r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3370
Expires: Thu, 02 Feb 2023 12:03:57 GMT
Date: Thu, 02 Feb 2023 11:07:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10122
Expires: Thu, 02 Feb 2023 13:56:29 GMT
Date: Thu, 02 Feb 2023 11:07:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13165
Expires: Thu, 02 Feb 2023 14:47:12 GMT
Date: Thu, 02 Feb 2023 11:07:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0CuTS108R/xls03f7ZDVXvUm5ywt1WGGRuFda6PTWgjBzjtcMFX8z8Cj2sGbZzOA+SwosHgBQwK8MC5S/i1v/g==
x-amz-request-id: VH52CM1NVFCV2WG2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 10:23:03 GMT
age: 2684
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 10:43:30 GMT
content-type: application/json
age: 1457
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:47 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 10:30:30 GMT
age: 2237
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10907
Expires: Thu, 02 Feb 2023 14:09:34 GMT
Date: Thu, 02 Feb 2023 11:07:47 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aE0wFSzat3knqjnLHh0jWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: acWfiCtQnHMfccEcCcgtDyDgGwM=
aspphami-dki.or.id/
301 Moved Permanently 235 B IP
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash be9989193510d7fb94417f4edb50dc9f
11282dd78d43ef0ff09cf825dd15e8eca192ef55
366d683bba4fb195e1cadbfb147129f7e1a096f7e7a77bde2953fc83cc0f0be5
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 11:07:47 GMT
Server: Apache
Location: https://aspphami-dki.or.id/
Content-Length: 235
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13243
Expires: Thu, 02 Feb 2023 14:48:32 GMT
Date: Thu, 02 Feb 2023 11:07:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13243
Expires: Thu, 02 Feb 2023 14:48:32 GMT
Date: Thu, 02 Feb 2023 11:07:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13243
Expires: Thu, 02 Feb 2023 14:48:32 GMT
Date: Thu, 02 Feb 2023 11:07:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13243
Expires: Thu, 02 Feb 2023 14:48:32 GMT
Date: Thu, 02 Feb 2023 11:07:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13243
Expires: Thu, 02 Feb 2023 14:48:32 GMT
Date: Thu, 02 Feb 2023 11:07:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 13152
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ceb09fa3caa0fcda4a6314141e2d019
d08f43956f6859e4c2385231bb5506262257445f
a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: e8b062cd-a2e6-4110-b97a-278c09aa3232
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE59oAMFx9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-02cac6b3417a8d2b028b8ca2;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mJxQBYHzPzTHN3jjom55KlSyicUPfqmpdriEWffRozt7jItlxS-TVA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 05:01:28 GMT
age: 21981
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 46134
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a1ddd54f3c344b36a26476a33ccfe20
3cc3a77f6a59cafed25fa0882e13644f4eebef50
65cef0476175fca421fef73419440b82dcb763879b79385f2cacc43f42b3237b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2530
x-amzn-requestid: 3ce99c09-61b5-4a51-97ec-c40c443238ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freplHVZoAMFz5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade3d-605687635e0a740e49ff78b9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TjYU3BsU2PsKUBuk4ZK6JOH3x9BBHltihOwtyFTZP7C1V6RdUGFDtg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:20 GMT
etag: "3cc3a77f6a59cafed25fa0882e13644f4eebef50"
content-type: image/jpeg
age: 45749
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 46542
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zTIOb8GbYU3-38UBlsbhdREhQ4dwFrporBjb--FSNOdz9fmVjss-hg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 09:25:18 GMT
age: 6151
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aspphami-dki.or.id/
200 OK 15 kB IP
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 708180358cfe656725fc4abe0e36d88c
96bee21b4164fa5bdd2fa1f5ae55acfb1a032fc4
3bf24c97e35c80643823a5f3993fe516ee4d7d9ea8d0f9c5f566bf49c22aeb8c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://aspphami-dki.or.id/wp-json/>; rel="https://api.w.org/", <https://aspphami-dki.or.id/wp-json/wp/v2/pages/1009>; rel="alternate"; type="application/json", <https://wp.me/P8a5o8-gh>; rel=shortlink
vary: Accept-Encoding
content-encoding: br
content-length: 15351
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 11:07:48 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
200 OK 907 kB URL HTTP/2 media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
IP
File type GIF image data, version 89a, 480 x 270\012- data
Size 907 kB (906802 bytes)
Hash 7e82a0d678f579e0ac6b48f0214971dd
9a5fab39b50c6f8ee6cde9824c601326811fe5bd
b9b0c1c6528a199af3da52c4ddca0a71639bc77a9f2e085bfb38447833878a45
GET /media/cMEJTMtj9j1QITc4nx/giphy.gif HTTP/1.1
Host: media1.giphy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 Dec 2019 14:21:42 GMT
etag: "7e82a0d678f579e0ac6b48f0214971dd"
content-type: image/gif
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 02 Feb 2023 11:07:51 GMT
age: 1408287
x-served-by: cache-iad-kcgs7200034-IAD, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1675336071.157046,VS0,VE1
strict-transport-security: max-age=15465600
cache-control: max-age=86400
content-length: 906802
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash 28903a6cbde97cddf31d060059133010
15540bc37054cc0862952e07645b62459636ac45
56fd0347888d99d2a7190651d44404b61906ab43bec9ad0673e7226e5b5cc10b
GET /recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 11:07:51 GMT
date: Thu, 02 Feb 2023 11:07:51 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
200 OK 5.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash 9e633602430a663f8926961867113857
b6cf5032ef6298fc65f80dd12b400f8df0a0209c
bc88243f60f54ce421990014ea88164f08706ccc921a2f52a0c7f5fb622a090c
GET /wp-content/plugins/instanow/assets/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2016 02:31:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5013
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
200 OK 3.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 4a059b9209f7a198387e0a8dc32ffb97
cc11280a0b39cbdaaf823ef484ae132fc402ed42
70d70d0c99dc35188661c8d1c2a4809b7a5ebe63b99f99b864843ca3ee18d4d0
GET /wp-content/plugins/photo-gallery/booster/assets/css/global.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3211
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-156598198-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-156598198-1
IP
File type ASCII text, with very long lines (1759)
Hash 759dbd524be19f9f4effb4a279bfd777
039bab3a044f02d964e06bfacfd0c47f6269178d
3d9dd6668c03d5d8d8147e0f433eb7304ad8390a6ddadd199784bfc715e168cd
GET /gtag/js?id=UA-156598198-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 11:07:51 GMT
expires: Thu, 02 Feb 2023 11:07:51 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43929
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
200 OK 982 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 Dec 2019 03:16:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 982
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2397
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (47826)
Hash 5e3752655a7a33c049db06c0edf386e6
573c51b0de413f30a220c9261506635f9daf2b81
d6571c641370e9bb83b25b5a493fca6ae3109ae384f7a8a9507ccdfb9067627d
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11590
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/css/classic-themes.min.css
200 OK 145 B URL HTTP/2 aspphami-dki.or.id/wp-includes/css/classic-themes.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2dfb9ddeabe846b150087876ceb22a74
c9e3350631e53855d04d6dce360a675c84b3131d
26ef5cb63a695419cf11c79a759b46c5568df3716e4f1d36e7612b3695d5b554
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 145
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
200 OK 870 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 6e1861555b0cc8895850f17c5b68b361
9f6efdec40c3b2ed701b188d2373947617c93430
b7f19ee462c0657acde75e1e2230913b5baa2b101a1a3c49b48d08b1a8a6bcd2
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 16:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 870
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
200 OK 1.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (7609)
Hash 33ae2e7fc9cebb668a16d69092d392d8
ad12ad8658c221f932d53063c6028bf2eeaaae83
a1ec326b7faed25b94c819aff4fe7cc60cffa81147e3faf7f3d957d411bb0486
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1900
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
200 OK 789 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2e74e7d05f5c8bdbf544b9b73fe6c887
9c200d7eab4781440a5e644344db58d2d2848f76
6f69ba3b2c3665833fc4675b4aca695ace2ec28bc952522133488d087a462948
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 789
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (42839), with no line terminators
Hash 72f91a39c592f153826943c0c812f844
7ab17a04ea2c455f85db2e016ebc57ba706074c8
726d33d3d04e52f2eba62692c6e4f38e93d54f4e53e365b586c26f1adbd0f8a3
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3812
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/5.gif
200 OK 530 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/5.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 0718e6dc38f887fbddd8496ea46f80d8
64cf8f9e60aed714d68a539dd0f8222f4d43a178
b1231b6d341e5bdab414150f34a3cda89eb7c139b409363cd0a812e927e26f8d
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/5.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 530
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
200 OK 2.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 62fd26ba0f3afd2f29fd8598809c007f
f4143b66e46d558cdb3ece8abbe45774969078c8
0275052289528e4521ca57360ac80c02e85fd50fb9492c21dfce1c8a8407c5a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/global.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2294
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
200 OK 1.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 6bb522141185cacc5528778100681577
77cc2f1066c18b91fabb17d0c38fa6d06b923853
155871907ba4d22e117d839d7130e9ce47717ada12e094f9b24627ed41a23469
GET /wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Oct 2013 13:21:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1196
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
200 OK 4.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
Hash 97c883c677574fa42cadf2fb5dc9ec8e
59d87b563be66e52a60de3f546e71fd13a268867
8011dda8c4364bc94801cd6fb8d01e26c399ba9455e7bdf7397bbe3653ccdb07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4254
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
200 OK 196 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 573c3f5acc1e799e59c6a9895cf2d84f
f6bf177d896025c716535154f239ef2f7acc8802
47c06ad2fbb3b5d7c389c5b2439b8f35a718d0ad5e251603b84fff8410701302
GET /wp-content/plugins/mechanic-visitor-counter/styles/css/default.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 196
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
200 OK 8.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (25075)
Hash 21504d4151d84f4a776fca56a5caa442
a41463e5b623972952077f1cf602374e67621520
3eaa4b5f64cee76d631e4b0990294a8bc5af448139628485c4fde96f50f61b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8763
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
200 OK 2.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 14c0c8f6e08d1adef360e265482a157f
a27ef5bacbac54593bd9ba068862a4f6def26780
6a8feab74d7a9f9b0022d7bff80eaaf9c17b8fdfcadfc3ba347d10e8ce7618d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2020
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 4.0 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3998
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
200 OK 7.6 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1518)
Hash 29fa40a22a17ec4ad3662699ca8a9e35
49eb53ec8441e7825ebf15bcde0cbd398b500054
c1f54649d3329ed21e8ddf95b0524654ec046704570abdec442268714c567455
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7553
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (32561)
Hash 57815a83614a2848f4882e6e9e6e5aa3
ef2a56c0dc73bb65cd055a97e3a684d7778aa334
f41bc0a2cf64594c4320a4444959b41a63827e2dee943c2fc08d6f58fcdc4612
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 04:23:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11306
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
200 OK 6.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (45071), with no line terminators
Hash b49a55a386006a5b4f82d6d38dfeaf1c
e00c77f12015e197d9e45bb9de9c693400dc1a94
36f532fd3f6ee61ff393a264bdd97306f82c08e64b9087a99fec2afdde0c1db9
GET /wp-content/plugins/photo-gallery/css/styles.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6773
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (32001)
Hash 3d483cdd677f67a09bd1508ee6d5d64f
2b35746e32b7cf2069f44e793b2303bed89b2f84
1cb39659ec11d6300d173c5a50150364c69fd1eca4d3641d1f5ba770e0a81d02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12374
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
200 OK 16 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash cb96571a8a4b67fb4bf268234f5bf318
fec4550ca7eda671380162fc5615c0ab4fbee476
277aea95c9efacab03cae9176d7802e347048a4b6bbf6792dbb5352ba9e12413
GET /wp-content/plugins/jetpack/css/jetpack.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 15694
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif
200 OK 509 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash a0ab337f60e551f5984731c4108b5702
3a6a12edf2992311ed6a7ffc65ee2020494b1149
d260926fb99df290de26b91bf8e178c93b4da7306baa8bd4db6a1ef85f507b6d
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/4.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 509
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
200 OK 30 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65447)
Hash fb1aea2f7ce09f9d2e290d73d57defdf
62d40e64c8aeff20834868816d20d6a645fd2565
367cc15d582c7056695a307c1ef9b32a9e4810c16e33f27eac05909a1f57d4b4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 30350
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
200 OK 31 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65536), with no line terminators
Hash f3bcf6f7a6c750ed17a8b733c272506e
de7ff1248c22dba492fe809466fb76053ad02be2
7cc165aaa8723a7ef2a09088b4bb30e629ad17b0043cfa7b20dcdc9a8ce94681
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 04:22:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 31324
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/style.css
200 OK 34 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/style.css
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (28229), with CRLF line terminators
Hash bc9071737e3177bfe0789e5e6c158dd5
6da5372fd8d03077f8dfa5e85bb5f666144a293b
46bce56f07cd5ea1aff045732076780edd9305e0b455d5dd26fc50f8f76968d2
GET /wp-content/themes/sahifa/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jun 2016 15:05:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 34096
content-type: text/css
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 333edf623cd4e8fc45019e8bcb808dfc
92971051833dda021e183d034929a3183ad00815
a43bcc3e490158ad2afefe405d315169d3ea6688ce7a054de33c9cd786c0925e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
200 OK 617 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ff2099d576b1be945c004603978a74e6
3c931f15a21f981cb075faef1521db0ac8f6681a
d0e2093c728340a03f4b352b75ddb1dd92ea1b4029e6d317a5608c3abd61518a
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 617
content-type: image/png
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 86c88c2ae0f2078c796de58f4774c24b
e83cbc82353c42126c10b09399870d227e66e55b
16276db5107db00d233ab72be0659d90c529d3d79e4ee37592d0a2247d35340e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
200 OK 399 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 895ac18afe3f1131c4c20aa6c8f30b79
ade54f548b21ffaaac4d31acd0ee1bbf044757bc
e27bf21a7727b4ed8780b743a7ef0021b5c378ae3c6f1e5d920cbcb8f13aeb7f
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 399
content-type: image/png
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
200 OK 502 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 66df1809892b38c8a174c0519603a123
1b338320ff6f8a3cc6d29e25c050ac83c008b469
4b0dbfb22a8a76f9e2c22e90c3c4421cde7162ae85cdd31d8158380eace939b4
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 502
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
200 OK 432 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d0a4de6c6ec8b1e0af3a869e6326b92
b9887a6963d5374f192e4c7ba57d1bf47f793e8e
d3282d528c0ad954cc592f0f2101db95c2df821b7d963c225b51c2666c55e029
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 432
content-type: image/png
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
200 OK 582 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fd5802ba72617db62905092af2a3bc17
feb55d519fc4038c794ec86f38529f516b1638fc
faebc963dfc07b96f7668f2cc4344020546924e2c9668f787d17f6954f5e9c90
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 582
content-type: image/png
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
200 OK 518 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 021741aa747d0db9d753f32961540b95
eb447414c4f94fbea94bfb31d5e9c8f3288956c1
a2ac6f3cfa2026b19afb6862bc5802968c2b3a49c29cf5024469208524ac7962
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 518
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
200 OK 529 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 44f111e1c5932ca8e8146974739d1ed3
5602a46739f5450ee5ca0110c3fa12ec46affa08
c3854d2adc094760108453dbec7c3fcb2b315e5cc46da9bfbab2901882c358a5
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 529
content-type: image/png
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
200 OK 716 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, baseline, precision 8, 1140x360, components 4\012- data
Size 716 kB (715788 bytes)
Hash 650a68fc60b7ce839f4cc613f2c01107
90b996f24ac6788c026782b22bdaecfc34d09307
b0f57c7041677a72960ed873d910a79f633c4b6bbc014fdb87fcb6328265c78f
GET /wp-content/uploads/2020/11/AA.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:38:44 GMT
accept-ranges: bytes
content-length: 715788
content-type: image/jpeg
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
200 OK 574 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fed768e65e7e7c4d6cc343cc5fd8d1b
6c909d5d0c4fc7a4c9f13db439abb787e227fb0b
6ac8563bea8e15601f5e4fc011d56c9fd46a9301d7168229bc70a88cec2f3bdd
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 574
content-type: image/png
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
200 OK 315 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (685), with no line terminators
Hash 90b6ed98e867cd14bff93b31e7f0af82
cc2162190788e5d8579eb5844f8ef1f12fe2a69a
8ccc3f277c5d05f7e8aa933156fcf66282133edd7e47d3774d68366bfd4a2a99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 315
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
200 OK 2.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7798717735ba8ccb8b11a9650e81f6e6
84c6a9d5d32905b98960d9dc9d111e48d486d311
fd6d9e22b1d26c2e6974198e43fd5aeb1ac03bab50c5bfcc7e12f07c74ec98fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 16:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2909
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
200 OK 2.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6875), with no line terminators
Hash f2bd7e399895d013c4e93845c0be19b9
a1fe0841205b550a4d41ae88bb92cc2e6bf9b76b
16db98ffe8ef5a8110299b5751ec58f377e6e420622d39f507f3c1f6c92a3fd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Jan 2023 04:23:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2220
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
200 OK 440 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (999), with no line terminators
Hash 7e0636eac344bd243faab84faf0c2e75
37644038940d000ba9496f5356cab0d71a760efc
bce5b2a964a77c6304d49f6dee21d34ab96d6856239fdc08a0bac6cf998380d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 16:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 440
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
200 OK 3.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (12761), with no line terminators
Hash 416635f32a69011f06e29e39b4e60dce
41c2bde8a025c11062f7d4224284af56cd3fb8b1
081d9eb01bdcc6dffdcf67734e7da67a1bf8dd23525f7fee2164b74581ddfae6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 16:22:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3879
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
200 OK 3.4 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash c833e5d89f100bde8eff1946939061cb
220065fd9ca877811822887ddf476417ace3bc2c
e894dad546a9605e4a6a644e47b87ef7c0439a6a1695cba4672fa29342d50411
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/search.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Jan 2015 17:13:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3394
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6475), with no line terminators
Hash fd9569e5d4d99499e7712f61cd673089
96c465e0479831743968bdd243bd3bcbfaaa6e44
ea064fac3384ce935085b6a08a0b5379be3b747b3ce9ea87b6c9d41d1cd93f02
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2362
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
200 OK 6.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 68ac7f65718f620d2a08c8dd44990aee
51864b639a094231cd78cde224b119cb920d7d11
cfb9e332da756003e32aaf8503cd187ac0307b74742742e38348fe783a655b14
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 03:03:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6352
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
200 OK 7.1 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (24374), with no line terminators
Hash bcb3e6b0ef3c83d1a8e4ba9d7c9c5c40
de7686b62e21759c21e5a7c6c96731a55ca5b944
15acca9f4358ba1d2e6aa3cc99ca6cd721fa891bb4ab550359cf748fee500828
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7093
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
200 OK 4.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
200 OK 22 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65336)
Hash 64dc0c639c8f6d238e5291015ac36930
bddcbdd2865e18793691aebe6c4aadc70f22fdb3
09d327353291ce47759b6538d610b0d5cc7cf0e0e844dfb4b88c347d52623a1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/ilightbox.packed.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 Nov 2015 16:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22100
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/tie-scripts.js
200 OK 23 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/tie-scripts.js
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (14222), with CRLF line terminators
Hash 842f622adee5eaa8df587a8b9cd85b6a
5fd42e411b08a3a5809232805b32347705f6277a
05af7a90fba0305089ced6f5c13fcc20ca7bde0521c85bc5d0a2c6a7bb71a5b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/tie-scripts.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Apr 2016 00:01:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22640
content-type: application/javascript
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
200 OK 21 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 264 x 264, 8-bit colormap, non-interlaced\012- data
Hash b40e39a8e3747e74f4dfcf6d88ecc535
17e825efe06f1d04a8a3c398329d51b0ddf14b53
7a6ac6e588a725241e6f43feaad46fb36de9682576f5f29c570edc3ec5247477
GET /wp-content/themes/sahifa/images/patterns/body-bg7.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jan 2015 19:28:34 GMT
accept-ranges: bytes
content-length: 21146
content-type: image/png
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
200 OK 1.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 30 x 78, 8-bit colormap, non-interlaced\012- data
Hash 2ca35c0c6c0a17872bc7c6ef7fb1d6e5
6504abb26cf52c2250ea8e9c5645bb9439cefba9
6039cdb2c8028b73ddb9d711e7eb22834a8e11ba865283a7ed2fd2c75a401040
GET /wp-content/themes/sahifa/images/home.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Jan 2015 13:15:38 GMT
accept-ranges: bytes
content-length: 1022
content-type: image/png
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
200 OK 93 B URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 12 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 51386a2f66885faebd7ce34fceee3c7f
d428fb21cb1c35bb8d1a579df9aa7034c62f8e61
23c79bb552706be2ca97bdb259921e3269a5263326b147676c2f7909a45b58c9
GET /wp-content/themes/sahifa/images/stripe.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Sep 2012 13:24:44 GMT
accept-ranges: bytes
content-length: 93
content-type: image/png
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
200 OK 72 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/fontawesome/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 May 2016 09:44:26 GMT
accept-ranges: bytes
content-length: 71896
vary: Accept-Encoding
content-type: font/woff2
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
200 OK 20 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
IP
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format, CFF, length 19996, version 1.300\012- data
Hash 07db5c04835629ee7284a0481197443d
9f56f7e1b14b89828393aef3ff581a4a22320af0
e8c2e4d6ab0ad2f055a6cc3c777d31531e665758db5ca815f2613afad72f7088
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Feb 2015 20:13:40 GMT
accept-ranges: bytes
content-length: 19996
vary: Accept-Encoding
content-type: font/woff
date: Thu, 02 Feb 2023 11:07:51 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/03/IMG_5979.jpg?resize=110%2C75&ssl=1
200 OK 3.1 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/03/IMG_5979.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 739efcff7c2e722f44d14dfd8404dd0f
5917d2f2ef3455ffde1b42e32291e58e7fac19f1
58781ed823fbc90e6494306b274ce5fb1d6933c99acd84cd4d02c40e78d8b569
GET /aspphami-dki.or.id/wp-content/uploads/2021/03/IMG_5979.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 3100
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2021/03/IMG_5979.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5ee2cdc6b8973dbf"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_3505.jpg?resize=110%2C75&ssl=1
200 OK 2.9 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_3505.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 07dd4a7b237ee50aeb4169fa766fc080
ed89da5dc90ba3670db72291b96beb09d8f0b8db
f814be71f69d276db712b5abc19f9c8573dd06081b15bce98889b6b64187b92f
GET /aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_3505.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2916
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_3505.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "cac32abd00420e4b"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_2801.jpg?resize=110%2C75&ssl=1
200 OK 2.8 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_2801.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f9f88f1571093bd2b91629b91e109033
cf03aa53c3b75968ef2d046d1c1f97cb91f32a32
f92a80f59dd27328c1992c99ae55cac61e9683ce47b8381247ceb211fe1b64b1
GET /aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_2801.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2766
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2020/11/IMG_2801.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ebc2b50ad66eb93d"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/06/upload-6.jpg?resize=110%2C75&ssl=1
200 OK 2.9 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/06/upload-6.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c505dd9e970b472d6ee54b2108aea2ea
43c3098bdde0e642ad3efb38299545e74ce32e68
a95f91b5f3b32d04c4856778adb578488da922db738b0cb1888f3173f8ce74d5
GET /aspphami-dki.or.id/wp-content/uploads/2021/06/upload-6.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2932
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2021/06/upload-6.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b9227ced3fc5518e"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=110%2C75&ssl=1
200 OK 2.0 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash be09c2ac8f3a451a75e8d3bfbe275db2
afb8fc34bf58a72889432d523321485539374dc6
aa5a64365ff6ed9dbb0bd91c3a4bb432b74b284b161cef9593d6a91ff8d72cea
GET /aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2030
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "7e4670beaa9a2b47"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/04/MG_6251.jpg?resize=110%2C75&ssl=1
200 OK 3.4 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/04/MG_6251.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bbfc5429c3c1952bbd23c0fe4e041758
46713f5291461100d33169aca4baace771868047
6481aae9f66d73705d1455b3bea1ccc11042b1aa32f666fc67297963c65893bd
GET /aspphami-dki.or.id/wp-content/uploads/2021/04/MG_6251.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 3434
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2021/04/MG_6251.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9047df6a0c0b168b"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/08/EDIT.jpeg?resize=110%2C75&ssl=1
200 OK 2.6 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/08/EDIT.jpeg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8334264e5dde8decbd5833284c89e6d7
da105bc0017362ac31f0e8f3ce2245f447774930
87a007f52041b900e4731244d891a0f6c41adaafb1dcb5cb3fad46c6ee274183
GET /aspphami-dki.or.id/wp-content/uploads/2022/08/EDIT.jpeg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2578
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/08/EDIT.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "ceee3be0e08df536"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C165&ssl=1
200 OK 15 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C165&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae50caca45cbb2654cd3465751bc07a3
847be53bdb53b4c54414773910041de753e14b15
e5faa99c9c86907f89cda37859f19bed81cd95202c7afc4f0deefe4d88be4b26
GET /aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 14746
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f372cb73b1ee710c"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C205&ssl=1
200 OK 17 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C205&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x205, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 202a4465e01329de7bc7197f09600d4a
f5db2b1c6fc388f57f1a74d777ef1dc9a58defa6
97b7967ecf9dce05256f8cc22eff74bfb62e7ff1d6fd29f75e2c0644610f4d64
GET /aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=310%2C205&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 16896
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "995b6556af4eb1a6"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/04/IMG_20220321_085013-scaled.jpg?resize=110%2C75&ssl=1
200 OK 2.4 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/04/IMG_20220321_085013-scaled.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d0a78ae9d11f928db3ddc33d9360a4da
d9d23c751ff103220825efccca6659988dd3b9a9
34112bdf67e42b0ad44e6eb2eba5a6bf2c03da0d1b562dbc309cd3eab590e9dd
GET /aspphami-dki.or.id/wp-content/uploads/2022/04/IMG_20220321_085013-scaled.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2356
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/04/IMG_20220321_085013-scaled.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8d8c3fd7243199c5"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=110%2C75&ssl=1
200 OK 2.1 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9d9c1440b7eeab34637853b79b3472ef
e3079168c81cb7d1442f1a71067a5d34f26d88c2
f42c8d345b5beebd9c78605058eb9e697af17c82e67322de12f9d2ecf82576ce
GET /aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2098
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "e81318a4eba05e10"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
200 OK 756 B URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 118f4aa5df75ca98c7e06b07ee64646f
3211457f6addab16236baab27a0e3a78b522482d
fd654663c0e4302ff28a11f8c4465942b9dec7279aa4f2a2c72ec8aa9be3229f
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 756
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "966b12543ef64b2a"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
200 OK 13 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 987da7c7dd69f6f24c4ee56f2624da00
191d2b68e49b0d05619116c073280a71514fe005
46c51c5b9f40f44dc0989d595caf8a2de02cc02acf78b3803d8a371997eb8208
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 12872
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "78237b607083c3cb"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 09:44:08 GMT
expires: Thu, 02 Feb 2023 11:44:08 GMT
cache-control: public, max-age=7200
age: 5024
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 237498
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (3642)
Hash b97ef4350c48bed68c8f9c500d0dd2fe
d53961c16ba39883b44b7cd97c176cfaf20f884b
0c8a91b1f152133191b69dbbbea70dcd9ed791ddfa381c226ac61f92c1587094
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 11:07:52 GMT
expires: Thu, 02 Feb 2023 11:07:52 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15012160993837177725
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50050
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/05/IMG_9773.jpg?resize=110%2C75&ssl=1
200 OK 2.4 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/05/IMG_9773.jpg?resize=110%2C75&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 110x75, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6660969f8893d2f6e0c5d70d2b7a8d31
fbbe1f337f4ec5f6684f8102d88f023427d7baf7
57ad76c5f3a1a5168d868e3a725bba369127e7bf8fb23af208a095495686acf5
GET /aspphami-dki.or.id/wp-content/uploads/2022/05/IMG_9773.jpg?resize=110%2C75&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 2354
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/05/IMG_9773.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "07fb30b6c0d8a916"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230131/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:56:08 GMT
expires: Thu, 16 Feb 2023 00:56:08 GMT
cache-control: public, max-age=1209600
age: 36704
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=660%2C330&ssl=1
200 OK 25 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=660%2C330&ssl=1
IP
File type gzip compressed data, max compression\012- data
Hash a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b
GET /aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg?resize=660%2C330&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 11:07:52 GMT
content-type: image/webp
content-length: 41968
last-modified: Thu, 02 Feb 2023 11:07:52 GMT
expires: Sat, 01 Feb 2025 23:07:52 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/10/Invitation-INAGRITECH-2022-2_Page_1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8c94ce84b4c8c124"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
200 OK 259 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
IP
File type ASCII text, with very long lines (403), with no line terminators
Hash a550855741f6cf4b898f775d4e7a30f4
980a948ef3af9e1b2f1e1aa8f85ed8f4881a0727
3544acee658b7835053fe189b14c4a8a4edcd00b9423189b1e76558415dda0d1
GET /gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 11:07:53 GMT
server: cafe
cache-control: private
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 11:07:53 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 11:07:53 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 566390
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 11:07:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 02 Feb 2023 11:07:53 GMT
expires: Thu, 02 Feb 2023 11:07:53 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:40:39 GMT
expires: Fri, 02 Feb 2024 00:40:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 37634
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6783
x-amzn-requestid: 5ab60169-ec65-483a-828b-3312c74ee4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BGjqoAMFV6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-73a465244f89adaa27626246;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S012XKdrl7ID1qnfD-G2fcAxWoseP_mAnaDi12Y-UmdBW8yXgGlpgQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:46 GMT
age: 46149
etag: "6c0cb65a477d6bc7d013529411d5735bd39e3d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
IP
GET /css?family=Droid+Sans%3Aregular%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 11:07:51 GMT
date: Thu, 02 Feb 2023 11:07:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
IP
GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 11:07:51 GMT
date: Thu, 02 Feb 2023 11:07:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
200 OK 0 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
IP
ASN #136107 PT. Tujuh Ion Indonesia
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 524
content-type: image/gif
date: Thu, 02 Feb 2023 11:07:50 GMT
server: Apache
X-Firefox-Spdy: h2
103.112.245.8
34.160.144.191
95.101.11.115
0.0.0.0