{"report_id":"7fcba96f-e7e6-4628-9132-c47de990a027","version":6,"status":"done","tags":[],"date":"2023-09-21T09:43:04Z","url":{"schema":"http","addr":"103.120.175.20:7800/login","fqdn":"103.120.175.20","domain":"103.120.175.20","tld":""},"ip":{"addr":"103.120.175.20","port":0,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"final":{"url":{"schema":"http","addr":"103.120.175.20:7800/login","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"title":"CA \u0026 Fleet System"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T22:54:01Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"use.fontawesome.com","ip":{"addr":"172.64.102.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":942,"first_seen":"2017-01-30 05:43:25","last_seen":"2023-09-21 05:22:52","alert_count":0,"request_count":2,"received_data":130958,"sent_data":1017,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-09-21 05:48:25","alert_count":0,"request_count":1,"received_data":2372,"sent_data":433,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2015-04-17 22:46:33","last_seen":"2023-09-21 05:12:35","alert_count":0,"request_count":2,"received_data":6551,"sent_data":916,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":175,"first_seen":"2018-07-01 08:43:07","last_seen":"2023-09-21 05:09:09","alert_count":0,"request_count":2,"received_data":1398,"sent_data":666,"comment":"","tags":null,"fingerprints":null},{"fqdn":"103.120.175.20:7800","ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":8,"request_count":8,"received_data":1029794,"sent_data":6612,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.ionicframework.com","ip":{"addr":"172.67.69.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2013-09-02","domain_rank":14473,"first_seen":"2014-02-05 18:09:16","last_seen":"2023-09-21 09:17:34","alert_count":0,"request_count":1,"received_data":365071,"sent_data":452,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"103.120.175.20:7800/login","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-07T15:57:26.609448Z","times_seen":14794715,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/plugins/jquery/jquery.min.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":false,"md5":"0732e3eabbf8aa7ce7f69eedbd07dfdd","sha1":"4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f","sha256":"ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b","sha512":"41d24c426abcf913be59917591d906318a547661280036b098a2b1b948bcf9ff14f268b140db10956730d64a857a61b81034d888ed7f857419dee6b8d327447c","ssdeep":"1536:ejExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vE:eIh8GgP3hujzwbhd3XvSiDQ47GKq","tlshash":"e19309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89503,"data":"","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-05-07T16:03:42.436631Z","times_seen":18645,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/js/app.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":false,"md5":"6527e842b3df1e82f266724e72662156","sha1":"944df77be8faadb718d2e7ab295aae66c3dc4044","sha256":"e8a81e3955f57e277dff4bffd4ffa8d67277c9795b303e2ff48147d11d0ed6ab","sha512":"562b7fb2514ac4119fdb76477293646bcec727a42dd3c08f4246e72a6951d370a3206cef4329a1009730d42e4e240e08a928aef0f71727ba0151f007ae4ad6ce","ssdeep":"3072:3JpKq8YdQfMRWvKwaX56y5mXAIzKEvIeUR5TY8NWnsPyTYZY53mwxJr:33b8dfMRNxX5eXaRDN+0IZxJr","tlshash":"8c74f7cd7296b06243ab30b6407f540ff23a2d59680e8114f126e8e97c7995ea277f3d","size":356034,"data":"","first_seen":"2024-08-21T06:10:48.545294Z","last_seen":"2024-08-21T06:10:48.545294Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"67a516f6876a6d5a6acd917aabe0571f","sha1":"3cafb807a2d7fcf75a5092484795de52336ae1d0","sha256":"cb909329532746539d41f5fe0c5f508bbf8191744c706dd5969753aa14948bc3","sha512":"d1e5c6733679c02add10fd5ee5cabf27063897730f49f3b2aaa8d4898fc62b25844fa92e854abd5b29789c556564b54a8b5c0db0a1378b2cceae77019f8c4dea","ssdeep":"","tlshash":"0f9002ac3059760049b754a050375966b158087031c44d14ad16984c6871128913a8ad","size":50,"data":"","first_seen":"2023-04-12T00:31:29Z","last_seen":"2026-05-07T11:30:34.910344Z","times_seen":4177,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"eeee435db681920f200fc90a008d45e1","sha1":"ad4b09cccf377be57125a3d0f5593a285a4fe7c4","sha256":"0f015a777c4281048f37dba0de169fa4f7139b4bce6480b9b0d26510fe3a90e2","sha512":"9bef236b5cf66a7111f17565981fedd62932b364d26f0e7fe8acea1a9b6a3e3d59375a5e130dbe75e01acdc93b3b903a699bdbbb4fcf8ec6485c09eb447cf5e7","ssdeep":"","tlshash":"3461376314befaf6cd0ad40744ac6ab4e44a49fbc024a4c5f97ccc6447ddaa04b1f62e","size":3268,"data":"","first_seen":"2024-08-21T06:10:48.548714Z","last_seen":"2024-08-21T06:10:48.548714Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/js/admin.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e19a8c7ac50ce7dba8a48a71148f7ad","sha1":"bf2518468d5fc36dad975ea6d062eaa6efbb3d51","sha256":"d2acb30ae6b758902448c385a50eb7c317dee6894e1fdbd20ca7130725a23847","sha512":"9c6c3211acbcd6a63219efb1cd66b6df38bca7866d2aaadfdeabcafd5dfee4553d6fb2331414a2cec1f5ab7656e2adeb15bb7580e9fbbd00862acf48ae6d6014","ssdeep":"768:R3tin91tvX9cuGDeQhp8RqHJA1jhT89dGN3Yofz9SzVp:R3tin91tvX9cuGDeQhp8Rqq1jhsdg3Y9","tlshash":"2bb2d90cb314752a41fbb075d13f8d2ab93a951ac505806cb16da8ee1d6c9cc32a3f7e","size":25001,"data":"","first_seen":"2023-09-21T11:43:10Z","last_seen":"2025-12-11T18:16:25.216385Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b36f28de584845317de40a7219c82b1c","sha1":"6de8657c8782561bc023478ab708179ed846db1a","sha256":"ddb96c25de07962ffbc0243e6e68177ce74aee9fd950cb4f5d8d3c8e6c524a09","sha512":"54477e9eadb90a447aefa3bea4b0670d6d3d47b5505fd31d8a28f4e768150a9e72547de31ad1fbd07a3f514bf89890ec11d4efa91085660d0d2868a88c69d40b","ssdeep":"96:d7PCfRd4ZR1JHdOBjvZHEIY/X9oxNDP9mEL1RWBsEyJiJAsq/Aef2ifr6:xafROBt8j9EI8cN3WziYIxjr6","tlshash":"c7c19384b220f2875b739169919f241b973672a2ccce4510723ae99cbe7052897a7fdc","size":5537,"data":"","first_seen":"2023-03-07T01:28:39Z","last_seen":"2026-05-07T12:43:54.948025Z","times_seen":5141,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/css/toastr.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.835Z","timestamp":1695289368835,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/toastr.js/latest/css/toastr.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 21 Sep 2023 09:42:48 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 2672\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ffe-1a55\"\r\nlast-modified: Mon, 04 May 2020 16:17:02 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 60449\r\nexpires: Tue, 10 Sep 2024 09:42:48 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=657C%2Bu8J4kwLAzBpVerMqjLO4VKGDmIAK5xy4jUI4gjVIIeZ7RosqJAxaxn46zpFprXrtMsqPXq9gw7BLsS4ILhyyTfygAQwYl%2F5MF8%2BGSBlLX4BropPylwwTfUMKhTaN1g93%2Fa%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 80a15c3a194056cc-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2672,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (6454), with CR line terminators","md5":"bc96861d9899e4e68fb2e59c363d8c60","sha1":"573b1f76e7a9db37e4e0d1a59da78714e46bc2a2","sha256":"10d159adb573ca535b8275f1d27dc8d60fffd9678ee3b5f1a0f7b4be4a77342f","sha512":"bca331f149d793ad33530c949d43ccdc76d0a3c41f98dc7bfa5b70f0f9b9ccbbac9755c87f0731a3c0db582a8c18a69678dc5603ccabc79bf749a56932f47708","ssdeep":"192:u0sKZ6yjY1SqvKbBY8syRttzGjVMSbO68:u0s4pYH8PtMMSb78","tlshash":"aad17331db812629fed3811ef45966092e1be1b3e6ed5dae650fa1acc2c67d05c33284","first_seen":"2023-04-05T15:31:11Z","last_seen":"2026-05-07T11:14:38.817319Z","times_seen":5051,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":2,"connect":5,"send":0,"wait":9,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-21T09:42:48.886800124Z","timestamp":1695289368886,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 21 Sep 2023 09:42:48 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"aff723341f53f020db1ba26e898bbd48","sha1":"23f915039b79b9247907a1395fa32f57cf3c1a41","sha256":"6e996d55d168ee427fb70dc93c074a42c5f6eebd2756fa1ed79341f73b44c455","sha512":"a0e1fc105fbc807d1eced86f3cac0dcebb7f2eba0a4d5f8cf5b84562a257a72bc0b7a11ebae38d63a1695f9ffad8deb6b762289edf5f03815872ac648549e307","ssdeep":"","tlshash":"97f0548406701c43c6a88e0c55f3f2243000292f0b7c4b44bc691b9143096db5288020","first_seen":"2023-09-20T18:03:09Z","last_seen":"2023-09-22T00:07:10Z","times_seen":1622,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/js/toastr.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:49.170Z","timestamp":1695289369170,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/toastr.js/latest/js/toastr.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 21 Sep 2023 09:42:48 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 1885\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ffe-15a1\"\r\nlast-modified: Mon, 04 May 2020 16:17:02 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 57759\r\nexpires: Tue, 10 Sep 2024 09:42:48 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=S3Gpxz16p8FYoM0AVohtFTeaBmrxLYExTVIEgzV%2FVmB2R9nTdigvzuxuBEB7ohRmxzyhCO5ANxElzfsuRlyjd2TwixXBSv474x5VTohtQrwkXDFNk52GuYNHU%2B34Wj37WCNOvN2P\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 80a15c3bfcf756ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1885,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (5215)","md5":"b36f28de584845317de40a7219c82b1c","sha1":"6de8657c8782561bc023478ab708179ed846db1a","sha256":"ddb96c25de07962ffbc0243e6e68177ce74aee9fd950cb4f5d8d3c8e6c524a09","sha512":"54477e9eadb90a447aefa3bea4b0670d6d3d47b5505fd31d8a28f4e768150a9e72547de31ad1fbd07a3f514bf89890ec11d4efa91085660d0d2868a88c69d40b","ssdeep":"96:d7PCfRd4ZR1JHdOBjvZHEIY/X9oxNDP9mEL1RWBsEyJiJAsq/Aef2ifr6:xafROBt8j9EI8cN3WziYIxjr6","tlshash":"c7c19384b220f2875b739169919f241b973672a2ccce4510723ae99cbe7052897a7fdc","first_seen":"2023-03-07T01:28:39Z","last_seen":"2026-05-07T12:43:54.948025Z","times_seen":5141,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-21T09:42:49.274431025Z","timestamp":1695289369274,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 21 Sep 2023 09:42:49 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"aff723341f53f020db1ba26e898bbd48","sha1":"23f915039b79b9247907a1395fa32f57cf3c1a41","sha256":"6e996d55d168ee427fb70dc93c074a42c5f6eebd2756fa1ed79341f73b44c455","sha512":"a0e1fc105fbc807d1eced86f3cac0dcebb7f2eba0a4d5f8cf5b84562a257a72bc0b7a11ebae38d63a1695f9ffad8deb6b762289edf5f03815872ac648549e307","ssdeep":"","tlshash":"97f0548406701c43c6a88e0c55f3f2243000292f0b7c4b44bc691b9143096db5288020","first_seen":"2023-09-20T18:03:09Z","last_seen":"2023-09-22T00:07:10Z","times_seen":1622,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/js/admin.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:49.166Z","timestamp":1695289369166,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/admin.js HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:42:59 +0200\r\nConnection: close\r\nContent-Type: application/javascript\r\nContent-Length: 25001\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25001,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (24768), with CRLF line terminators","md5":"7e19a8c7ac50ce7dba8a48a71148f7ad","sha1":"bf2518468d5fc36dad975ea6d062eaa6efbb3d51","sha256":"d2acb30ae6b758902448c385a50eb7c317dee6894e1fdbd20ca7130725a23847","sha512":"9c6c3211acbcd6a63219efb1cd66b6df38bca7866d2aaadfdeabcafd5dfee4553d6fb2331414a2cec1f5ab7656e2adeb15bb7580e9fbbd00862acf48ae6d6014","ssdeep":"768:R3tin91tvX9cuGDeQhp8RqHJA1jhT89dGN3Yofz9SzVp:R3tin91tvX9cuGDeQhp8Rqq1jhsdg3Y9","tlshash":"2bb2d90cb314752a41fbb075d13f8d2ab93a951ac505806cb16da8ee1d6c9cc32a3f7e","first_seen":"2023-09-21T11:43:10Z","last_seen":"2025-12-11T18:16:25.216385Z","times_seen":5,"resource_available":true,"data":null}},"time_used":1261,"timings":{"blocked":191,"dns":0,"connect":197,"send":0,"wait":227,"receive":645,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/plugins/jquery/jquery.min.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:49.160Z","timestamp":1695289369160,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /plugins/jquery/jquery.min.js HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:42:59 +0200\r\nConnection: close\r\nContent-Type: application/javascript\r\nContent-Length: 89503\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89503,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65446), with CRLF line terminators","md5":"0732e3eabbf8aa7ce7f69eedbd07dfdd","sha1":"4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f","sha256":"ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b","sha512":"41d24c426abcf913be59917591d906318a547661280036b098a2b1b948bcf9ff14f268b140db10956730d64a857a61b81034d888ed7f857419dee6b8d327447c","ssdeep":"1536:ejExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vE:eIh8GgP3hujzwbhd3XvSiDQ47GKq","tlshash":"e19309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-05-07T16:03:42.436631Z","times_seen":18645,"resource_available":true,"data":null}},"time_used":2415,"timings":{"blocked":197,"dns":0,"connect":197,"send":0,"wait":227,"receive":1794,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/css/app.css","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.823Z","timestamp":1695289368823,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/app.css HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:43:00 +0200\r\nConnection: close\r\nContent-Type: text/css; charset=UTF-8\r\nContent-Length: 145376\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":145376,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (65255), with CRLF line terminators","md5":"c13edbe07a5fd87fbb9c303f7aa1f1de","sha1":"e22aced7d4b0fc936487ff151322cbd6802167b8","sha256":"a97ddcc408cc34bb0f8d69943205911da2dc5f0287563b9729c5eab753b62db3","sha512":"6726a55f29505c774c4775a44b9890b9df03cfa3b2a7b8bf75263430584e18c32d2f0c52a23bab358fb392dbd3f6460e405f9ccb59a0f307de836df2768191f3","ssdeep":"1536:2Vf+tpBjhCzDEBi8uGc3JEMvLTYDn5q3SYiLENM6HN262:8fHE5q3SYiLENM6HN262","tlshash":"ebe3a6d6f5603029e4a7c65960d0beba152f8241e7264ffbf4277b648b892c70973e0d","first_seen":"2023-09-21T11:43:11Z","last_seen":"2023-09-21T11:43:11Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4078,"timings":{"blocked":173,"dns":0,"connect":192,"send":0,"wait":1404,"receive":2309,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css","fqdn":"code.ionicframework.com","domain":"ionicframework.com","tld":"com"},"ip":{"addr":"172.67.69.29","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.829Z","timestamp":1695289368829,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ionicframework.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 01 Apr 2023 00:00:00 GMT","end":"Sun, 31 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"F0:95:87:C3:E4:A0:31:2D:83:93:BF:FD:9F:E3:6A:84:64:FB:AC:2E","sha256":"4A:98:D0:6A:D9:1A:AA:96:9E:DD:6B:59:62:71:6B:91:40:DF:9A:7E:85:65:EB:58:0E:0D:55:6A:60:FD:68:87"}}},"request":{"raw":"GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1\r\nHost: code.ionicframework.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 21 Sep 2023 09:42:48 GMT\r\ncontent-type: text/css; charset=utf-8\r\nlast-modified: Thu, 13 Apr 2023 16:20:19 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"64382bc3-c854\"\r\nexpires: Wed, 20 Sep 2023 02:37:39 GMT\r\ncache-control: max-age=31536000\r\nx-proxy-cache: MISS\r\nx-github-request-id: 3B94:8406:E16C77:E7B298:650A5899\r\nvia: 1.1 varnish\r\nage: 13762\r\nx-served-by: cache-bma1679-BMA\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1695275607.870533,VS0,VE1\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 39bc44ff8248a171fd1e79d34925a8b6a794ee8f\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=ifj7rZ7FSKllP%2FkYVyQSFoQ1ZUK97dHJNw7QJzi4KhxOf4beeaMQ2DAVHd3fRZ6lClxMOJlJ8rCU1%2FssByfm2JwQr8L6v9lQ8tl47dtZzszRIp1IYEJTCjf4miLz6V1gngXXuDLkNqOI\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 80a15c3a2d73b4eb-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":364039,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (50806)","md5":"1690997909aae14b023a6580d4a2f33f","sha1":"a4fd9551382a3b5c9c43e14adb8c4c4149cd2352","sha256":"92ac508220f5bb60ec94e07650528eb66625f82a4740ada068cde05365781286","sha512":"617658dbe762b0f4c1a6433c90ea2fe21a0d27d431f00b2b216de28636066fc4653a23d0b6cccc53b9abbd5a234e3416dcb8296b7f0dee0ceba1b45ce99a2bcf","ssdeep":"384:R48w+hhJhjRqFdtYRjJIjsjaHnNfc2C4741mf5HRzL:R4YhhjQFduRjJ7uHFcu7Smf5xzL","tlshash":"db33f8e4d20c0dd0ab35c447ab49674858b5f7fbe4584ca8e42fd4ac39cb224a3e5b6d","first_seen":"2023-04-06T14:37:11Z","last_seen":"2025-03-01T14:49:08.82922Z","times_seen":1552,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":37,"dns":31,"connect":3,"send":0,"wait":13,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/css/admin.css","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.825Z","timestamp":1695289368825,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /css/admin.css HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:42:59 +0200\r\nConnection: close\r\nContent-Type: text/css; charset=UTF-8\r\nContent-Length: 393226\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":393226,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (65148), with CRLF line terminators","md5":"83e60ea66a743c1b98831d9a24defc8c","sha1":"28826702f118ae36fcb96e67d9386f60ead764a5","sha256":"bb70aa43298a3d63dc1563722953af67c8c5d61d109addc7f06057ecdb3a5048","sha512":"8b117d73f2e7c44bc9bee99378330df4454441ac89f3feae7791086fb33a702b6524d8354ff2a30236bcd5f6f87a03bf4418be9bca91f669084ae0cf76b0d6e7","ssdeep":"6144:X/CMq3SYiLENM6HN260t52YW09Q+NwHGBFgZQdx+CzOD92+z+juhZJtjCT/yyPrK:kOY","tlshash":"a684c619b1b2347df097ca1da4d8b6b9061f9199d2210affba6f33584b896cf4473d08","first_seen":"2023-09-21T11:43:11Z","last_seen":"2023-09-21T11:43:11Z","times_seen":1,"resource_available":false,"data":null}},"time_used":9848,"timings":{"blocked":173,"dns":0,"connect":195,"send":0,"wait":810,"receive":8669,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.7.0/webfonts/fa-solid-900.woff2","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.102.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:58.554Z","timestamp":1695289378554,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 01 Sep 2023 05:27:58 GMT","end":"Thu, 30 Nov 2023 05:27:57 GMT"},"fingerprint":{"sha1":"23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65","sha256":"BA:12:2C:6A:8C:E2:62:74:B7:8E:25:03:6B:FD:DF:46:60:DA:30:5D:87:C6:A2:07:7C:EF:4D:98:30:71:4E:D6"}}},"request":{"raw":"GET /releases/v5.7.0/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://103.120.175.20:7800\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://use.fontawesome.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 21 Sep 2023 09:42:58 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 74316\r\nx-amz-id-2: uYpMTBfus9juIRTSjD1qjgZhAvrA/tDWGgnjrBaX1oMU30XBFlgOEWTnvtfbX3jAmdGMQWdoz9U=\r\nx-amz-request-id: 3QPPQ0NNNY7K06AS\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Wed, 30 Jun 2021 15:45:37 GMT\r\netag: \"52134b924fd61958f88323845deffc64\"\r\ncache-control: max-age=31556926\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=0PvxItrFDSN7vwlEN7kOsOKF1p8xoFkdmKthDVqhcSyuqFIx6p8I7FmPvLcOebraUUApU0IQLlrm2Ns3TClIbkEPTBlbChxhqjGILAS5dNCTWOAC5toXfr2TRNm2x8mC04MigAMX\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 80a15c76fc793860-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":74316,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 74316, version 329.30932\\012- data","md5":"52134b924fd61958f88323845deffc64","sha1":"cfccdf2c8be593220ea949989a5abc0b380ea2ac","sha256":"658cf43db24e9d4c57890e958aa74656a13139754de24f19e706f0a355279e4d","sha512":"c95cc6caf6c00079d72b565f929ef2afde882b3ca5eb40fb07bf6be97507dd3aa76f31281b383af21cd54f4934104bf6d29859949b1e32e4657f347aaa91d56f","ssdeep":"1536:FmpHVNed2v9kA6Tqjrqpah6g+SHQ9aKYFAinzbKH6XrneR4ah:Fmp3ed2v9zjrqpRSwQFAsbK6eZ","tlshash":"a57302b99b58cb7de6a769b22f01283179396f115036879595c83b84360ff483ef0b68","first_seen":"2023-04-13T08:23:55Z","last_seen":"2026-05-07T14:40:06.266954Z","times_seen":5709,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":33,"dns":0,"connect":0,"send":0,"wait":154,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/img/logo4.png","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.838Z","timestamp":1695289368838,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /img/logo4.png HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:43:08 +0200\r\nConnection: close\r\nContent-Type: image/png\r\nContent-Length: 1703\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1703,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 128 x 35, 8-bit/color RGBA, non-interlaced\\012- data","md5":"d8b144919ba3bbdd7674e937604206d7","sha1":"197dfc4f02acefcb465c4ab6787dc9b562053f9b","sha256":"ef026ea05779a2d24dcc94a35f63e9f4ed74d246e9efc520fbe19179be076644","sha512":"5f19e981c0eb05333a58694fba6a165192bcabc88480e871c0ad7b5dc0854eb12c8040f7b280a9db24285d2e636ff322041d795c80e86bf87ee651beb2772a75","ssdeep":"","tlshash":"","first_seen":"2023-09-21T11:43:11Z","last_seen":"2023-09-21T11:43:11Z","times_seen":1,"resource_available":false,"data":null}},"time_used":10060,"timings":{"blocked":9640,"dns":0,"connect":212,"send":0,"wait":207,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/favicon.ico","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:55.113Z","timestamp":1695289375113,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:43:08 +0200\r\nConnection: close\r\nContent-Type: image/x-icon\r\nContent-Length: 9662\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":9662,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\\012- data","md5":"778a2f193fe92147ad0a3761358d2ff2","sha1":"f41092eb77fe8df57ef31d37d61b007031b5dc8c","sha256":"c0240f3d1a1d802f6fcbf8d3526501b8265711f9f536c21c319a5ac73540c5c5","sha512":"b759713dff74cd2fdcaaea2124f94a532e3271a9dca36b03554317d689027f9fc946f57ee3b7ecfdea1ac89738cc53c22de289d723e7bb582a6be5e992310443","ssdeep":"","tlshash":"","first_seen":"2023-09-21T11:43:11Z","last_seen":"2023-09-21T11:43:11Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4210,"timings":{"blocked":3365,"dns":0,"connect":212,"send":0,"wait":208,"receive":425,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Nunito","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.821Z","timestamp":1695289368821,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 14 Aug 2023 08:22:09 GMT","end":"Mon, 06 Nov 2023 08:22:08 GMT"},"fingerprint":{"sha1":"09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38","sha256":"51:9F:EC:84:6E:75:1D:8B:F5:23:58:A2:24:2B:C1:8E:91:C4:20:61:49:69:0D:3E:83:47:F0:3C:36:08:DF:BA"}}},"request":{"raw":"GET /css?family=Nunito HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 21 Sep 2023 09:42:48 GMT\r\ndate: Thu, 21 Sep 2023 09:42:48 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1740,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1780), with no line terminators","md5":"8d0ca3b40eb2a27620a70f14358d4f97","sha1":"9b0101009754fb7e015fd91bfe5130836c8309a9","sha256":"c420e66aeb609b5f6a569fbcb52033fab763c776da219cc35b4cfeb6cc691a58","sha512":"2a7ed9d71b39bdd60cf07f8af0a2b19ed36b43a060adb8259248870ba46e04281603daf150875018703d9166e8e7a8c8fd61e23761be378920fe31c8487f0586","ssdeep":"","tlshash":"1c31aa82181b914062531ed623df7a33ad4e761174715132ebfec89e9e9bc222364f5f","first_seen":"2023-09-16T18:02:42Z","last_seen":"2024-08-21T06:42:03.034236Z","times_seen":189,"resource_available":false,"data":null}},"time_used":683,"timings":{"blocked":318,"dns":1,"connect":8,"send":0,"wait":27,"receive":0,"ssl":322},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/js/app.js","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:49.165Z","timestamp":1695289369165,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/app.js HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/login\r\nCookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; cash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nDate: Thu, 21 Sep 2023 11:42:59 +0200\r\nConnection: close\r\nContent-Type: application/javascript\r\nContent-Length: 356034\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":356034,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-07T15:57:26.609448Z","times_seen":14794715,"resource_available":true,"data":null}},"time_used":7471,"timings":{"blocked":192,"dns":0,"connect":198,"send":0,"wait":220,"receive":6861,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"103.120.175.20:7800/login","fqdn":"103.120.175.20:7800","domain":"103.120.175.20","tld":"20:7800"},"ip":{"addr":"103.120.175.20","port":7800,"asn":63859,"as":"PT. Eka Mas Republik","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-21T09:42:47.852Z","timestamp":1695289367852,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /login HTTP/1.1\r\nHost: 103.120.175.20:7800\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nHost: 103.120.175.20:7800\r\nConnection: close\r\nX-Powered-By: PHP/7.3.1\r\nContent-Type: text/html; charset=UTF-8\r\nCache-Control: no-cache, private\r\nDate: Thu, 21 Sep 2023 16:42:58 +0700, Thu, 21 Sep 2023 09:42:58 GMT\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6Ik9xSlQvVkZkUEQvMWlmaGRobjdlaEE9PSIsInZhbHVlIjoiVklQWTNFTUp6eUlQcnRQWUVJazhLWDlLTHNZLys4UmE0Tnd3RzZGNmdXY0doNEFLN05ZTHdON0VqVHdkSlNpciIsIm1hYyI6ImRkOGE1YjBiYTBiOTYxZjI0ZTc4ZWY1MDQ5ZGEwMDg3ZTVkMDI0NTJiY2NlNjBiNWYxYTliZTVmNzI5Mjg4N2EifQ%3D%3D; expires=Thu, 21-Sep-2023 11:42:58 GMT; Max-Age=7200; path=/; samesite=lax\ncash_advance_session=eyJpdiI6Ik5VMzBHQ0x3SFoxQk1SNlFsVVRxMFE9PSIsInZhbHVlIjoiWkhJRGI5RHJtc3lSZnBVWnA4RVo5d1NlYWdyMXNPVXhlVTN1RGVJL0F6OWhlTHgyNUhGUlJQeWZlTVZhKzM1eiIsIm1hYyI6IjMyNzgzM2UxOGViZWYxYzQwYWFhMmU3NTQ2MGY3YzdhNzk0YzA3YWMwYjUzYmQ1MTRlMzI5ZmM2MGQ4ZjUwMWQifQ%3D%3D; expires=Thu, 21-Sep-2023 11:42:58 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7229,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, ASCII text, with very long lines (7829), with no line terminators","md5":"7e1d40d7e718dc152abb045b6d1ea26c","sha1":"c2cfb3a8bcbeadf90414fd61ad21783acca3b848","sha256":"71ee8b889e332e294cce8f7effa0ce076b47bfd9901984fed0bccfeac0fa427c","sha512":"ab93ab6959a42e020a49bf4321dbcef0b11b023b9298ff1cd46b4e4254f9544a54a14b7460893b0a340f5fc4fd1f088ba9ca9776870a75e4bdc7be3079630900","ssdeep":"48:0D+14g1U4luhh2hfhWgUMK4hJOpQFLeP1wM5nzM2h++d8+OxLgMB0dM1o9NlFh8R:yfLuhFmMxLh/1MNqwMSLxxAMZK5v","tlshash":"e4f1cd2e5c1db13a560284ad79f46e3bfd1af844ce3a848172ec46dde7c6a50cc67e60","first_seen":"2023-09-21T11:43:11Z","last_seen":"2023-09-21T11:43:11Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1261,"timings":{"blocked":187,"dns":0,"connect":214,"send":0,"wait":440,"receive":420,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-21","alert":"Sinkholed","trigger":"103.120.175.20","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.7.0/css/all.css","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.102.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://103.120.175.20:7800/login","date":"2023-09-21T09:42:48.832Z","timestamp":1695289368832,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 01 Sep 2023 05:27:58 GMT","end":"Thu, 30 Nov 2023 05:27:57 GMT"},"fingerprint":{"sha1":"23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65","sha256":"BA:12:2C:6A:8C:E2:62:74:B7:8E:25:03:6B:FD:DF:46:60:DA:30:5D:87:C6:A2:07:7C:EF:4D:98:30:71:4E:D6"}}},"request":{"raw":"GET /releases/v5.7.0/css/all.css HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://103.120.175.20:7800\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://103.120.175.20:7800/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 21 Sep 2023 09:42:49 GMT\r\ncontent-type: text/css\r\nx-amz-id-2: ji9GB0yHrR42gVJBBBK6WcMUxPuPEj18x7wnfB8ICSNRcczrxgjbw61hgvadAirfjwhw1EqSo2s=\r\nx-amz-request-id: NF4Y91C7HJEW6ZYM\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nvary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding\r\nlast-modified: Wed, 30 Jun 2021 15:45:15 GMT\r\netag: W/\"251d28bd755f5269a4531df8a81d5664\"\r\ncache-control: max-age=31556926\r\ncf-cache-status: MISS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=PyFLp6SsouWcEMwcpyErv4zKQkzfCVcZGZ09WGVyakElyZty403McHTgbt%2BQ%2FRwt2RVMRk3IXZ5UAAUTO%2FhtSqDNnAW%2FbiuXzfROnPcxycQ6LYSSZYfifMzyc%2BIWtyR%2FkV1JfVRq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 80a15c3a6d4e3860-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54641,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (54456)","md5":"251d28bd755f5269a4531df8a81d5664","sha1":"c0f035b41b23c6e8fab735f618aa3cff0897b4f9","sha256":"afdc6bf2de981ffd7d370b76f44e7580572f197efbe214b9cfa4005d189d8eae","sha512":"8111f411c21c6011644139dba4ef24d1696c0f6d31e55ce384e0353a0f3e65402170c502bddf803c3df9149c371b31c03f77be98fdbc61c0c9c55afbe399681f","ssdeep":"768:SuV31Uz1RPq4NvvU63HJYkQCZ/WMQyjJKp7CzsGnQzU:SuczrC4NnzHSBCkgu7cs1w","tlshash":"e4330bb8e54c41d9a731c04fbf82b2bc61b6f73ce5910d95f00e691c2ad26a811c9fb9","first_seen":"2023-04-05T03:13:11Z","last_seen":"2026-05-07T14:40:06.245376Z","times_seen":8352,"resource_available":false,"data":null}},"time_used":519,"timings":{"blocked":59,"dns":3,"connect":35,"send":0,"wait":374,"receive":0,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}