b1aded8d2c14d777c4e9391ccee52464e0df9f543ce19f90e Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/chrome.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/chrome.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 5148fcf86bd40a7ce7cd458c44243fe8f810ea5af8eca818ce2f376e85a6998f 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "11fa-5b123a74635b8" Accept-Ranges: bytes Content-Length: 4602 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data Size: 4602 Md5: 77944a53ee2648e1c74c91309a24a789 Sha1: 3103bbe04c9db84bb0d245471d48c2fee6d8a52b Sha256: 5148fcf86bd40a7ce7cd458c44243fe8f810ea5af8eca818ce2f376e85a6998f Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/indonesia.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/indones (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 31ade2aadc561b956102e3ab56fcf1ad702c22c7a096d46a1a60465681c73adf 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "73e-5b123a74635b8" Accept-Ranges: bytes Content-Length: 1854 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data Size: 1854 Md5: e0df32c8bc2a69edfbe92cf400d73211 Sha1: 1c7508a30bbb0ed91fc77a093535704e082e8159 Sha256: 31ade2aadc561b956102e3ab56fcf1ad702c22c7a096d46a1a60465681c73adf Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/gamecare.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/gamecare.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 902e1b2f4129d405666ae19dee599c96207b2e86b04dd4a65f069aca38922cef 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "13cb-5b123a74635b8" Accept-Ranges: bytes Content-Length: 5067 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 400 x 172, 8-bit colormap, non-interlaced\012- data Size: 5067 Md5: ea039a097e71fc15650308f5489d0dc4 Sha1: ab253a5a7da9987999a8bee7e1127c956c06fa4d Sha256: 902e1b2f4129d405666ae19dee599c96207b2e86b04dd4a65f069aca38922cef Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/age.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/age.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 8d29085ea2ee9a28ade0ae5834337b55917a36d7fff1ab7586a8cae4828dd6b3 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "e7d-5b123a74635b8" Accept-Ranges: bytes Content-Length: 3709 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data Size: 3709 Md5: ce74252e5fb9d2b0e88b79254f227419 Sha1: 2f7afb6d9ffdd5e628fce6b8e50539c19008bac7 Sha256: 8d29085ea2ee9a28ade0ae5834337b55917a36d7fff1ab7586a8cae4828dd6b3 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/microsoft.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/microso (...) FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 7baeda32d31499dd12a7df1602e3ed7e04fbb15b9dd95d843189694bcb1b06f2 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "1528-5b123a74635b8" Accept-Ranges: bytes Content-Length: 5416 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 503 x 503, 8-bit colormap, non-interlaced\012- data Size: 5416 Md5: c0e4561b9c76c52139a0c6311088a902 Sha1: 0aba87ff1e1bfd6fbeda9375bcbc74fad67a0d86 Sha256: 7baeda32d31499dd12a7df1602e3ed7e04fbb15b9dd95d843189694bcb1b06f2 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/uploads/2020/12/SUPERITC.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/wp-content/uploads/2020/12/SUPERITC.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: b8be20bccbdf36d4a4df2b3ad3fb7b41ff99cc035cc19c27619e1d415ea0886b 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 10 Dec 2020 17:18:09 GMT ETag: "22bce-5b61f5c1d512a" Accept-Ranges: bytes Content-Length: 142286 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 909 x 355, 8-bit/color RGBA, interlaced\012- data Size: 142286 Md5: ed5704e6c4b1ba148e0d7fdbe3eeff6f Sha1: e5ed998d9a715c58bb4c4e41171329951e91b1e7 Sha256: b8be20bccbdf36d4a4df2b3ad3fb7b41ff99cc035cc19c27619e1d415ea0886b Alerts: Blocklists: - quad9: Sinkholed
GET /wp-content/themes/tempatjudi/img/bg.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/wp-content/themes/tempatjudi/css/style.css?ver=1.5.0	URL: 128.199.72.185/wp-content/themes/tempatjudi/img/bg.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: dec7219037d461ead8e97422d883ae9d0809e4aebc5b1fc2e5c07573ea14e6fd 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:00 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 08 Oct 2020 07:19:31 GMT ETag: "11526-5b123a74635b8" Accept-Ranges: bytes Content-Length: 70950 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data Size: 70950 Md5: 9c2eb1bf9a6bed58db77ccadb42f2304 Sha1: 810b8a5563e21d5841c91862ac115f98102b42f8 Sha256: dec7219037d461ead8e97422d883ae9d0809e4aebc5b1fc2e5c07573ea14e6fd Alerts: Blocklists: - quad9: Sinkholed
GET /favicon.ico HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://128.199.72.185/pasang-iklan-judi-online/	URL: 128.199.72.185/favicon.ico FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 128.199.72.185 HTTP/1.1 302 Found Content-Type: text/html; charset=UTF-8 Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Link: <http://128.199.72.185/wp-json/>; rel="https://api.w.org/" X-Redirect-By: WordPress Location: http://128.199.72.185/wp-includes/images/w-logo-blue-white-bg.png Content-Length: 0 Keep-Alive: timeout=5, max=97 Connection: Keep-Alive --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1 Host: 128.199.72.185 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://128.199.72.185/pasang-iklan-judi-online/ Connection: keep-alive	URL: 128.199.72.185/wp-includes/images/w-logo-blue-white-bg.png FQDN: 128.199.72.185 IP: 128.199.72.185 HASH: 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0 128.199.72.185 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 30 Nov 2022 15:11:01 GMT Server: Apache/2.4.29 (Ubuntu) Last-Modified: Thu, 21 May 2020 09:10:12 GMT ETag: "1017-5a624e1454500" Accept-Ranges: bytes Content-Length: 4119 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data Size: 4119 Md5: 000bf649cc8f6bf27cfb04d1bcdcd3c7 Sha1: d73d2f6d74ec6cdcbae07955592962e77d8ae814 Sha256: 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10501 Expires: Wed, 30 Nov 2022 18:06:03 GMT Date: Wed, 30 Nov 2022 15:11:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10501 Expires: Wed, 30 Nov 2022 18:06:03 GMT Date: Wed, 30 Nov 2022 15:11:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10501 Expires: Wed, 30 Nov 2022 18:06:03 GMT Date: Wed, 30 Nov 2022 15:11:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10501 Expires: Wed, 30 Nov 2022 18:06:03 GMT Date: Wed, 30 Nov 2022 15:11:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9051 x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhGvEMNIAMFaKw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: rtfl896JX35oFFEVmqyH9Nm62iSY6rqwzkLwZMcM45p_ySF6J2QwEQ== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:44:47 GMT age: 62775 etag: "6170d6776615503e3e29f86783febc3e3e78ca66" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9051 Md5: 05196ec43964cf559caa0c0279148d62 Sha1: 6170d6776615503e3e29f86783febc3e3e78ca66 Sha256: 47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9330 x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgFQFIdoAMFSmw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:11:32 GMT age: 61170 etag: "2f3a39a528d3b759060203931de33c12303592e1" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9330 Md5: bbe350ea797a0fec5a19a450fc5de4b4 Sha1: 2f3a39a528d3b759060203931de33c12303592e1 Sha256: 4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10501 Expires: Wed, 30 Nov 2022 18:06:03 GMT Date: Wed, 30 Nov 2022 15:11:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a97c452e75cf1d4833e777d7ba7f2c47 Sha1: 58f15763fd33f742ce870f49f1c2dbed5b41205f Sha256: 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10958 x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgFHF9oIAMF5lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: e4GuUolL0WIMXvnF7BZ80j-dMMSILN2gd-1mqFwNns-zCUBsJa8iHQ== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:43:04 GMT age: 62878 etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10958 Md5: 777ce44582c70bf01a31da4cab366f36 Sha1: 57e1d34f146d5ccd9943aa97bcc3158f7103bb07 Sha256: fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5785 x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDaHdWoAMFqmw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: SFO5-P2, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ== via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:07:59 GMT age: 61383 etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5785 Md5: 59baec8db5ced0210ab766ea5636a5fd Sha1: f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b Sha256: 33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10176 x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cMo3oHpSoAMF5Qw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 7LVxajVjJ1N2W-jxCmKpYHg1rS1MbrRnAVc15QmM0iH94CH1yJnR0w== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Wed, 30 Nov 2022 04:53:01 GMT age: 37081 etag: "772d86ad983042a728ee3490630a9cf1134ad0dd" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10176 Md5: 03014221d7f49b50ffc2d1b0a0e75457 Sha1: 772d86ad983042a728ee3490630a9cf1134ad0dd Sha256: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7298 x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDcE3poAMFaAA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:56:51 GMT etag: "e4ddf955e8ac1986045ed55880c43c69e588a021" age: 62051 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7298 Md5: e00769bd1391b8f4f5b8ab128a825355 Sha1: e4ddf955e8ac1986045ed55880c43c69e588a021 Sha256: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /css2?family=Roboto+Condensed:wght@300;400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://128.199.72.185/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css2?family=Roboto+Condensed:wght@ (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Nov 2022 15:11:00 GMT date: Wed, 30 Nov 2022 15:11:00 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /bootstrap/4.5.0/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://128.199.72.185 Connection: keep-alive Referer: http://128.199.72.185/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstra (...) FQDN: stackpath.bootstrapcdn.com IP: 104.18.11.207 104.18.11.207 HTTP/2 200 OK content-type: text/css; charset=utf-8 date: Wed, 30 Nov 2022 15:11:00 GMT vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 etag: W/"3afe15e976734d9daac26310110c4594" last-modified: Mon, 25 Jan 2021 22:04:10 GMT cdn-cachedat: 11/25/2022 23:03:19 cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 865 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 3ba2b4c7d5d588301046025e30a0e73c cdn-cache: HIT cf-cache-status: MISS strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 77248359aa361c0a-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

URL	128.199.72.185/pasang-iklan-judi-online/
IP	128.199.72.185 (Singapore)
ASN	#14061 DIGITALOCEAN-ASN
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-30 15:11:10 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	22
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (12)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 128.199.72.185

Last 5 reports on ASN: DIGITALOCEAN-ASN

Last 1 reports on domain: 128.199.72.185

No other reports with similar screenshot

JavaScript

Executed Scripts (8)

Executed Evals (0)

Executed Writes (1)

#1 JavaScript::Write (size: 4) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0

HTTP Transactions (53)

Overview

Domain Summary (12)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 128.199.72.185

Last 5 reports on ASN: DIGITALOCEAN-ASN

Last 1 reports on domain: 128.199.72.185

No other reports with similar screenshot

JavaScript

Executed Scripts (8)

Executed Evals (0)

Executed Writes (1)

#1 JavaScript::Write (size: 4) - SHA256: b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0

HTTP Transactions (53)

Network Intrusion Detection Systems