Report - 202.125.94.212/

Report Overview

Submitted URL
202.125.94.212/
IP
202.125.94.212
ASN
#46042 Gunadarma University
Submitted
2023-03-30 03:50:34
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
82

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	2.4 kB	6.2 kB	23.33.119.27
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-31T23:44:01Z	825 B	56 kB	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	2.1 kB	4.2 kB	142.250.74.131
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	127 B	52.88.203.0
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
202.125.94.212	unknown	2022-07-13T03:19:33Z	2023-01-29T11:58:30Z	13 kB	3.4 MB	202.125.94.212
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
maxcdn.bootstrapcdn.com	724	2014-06-18T02:37:31Z	2023-03-31T18:17:08Z	311 B	17 kB	104.18.10.207
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-31T18:42:09Z	735 B	38 kB	104.17.24.14
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-31T20:44:48Z	2.5 kB	43 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	72 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	414 B	630 B	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-30 03:50:47	medium	202.125.94.212	Client IP	ET COMPROMISED Known Compromised or Hostile Host Traffic group 59

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed
2023-03-30	medium	202.125.94.212	Sinkholed

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	202.125.94.212/asset/js/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/jquery.magnific-popup.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-04-18 14:19:23 Times Seen5874 Hash b37d7edf99565d3858eaa1ad80df3cff 786a4343711e9af5e5dfcc493e7d2331b48875bb b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2 Loading...

	202.125.94.212/asset/js/main.js	10 kB	2023-04-01	2023-08-13
Pretty URL 202.125.94.212/asset/js/main.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:35:26 Last Seen2023-08-13 07:22:02 Times Seen3 Hash 6ffe04d9bf9788e1c22e50da68ac647c 05d7b6f85f2dd1da97af7e4c5c81c0e20a276235 439397e4e19b70a2000fe43ecf81e7292ae295b42dc1eaada7c38f1f9ef6ae98 Loading...

	202.125.94.212/asset/js/jquery.ajaxchimp.min.js	4.9 kB	2023-03-10	2023-12-21
Pretty URL 202.125.94.212/asset/js/jquery.ajaxchimp.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:03:39 Last Seen2023-12-21 09:42:17 Times Seen17 Hash ae118449f8da6e3b3a91621e506e443e c652239ed535eeebf84027fc76ba3b0b716855ae b1e592415925aa1ada23072e7ed3581ec5c0173b085baae7924741bf7639dc56 Loading...

	202.125.94.212/asset/js/jquery.nice-select.min.js	2.9 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/jquery.nice-select.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:42 Last Seen2024-04-18 22:13:37 Times Seen748 Hash 4e2def5093eb4c4281624db4a5aa8f9c c3b8e8919f96d8d34594f111b95586ec28545a36 b73acfa96127f9a41a2c76fcf2196d37ff818460d02d48415770979eb59e4f3a Loading...

	202.125.94.212/asset/js/mail-script.js	1.3 kB	2023-03-11	2023-12-21
Pretty URL 202.125.94.212/asset/js/mail-script.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:44:39 Last Seen2023-12-21 09:42:17 Times Seen16 Hash 06da696a257fbdc6245ba93d7fa27dea c4d61f16c067fe53fd128101d8f660c5d5af034e 5cd0ff1606fa794186a55aa5951a571b10ce94c7d9cc15ce3d8588f06617cf38 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/util.js	165 kB	2023-03-26	2024-01-20
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:27:24 Last Seen2024-01-20 22:45:59 Times Seen829 Hash db59a2b62c461b092e39a4a7bd83920b 5e1111bcc399eaa3ca075b4c77d3a77cf85e522f cda881db98d107ebd3b91eb46c5d6f3fcd18d9230250b5bdb1d2f0b6abe50673 Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyBhOdIF3Y9382fqJYt5I_sswSrEw5eihAA	167 kB	2023-04-01	2023-04-01
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyBhOdIF3Y9382fqJYt5I_sswSrEw5eihAA IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:35:26 Last Seen2023-04-01 10:35:26 Times Seen1 Hash 7f7f45a0753474ef0d676b2a41b1c83e 0380338fee87b9d851a67a5fee8ca7855261f953 dfa3051cdd2c82f88d79406a4667d59f463824bdb204dd72a69e938765941137 Loading...

	202.125.94.212/asset/js/hoverIntent.js	7.1 kB	2023-03-07	2024-03-10
Pretty URL 202.125.94.212/asset/js/hoverIntent.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:45:29 Last Seen2024-03-10 09:13:07 Times Seen132 Hash 6fdf4814817af1a513273be884166dfd c48a39ec831f050690061910c363d2bcf76759eb 61168602288a63df2b3f98292b8dbea4e021ec0fd683444e49e4d95766a8a0e5 Loading...

	202.125.94.212/asset/js/easing.min.js	2.3 kB	2023-03-07	2024-04-07
Pretty URL 202.125.94.212/asset/js/easing.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:14 Last Seen2024-04-07 01:02:33 Times Seen1053 Hash d64116a742887080b3a0abd09e0bdad7 8cd4375fc3c60237ea3994209d17a57ccbe6b0c6 901eb80cc3f8c274fe6711bd023884258839610c9274082a4881f71e2206b4fb Loading...

	202.125.94.212/asset/js/superfish.min.js	4.5 kB	2023-03-07	2024-03-28
Pretty URL 202.125.94.212/asset/js/superfish.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:16 Last Seen2024-03-28 19:23:41 Times Seen409 Hash f06c47488aa4651828bf66dd1ad9539e e0f84df724e3e92f798bc7e4a089b6a8c3e45061 12517578a0d84618357152478454ef69e6832305a7a20f842734d537a1c588c1 Loading...

	202.125.94.212/asset/js/owl.carousel.min.js	40 kB	2023-03-07	2024-03-26
Pretty URL 202.125.94.212/asset/js/owl.carousel.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:39 Last Seen2024-03-26 06:38:34 Times Seen742 Hash db4c9c39a3af9343842156df81f25d08 36af2c0bc454462355584a535897ca5ec6371f3a e04e2b4e27ae9881b1e161954cc00ba16c8c3a0ce73a179824756353efd6c481 Loading...

	202.125.94.212/asset/js/jquery.sticky.js	5.9 kB	2023-03-09	2024-01-23
Pretty URL 202.125.94.212/asset/js/jquery.sticky.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:19:32 Last Seen2024-01-23 04:20:06 Times Seen21 Hash 63f999045da1daf5dd43a4134461f692 1b2cebee7f6b21748bb4a5ad792d644d7c51af03 127544fc1150a7af68c18e641a6dc1fbee07c4e53ed37319763d6bd2849b4606 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 05:22:19 Times Seen60684 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	202.125.94.212/asset/js/waypoints.min.js	8.1 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/waypoints.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:57 Last Seen2024-04-18 15:36:20 Times Seen2530 Hash 4fe14337a62d710389f42e8a5d1043f7 5f3e0f34b6d7460c5f160db4fe568cde29f3ffa5 069b3ff0c0e6c33e08368f94906ae49ec76ab1ed570819c768148ced15b138bf Loading...

	202.125.94.212/asset/js/vendor/jquery-2.2.4.min.js	86 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/vendor/jquery-2.2.4.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-04-18 01:59:38 Times Seen2897 Hash adb784ef9dc257b32965a5da7ee82a8b 7a41c488d820ea08231d1d393e5f4daed4d25041 8e09aa31f396ea41d698f437dc5fc7125e931d400eb2873f5b68ef78c1e6f3a6 Loading...

	202.125.94.212/asset/js/vendor/bootstrap.min.js	49 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/vendor/bootstrap.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-18 13:36:03 Times Seen587 Hash d061ab58270e692309b728296e90bba2 c9b4b1b279855515ea3f919adc71420664b18000 b00834c17c50af103e353ef86a69d90bbcaa819ed92b4d6ed670a425514e3c3a Loading...

	202.125.94.212/asset/js/parallax.min.js	6.9 kB	2023-03-07	2024-01-10
Pretty URL 202.125.94.212/asset/js/parallax.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:10 Last Seen2024-01-10 17:59:59 Times Seen35 Hash b54f8d862e49002905c6a5be54a01201 cdb4a95d406368cbd90db482614f6619dd447f19 983a210700fa13b615bbc7523a9dd40e8ff79cb9dd0d2cc67b0400c1b6e90477 Loading...

	202.125.94.212/	52 B	2023-03-10	2023-10-15
Pretty URL 202.125.94.212/ IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:14:45 Last Seen2023-10-15 01:39:31 Times Seen11 Hash 4fa9c6756d498fb0185c696eb54c7bfa 891816cb2ba3e88326406b2183c35be054b18d8f 32bb3cf20d5bc9590b1ec3f0fb515486b2ac1c1f5087b9f20c9eda7da85d5fdb Loading...

	202.125.94.212/asset/js/jquery.counterup.min.js	1.1 kB	2023-03-07	2024-04-18
Pretty URL 202.125.94.212/asset/js/jquery.counterup.min.js IP 202.125.94.212 ASN #46042 Gunadarma University Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-18 15:36:20 Times Seen1340 Hash 4f0e0b047f2ed8512d5119b31432bdcf 15c6242be4251b23c8aec6dd4620b95c37c53d22 3145a2ee536ea38dbcb2563fe7dad866ca2bceff859249e069cf33224f43b7cd Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/6/common.js	277 kB	2023-03-26	2024-01-20
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/6/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:27:30 Last Seen2024-01-20 22:45:59 Times Seen757 Hash 9787396af8d79c5b0a7ee0e5ab5c88aa 7cd2ea6b5d8014836c032d04eb074049a7390271 f92269e7d728cc563446b301cad9ee4d35e5681db79dfd6a45f8674aa9232b73 Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.1.1/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-16
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.1.1/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:49 Last Seen2024-04-16 15:44:10 Times Seen2415 Hash eb5fac582a82f296aeb74900b01a2fa3 fffea98e12e63b66693d567315a2f32392b780b0 c5a17d46976d471cf060c5a0e25749a323d6ab20cf0910f40afed81047ba21ef Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	19 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-19 05:22:19 Times Seen109890 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (76)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15293
Expires: Thu, 30 Mar 2023 08:05:16 GMT
Date: Thu, 30 Mar 2023 03:50:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14595
Expires: Thu, 30 Mar 2023 07:53:38 GMT
Date: Thu, 30 Mar 2023 03:50:23 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Retry-After, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 03:16:02 GMT
content-type: application/json
age: 2061
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13274
Expires: Thu, 30 Mar 2023 07:31:37 GMT
Date: Thu, 30 Mar 2023 03:50:23 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: UY2OkknUUlShF5kR+ENHgTc0l29/R6lBoyna3f1sSiyOoEHYKjmAo9lqEx9ma7Ra3d5y7ZETG44=
x-amz-request-id: CV1F03WD0EREC44J
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 03:02:45 GMT
age: 2858
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

202.125.94.212/

202.125.94.212

200 OK

4.5 kB

URL HTTP/1.1
202.125.94.212/
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
4.5 kB (4480 bytes)
Hash
22a2a965bc8a27c146fc59df1c6eff04
1be8703e9d8b6451dcbfcce820bf6f8c82ee4966
0a053b4921c17355efc5026338e21cc906af181536007ad11377638ef35842a8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4480
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 03:50:23 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.1.1/js/bootstrap.min.js

104.18.10.207

200 OK

16 kB

URL HTTP/1.1
maxcdn.bootstrapcdn.com/bootstrap/4.1.1/js/bootstrap.min.js
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (50450)
Size
16 kB (16252 bytes)
Hash
5d8e5f25ae2342b8766b950b65090f74
1a8664ff9a9859741475337eb5a81bb495fcfb45
f3a265b488042b66640c6e7d4a7b22836e8d6517271b1b463551050e432eda5c

HTTP Headers

GET /bootstrap/4.1.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: SE
CDN-EdgeStorageId: 601, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:05 GMT
CDN-CachedAt: 2021-04-23 06:36:22
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 1a86483348341cbc459fd9980f221cd5
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 28256889
Server: cloudflare
CF-RAY: 7afd635ded8cb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js

104.17.24.14

200 OK

30 kB

URL HTTP/1.1
cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32058)
Size
30 kB (30306 bytes)
Hash
fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d

HTTP Headers

GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 30306
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03ec4-15283"
Last-Modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 25590084
Expires: Tue, 19 Mar 2024 03:50:23 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZS%2Fj84uX3qbtgpONODoUwYgLUiSj0FTs827n1tcZegmqeTrUlno6FvMsq1IgCVINBjavuP2KpJENlpAPVRbCe6Y7grjhhCqm03avfcvt0e%2BYerWE2fDC4IOjF8Pjpj9X8%2BMimdN2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7afd635dea591c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.24.14

200 OK

6.2 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19015)
Size
6.2 kB (6157 bytes)
Hash
7b4114faa411d059a9a5ac4b5b4d9dee
277da4486916fa3a4ab3375f47bc98f58dbf90f6
60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://202.125.94.212
Connection: keep-alive
Referer: http://202.125.94.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 30 Mar 2023 03:50:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 11960766
expires: Tue, 19 Mar 2024 03:50:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fvimFiwavywGD35S3AMHmd%2Bjk4TsM%2F40HmqpkxlTl0FiToNYOz8%2BsMANVntBy6Y%2FMxq2K%2Bd0kUJzUuyXyvvBH7JHZJWxoLlieF8SHK4uYpL%2FJ%2BL%2B2OIzGSzewaRiE3fzTIZPSMJA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7afd635e1da7b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

202.125.94.212/asset/css/linearicons.css

202.125.94.212

200 OK

1.7 kB

URL HTTP/1.1
202.125.94.212/asset/css/linearicons.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1667 bytes)
Hash
603f4a14603df3b5b912208b587119b7
15d280bdc1a1fae8e6fc6461a80b39c6ec36a897
5522255b833b6a27d5ccc6c30a9f4916181d83d51c261a65d74790538ae887e8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/linearicons.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "22c2-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1667
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/css/font-awesome.min.css

202.125.94.212

200 OK

7.1 kB

URL HTTP/1.1
202.125.94.212/asset/css/font-awesome.min.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (30837), with CRLF line terminators
Size
7.1 kB (7057 bytes)
Hash
bf03b8f20ac9063cd68fdaad99f33471
b7ed452624cf0ad672802f062a90c32cfbcc33fc
47ab379a793e73b136a795ef9e1d1a4fc95e7109a74863c3a6df40d0f9086c13

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/font-awesome.min.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "791c-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7057
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maps.googleapis.com/maps/api/js?key=AIzaSyBhOdIF3Y9382fqJYt5I_sswSrEw5eihAA

142.250.74.106

200 OK

54 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyBhOdIF3Y9382fqJYt5I_sswSrEw5eihAA
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2453)
Size
54 kB (54440 bytes)
Hash
5c3f058948fa2fe915ed6804f91c45f2
131713fab61e6d108ce9c8f5b8141253b5a2e130
b75695d2b6fe3c32dd49e0b784ad865c8de9f437117191baf415f9fa3b876b32

HTTP Headers

GET /maps/api/js?key=AIzaSyBhOdIF3Y9382fqJYt5I_sswSrEw5eihAA HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://202.125.94.212/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 30 Mar 2023 03:50:23 GMT
expires: Thu, 30 Mar 2023 04:20:23 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 54440
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=34
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 03:17:26 GMT
age: 1978
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

202.125.94.212/asset/css/magnific-popup.css

202.125.94.212

200 OK

1.8 kB

URL HTTP/1.1
202.125.94.212/asset/css/magnific-popup.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1830 bytes)
Hash
b891a6cb5e74ef6dd22bbbff85eb441f
641fe58d196bb4d90bf32a3bac5fb19f74c5f7dc
4ead3c65c17d0c3c7146aa395fbbbbd970ac63908bcdeb77ed6d64822437a20a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/magnific-popup.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1c86-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1830
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/css/main.css

202.125.94.212

200 OK

7.9 kB

URL HTTP/1.1
202.125.94.212/asset/css/main.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (35335), with CRLF line terminators
Size
7.9 kB (7922 bytes)
Hash
7f7cd6f9ebec6be4a6d00966f87c73c0
8f2ef62ce97cf8b664a4819655d002a0986d9dd3
02c615d5a563039f0043267d7d3d352f213a53f78712878eb0d405ac08f79768

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/main.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Tue, 13 Oct 2020 23:49:04 GMT
ETag: "a207-5b1960f551c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7922
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/js/easing.min.js

202.125.94.212

200 OK

770 B

URL HTTP/1.1
202.125.94.212/asset/js/easing.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (2301), with CRLF line terminators
Size
770 B (770 bytes)
Hash
7e6317e6e14c7725d6915dc255cb22ff
17a99b5b7d75040042cd022667cbb91ef0f86991
52ea3e9d7a36040082282f16b175dc60009993a927929d1555830920753e41af

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/easing.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "8ff-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 770
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12858
Expires: Thu, 30 Mar 2023 07:24:42 GMT
Date: Thu, 30 Mar 2023 03:50:24 GMT
Connection: keep-alive

202.125.94.212/asset/css/bootstrap.css

202.125.94.212

200 OK

19 kB

URL HTTP/1.1
202.125.94.212/asset/css/bootstrap.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (65315), with CRLF line terminators
Size
19 kB (19088 bytes)
Hash
f88c38a8a817218541bd9eeac47a6d5c
42433568b4357a0aa53d638a3414afda01561261
c0a936ac24f8a49e744f4608a0754e03631795f727fb08f979040beb44d77f21

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/bootstrap.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1dd37-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19088
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/css/nice-select.css

202.125.94.212

200 OK

1.1 kB

URL HTTP/1.1
202.125.94.212/asset/css/nice-select.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1068 bytes)
Hash
c5a00ec5f4b43dc6f5cfce496fc6859e
62a58506f5f6c63687e87c4428dca43130dd40eb
045362f3cb41281a61f47539f6aee49245da45ffda789bcd61f344be1a37836e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/nice-select.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1031-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/js/vendor/jquery-2.2.4.min.js

202.125.94.212

200 OK

30 kB

URL HTTP/1.1
202.125.94.212/asset/js/vendor/jquery-2.2.4.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (32065), with CRLF line terminators
Size
30 kB (29827 bytes)
Hash
1d79f8f5f0efee3a0b2151365a59923d
95aef57fd2c60050326524814204f823604574ae
a176e0bb00dd493d5e02f3df962db4e146de46d3e4a90cc3839672291e5fdfbc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/vendor/jquery-2.2.4.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:23 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "14e4c-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29827
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/hoverIntent.js

202.125.94.212

200 OK

2.4 kB

URL HTTP/1.1
202.125.94.212/asset/js/hoverIntent.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2371 bytes)
Hash
58656f50a381567e674556930f5f8aa1
8f6dfffa599fe36a0d4414c61551331d27d925f7
541cdfabaa6bca8b441e35f608444adcde790c83860996deaac95ebe69e297a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/hoverIntent.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1ba6-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2371
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/vendor/bootstrap.min.js

202.125.94.212

200 OK

13 kB

URL HTTP/1.1
202.125.94.212/asset/js/vendor/bootstrap.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (48664), with CRLF line terminators
Size
13 kB (13112 bytes)
Hash
35f8e5d4eea3ef9e7d572dd0ea0b36b1
e793214e10c14a25e4ccce065bdc1317ddf9f42e
23eeab4a113bb840b6667df8354b3104b87bb285fe79626236db9f3412c68c3c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/vendor/bootstrap.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "bf36-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13112
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/superfish.min.js

202.125.94.212

200 OK

1.9 kB

URL HTTP/1.1
202.125.94.212/asset/js/superfish.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (4246), with CRLF line terminators
Size
1.9 kB (1889 bytes)
Hash
726c26f057677c85e1ece68a92dea303
db7af64f8cd8a2e7b16fc3c9d7c5aa888ae5bbc8
499aa8b508cbe153ec7f38efb868c4d6c50b8fff9b124a8a5069c1faf8a273e6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/superfish.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1183-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1889
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/jquery.ajaxchimp.min.js

202.125.94.212

200 OK

1.2 kB

URL HTTP/1.1
202.125.94.212/asset/js/jquery.ajaxchimp.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1200 bytes)
Hash
3ad976827e37d36edcc298354f76fad7
fde131db74d48d1fe0b95e7f3b4e61274ecf9e44
8a9e0d290e185c3f11b8763669b17c266fe67a0942b8b981bdb82026d60d8394

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "134b-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1200
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/jquery.magnific-popup.min.js

202.125.94.212

200 OK

7.3 kB

URL HTTP/1.1
202.125.94.212/asset/js/jquery.magnific-popup.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (20087), with CRLF line terminators
Size
7.3 kB (7348 bytes)
Hash
0a182b6f18084043d30df4c10df4a449
5b2f5a2f735e94197502b3ec18bbfa1ba7131664
732abdfbc62bfe4621bd155c6c00d8b5103b8ad21e82b18d8420ac09639bfedc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/jquery.magnific-popup.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "4efb-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7348
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/owl.carousel.min.js

202.125.94.212

200 OK

10 kB

URL HTTP/1.1
202.125.94.212/asset/js/owl.carousel.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (32068), with CRLF line terminators
Size
10 kB (10526 bytes)
Hash
215a2ce21680e718775e80115dd46bd1
a4c8c60d3abe3fdd566b98d166fc3418716c96da
00e6c988c31481cb0934314f53e5756ccbbf75160e9f87fbba32a67e9a6bd0df

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/owl.carousel.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "9dd2-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10526
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/jquery.sticky.js

202.125.94.212

200 OK

1.7 kB

URL HTTP/1.1
202.125.94.212/asset/js/jquery.sticky.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1693 bytes)
Hash
1eaf30891d7ee1c30f52be39d0693431
813f67e3516208470851553a1bf7ae324b90e273
9dbfbcdd591190f7709fdea9b6123eb810ee90dd29dd215484f27d68fcb74389

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/jquery.sticky.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1717-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1693
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/jquery.nice-select.min.js

202.125.94.212

200 OK

1.0 kB

URL HTTP/1.1
202.125.94.212/asset/js/jquery.nice-select.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
Unicode text, UTF-8 text, with very long lines (2822), with CRLF line terminators
Size
1.0 kB (1042 bytes)
Hash
64c3a7d5b634a2b30ddfca9d5f472050
f05acffbac1584252416c1fff522f6577b6f0698
0bc281ed3bc209dbe77e4c45c157c46e596d40606273d341f8b6ce184e83af9e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/jquery.nice-select.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "b81-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1042
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

push.services.mozilla.com/

52.88.203.0

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.88.203.0:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1pzQDc9cZ7qEYQ1cn935TQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dXD+AUdkawD7hDrnDYqYM7glCOg=

202.125.94.212/asset/js/waypoints.min.js

202.125.94.212

200 OK

2.6 kB

URL HTTP/1.1
202.125.94.212/asset/js/waypoints.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (7808), with CRLF line terminators
Size
2.6 kB (2626 bytes)
Hash
7c232aa89b572823395d9dd3080b336c
4c3244bc4f9939024b2bc651a62fccdf143fd32a
68828f25ebdb78571f00f5ab43ff0a09def2ec2026f166e93bbfa542387540ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/waypoints.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1f73-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2626
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/jquery.counterup.min.js

202.125.94.212

200 OK

578 B

URL HTTP/1.1
202.125.94.212/asset/js/jquery.counterup.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (917), with CRLF line terminators
Size
578 B (578 bytes)
Hash
306ea69c876201ec32a9562f18b9d673
96c0dfa4df03cd823476b46668ab47463c9169f3
2dadb57bba327dc006803a8ec08cf1d0e96f298b5cafaf2c3c9db12e3af96c4f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/jquery.counterup.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "432-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 578
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/parallax.min.js

202.125.94.212

200 OK

2.3 kB

URL HTTP/1.1
202.125.94.212/asset/js/parallax.min.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (6681), with CRLF line terminators
Size
2.3 kB (2326 bytes)
Hash
8e110c23c3e2b8b4bb76d642f4c272f6
3b828b7d4e6c399bd343a21d1a8502752a17bb6f
b2a34924c92dc270dd0fa267dd611c7192347a806e0dda4bb504781e2731a420

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/parallax.min.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1ad5-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2326
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/mail-script.js

202.125.94.212

200 OK

498 B

URL HTTP/1.1
202.125.94.212/asset/js/mail-script.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
498 B (498 bytes)
Hash
314a29af50abb4eb0bd25361ee69e35a
216bfe189c43fd532117a08300f8f216fe198417
db73025aa3544af5a3872929ed1de7768ff494ed6c6c2bad856132bae8fc25d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/mail-script.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "4ec-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 498
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/js/main.js

202.125.94.212

200 OK

2.8 kB

URL HTTP/1.1
202.125.94.212/asset/js/main.js
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (1484), with CRLF line terminators
Size
2.8 kB (2808 bytes)
Hash
e1bb493b6fa94f2d035a7fdb61b05e8b
004b706614a4c7bbb435a038ecbc5819a1ea9eaf
91fd161fb3e36f4c1c8b15503dfb665e93dc43e1ec27cb411ecf4c76621fb577

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/js/main.js HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Mon, 12 Oct 2020 01:52:04 GMT
ETag: "2928-5b16f8b883900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2808
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

202.125.94.212/asset/css/animate.min.css

202.125.94.212

200 OK

4.0 kB

URL HTTP/1.1
202.125.94.212/asset/css/animate.min.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with very long lines (52592), with CRLF line terminators
Size
4.0 kB (3959 bytes)
Hash
563e59423e31b055c07e2e5d2b8f12a3
e1aa4c29d7fc06a9257cc9e16873d1e7d22d6203
187a9f082f4a46fd30f62682266be5dd5af4616ce4b0ab18237a24ed804d4a7f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/animate.min.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "ce3f-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3959
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

202.125.94.212/asset/css/owl.carousel.css

202.125.94.212

200 OK

1.2 kB

URL HTTP/1.1
202.125.94.212/asset/css/owl.carousel.css
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1167 bytes)
Hash
dca55284c714542952ee523baa74f276
6342cfb26c395df8d0b35aa1e07534a6c2658df3
87c7591e22dc7c602cc2c070d740da2a61e28c22d81a99bb4e9b29d1b108c6e3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/css/owl.carousel.css HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "10bd-596f630899f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1167
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.125.94.212
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:49 GMT
expires: Sat, 23 Mar 2024 10:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 494615
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.125.94.212
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:32:01 GMT
expires: Wed, 27 Mar 2024 10:32:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
age: 148703
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 03:50:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.35

200 OK

7.7 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.125.94.212
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:55 GMT
expires: Sat, 23 Mar 2024 10:26:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
age: 494609
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.125.94.212
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:51 GMT
expires: Sat, 23 Mar 2024 10:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 494613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.125.94.212
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:53 GMT
expires: Sat, 23 Mar 2024 10:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 494611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

202.125.94.212/asset/images/o6.png

202.125.94.212

200 OK

3.0 kB

URL HTTP/1.1
202.125.94.212/asset/images/o6.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 57 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3022 bytes)
Hash
fce0d08d66c7f5427af161642e0a03d9
414c80f39cd276c743f50a39ae5ea6c2222dd71f
dcace004464e3b82b981ac15796a954b6e19314c7e08dbdcc070b767102f54bc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/o6.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "bce-596f630899f00"
Accept-Ranges: bytes
Content-Length: 3022
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/hotline1.png

202.125.94.212

200 OK

31 kB

URL HTTP/1.1
202.125.94.212/asset/images/hotline1.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (31169 bytes)
Hash
a59e768eebc730446e35f676487b8815
db2d281443894eac32387ab415a0789fbd6c4c20
e4e23ecfefd96a0760f6294bbe8c1895bb1fe92729a266e729cf8455f7f93def

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/hotline1.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 13 Oct 2021 05:58:43 GMT
ETag: "79c1-5ce35a78a4ac0"
Accept-Ranges: bytes
Content-Length: 31169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/fonts/Linearicons-Free.woff2?w118d

202.125.94.212

200 OK

22 kB

URL HTTP/1.1
202.125.94.212/asset/fonts/Linearicons-Free.woff2?w118d
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data
Size
22 kB (21780 bytes)
Hash
03e91f122aa5fd425abbe23c85546eb0
c87a3db06c5db4e75e639382f174eafa439aeb27
296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/fonts/Linearicons-Free.woff2?w118d HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://202.125.94.212/asset/css/linearicons.css

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "5514-596f630899f00"
Accept-Ranges: bytes
Content-Length: 21780
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3103
Expires: Thu, 30 Mar 2023 04:42:08 GMT
Date: Thu, 30 Mar 2023 03:50:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3103
Expires: Thu, 30 Mar 2023 04:42:08 GMT
Date: Thu, 30 Mar 2023 03:50:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3103
Expires: Thu, 30 Mar 2023 04:42:08 GMT
Date: Thu, 30 Mar 2023 03:50:25 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d272e70-53f2-46d1-82a2-713d0539212f.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d272e70-53f2-46d1-82a2-713d0539212f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13563 bytes)
Hash
e17677df3c62e2528f78149356f707fa
ed990a670d1b5f33e42e1927266c82d1532b2c75
3f23e0cf1a3b09c3747e5ac9917793d7035b3195a085d1e34777c5f3f09ce72c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d272e70-53f2-46d1-82a2-713d0539212f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13563
x-amzn-requestid: 61cfd396-07a1-451f-81df-868644a5e653
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAymEFOIAMFW3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-7adecc212066dc3c5252eb2f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Extt8zdIR6UvGVHhCFtOEZnFHXHvS0QdwQNgFGMclIDrMdmHO-5UUg==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:48:07 GMT
age: 21738
etag: "ed990a670d1b5f33e42e1927266c82d1532b2c75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9230d52f-0316-48dd-9c8a-231c8091c313.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13520 bytes)
Hash
774be594ff620b3c0559c1d6df5cdb19
39e47800138c74f1d9be4d80fc46d062c661c334
911c5154354c8f46cf0f900f1030536569055c748035960fcf5e850d24747a1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9230d52f-0316-48dd-9c8a-231c8091c313.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13520
x-amzn-requestid: a686a0ab-8bd4-4721-b2dc-58ae073a47d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAzsGwWoAMFgEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7d-70f61c697c0a31362bf67fde;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: odMILI3YunDc3TA76IHEP02HE_nWz8b4osZW-7EjT_XYw9PhFWUBBQ==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:59 GMT
age: 21926
etag: "39e47800138c74f1d9be4d80fc46d062c661c334"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe04d24af-eb00-4c93-ab34-7efa5a5df311.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11548 bytes)
Hash
2eee1403498bff1763a8bc833dfeeb41
bff603c1941f0bc9dfcd4ae51af3334ff7529be4
2dab005f05aa5142ad2d132f40a5fb2b3cad7e1c82c936808c30f060eea3846e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe04d24af-eb00-4c93-ab34-7efa5a5df311.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11548
x-amzn-requestid: 7695d327-93ba-4079-a512-6adfc7e3a2d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAymEfnoAMFwYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-66e22a7d1d7cad675b9cdf27;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YDfuRMv16MCODBqpZY9Fh1sW7r0oIuwhIID1gdjVZeyJnlHHZM4ASQ==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:52:21 GMT
age: 21484
etag: "bff603c1941f0bc9dfcd4ae51af3334ff7529be4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11118 bytes)
Hash
1d109c71a6d804ac43ede46ac74f2065
251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4
de2d781c75abb41ea14c0f4c072df0977562d824d81b5f4ca28c4f635067a17b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11118
x-amzn-requestid: 71508920-b2d8-446d-a498-8bf8708af974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA4qHrpoAMF-0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae9d-5191b68a4c7f1ee042a05583;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3JIDZJcepJFwPc0anfKz5OO8LZY3cFMI4oljiaft8jBgltzp2iYJiA==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:55:34 GMT
age: 21291
etag: "251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10271 bytes)
Hash
424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:48:07 GMT
age: 21738
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68adff46-2278-4660-8b41-0719f5eb19f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5108 bytes)
Hash
aa4bea27e3e3b648176b5d87c919422d
1aa537444512644c9e5ddbb732cb310e5d3f3a26
28706ef531eabf37199ce8160884b6abe9220809e6217000883a0d9f0a23e93d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68adff46-2278-4660-8b41-0719f5eb19f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5108
x-amzn-requestid: 8d187151-2480-477a-82d9-fa5c96dd61db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA6THX9IAMFhrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424aea7-5e5a11746610faac7bb883bb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:28 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RC7BCyW_QitX-xaWwVn_7qcPD_Qu2dIwr2l_rD3HvHT_812xzmU8vw==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:56:53 GMT
age: 21212
etag: "1aa537444512644c9e5ddbb732cb310e5d3f3a26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

202.125.94.212/asset/images/calas.png

202.125.94.212

200 OK

247 kB

URL HTTP/1.1
202.125.94.212/asset/images/calas.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 800 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size
247 kB (247291 bytes)
Hash
f16728fe83a08b65553ececde14e8c6e
09fc6e400000be87ce6ccbdcd4bec69f804b3aba
897792323e1fb8bd1b4e8c1590c64a2eb99276089fdaa1cf9497684dad7ba6ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/calas.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "3c5fb-596f630899f00"
Accept-Ranges: bytes
Content-Length: 247291
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/labti.png

202.125.94.212

200 OK

106 kB

URL HTTP/1.1
202.125.94.212/asset/images/labti.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced\012- data
Size
106 kB (106024 bytes)
Hash
64e5d5b490267d0507922f0fbf9afe52
f37dc2c2cf2ff12c85fcd87019570e1da9c601ac
2df8b29b19ee500dfc0926c0fb1083e7bf6cf61b07da458e4a685cc647d5302f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/labti.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "19e28-596f630899f00"
Accept-Ranges: bytes
Content-Length: 106024
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/fonts/fontawesome-webfont.woff2?v=4.7.0

202.125.94.212

200 OK

77 kB

URL HTTP/1.1
202.125.94.212/asset/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://202.125.94.212/asset/css/font-awesome.min.css

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "12d68-596f630899f00"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive

202.125.94.212/asset/img/labti-bg.jpg

202.125.94.212

404 Not Found

1.2 kB

URL HTTP/1.1
202.125.94.212/asset/img/labti-bg.jpg
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1190 bytes)
Hash
a23cf289de81b0bf9c39d9e396c43b21
469874b2f6d771179dce86a0c8fab5a13d7a8ecf
397755d946611605bc16edd5e2417575aad30d5c0855c2d97452dda8860d223e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/img/labti-bg.jpg HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/asset/css/main.css

HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Content-Length: 1190
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

202.125.94.212/asset/dashboard/kcfinder/upload/files/SOP_Baju.png

202.125.94.212

200 OK

80 kB

URL HTTP/1.1
202.125.94.212/asset/dashboard/kcfinder/upload/files/SOP_Baju.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 733 x 411, 8-bit/color RGBA, non-interlaced\012- data
Size
80 kB (80197 bytes)
Hash
792fcae695f612f6f2b54fcfefc7a31b
e2b0b7218641cc1c5fed8e3fbecac58fbfcc2c83
f81eba4deb9d5a22a410ebdf79ddd0675484fa913769007ce1fcdc5a8d5f6406

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/dashboard/kcfinder/upload/files/SOP_Baju.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:26 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 02 Nov 2022 06:33:05 GMT
ETag: "13945-5ec7703669358"
Accept-Ranges: bytes
Content-Length: 80197
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/o1.png

202.125.94.212

200 OK

4.4 kB

URL HTTP/1.1
202.125.94.212/asset/images/o1.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 60 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4352 bytes)
Hash
f835aa842831a211fa866f86d53340f3
13af88702560d34b0d07c69390c1d2a9504233e2
aedab82f5624f8f50fee960ba850ddd855bcff58b6a4681b373fc4ce6bad1871

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/o1.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:26 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "1100-596f630899f00"
Accept-Ranges: bytes
Content-Length: 4352
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/2.png

202.125.94.212

200 OK

160 kB

URL HTTP/1.1
202.125.94.212/asset/images/2.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 2079 x 853, 8-bit/color RGBA, non-interlaced\012- data
Size
160 kB (159757 bytes)
Hash
c19687307d9980fdc32205298de9ca7e
01ad5a2d48512f16fd4c664d3d889767b6ebf4c0
602bf4594ce1d01c3494fcf15f629c1cf69c1d85c2cce92e88f5d3b303a4df36

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/2.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "2700d-596f630899f00"
Accept-Ranges: bytes
Content-Length: 159757
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/o4.png

202.125.94.212

200 OK

3.2 kB

URL HTTP/1.1
202.125.94.212/asset/images/o4.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3173 bytes)
Hash
58cea940eecebf1b24517b090652c4b9
733ea84c8fdbabae24bb5d82cff24d2aa600f025
0f1275d0203075a793b1ce44df1ea79c4a6dcdf43b0c70339ea0f30d6ed707c1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/o4.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:26 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "c65-596f630899f00"
Accept-Ranges: bytes
Content-Length: 3173
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/dashboard/kcfinder/upload/files/Segera%20Dimulai.png

202.125.94.212

200 OK

260 kB

URL HTTP/1.1
202.125.94.212/asset/dashboard/kcfinder/upload/files/Segera%20Dimulai.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 2667 x 2177, 8-bit/color RGBA, non-interlaced\012- data
Size
260 kB (259837 bytes)
Hash
896997fd41ff7d22c62dc65d740bce90
caf7b81f94827483c5dd50ff38aa898eb7678b4e
97774b69786ef929dba90d79f3b21131e60355361d67b72c948df0d56b84cdd5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/dashboard/kcfinder/upload/files/Segera%20Dimulai.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 14 Oct 2020 00:22:06 GMT
ETag: "3f6fd-5b19685780780"
Accept-Ranges: bytes
Content-Length: 259837
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/pengumuman-idul-fitri-2021.jpeg

202.125.94.212

200 OK

144 kB

URL HTTP/1.1
202.125.94.212/asset/images/pengumuman-idul-fitri-2021.jpeg
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1279x1280, components 3\012- data
Size
144 kB (143578 bytes)
Hash
2666d8d6cd764033b1446fc1d6436b17
832fa0454b7bd6a6eca6b50eec67eba0447bbde8
83af7c35ddd0baca0e90989ad48fd78f3217a68d15f4dde8e3eef596d32d1612

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/pengumuman-idul-fitri-2021.jpeg HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:26 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sat, 08 May 2021 22:34:25 GMT
ETag: "230da-5c1d9258fe791"
Accept-Ranges: bytes
Content-Length: 143578
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

202.125.94.212/asset/images/pop-up-prak-online.png

202.125.94.212

200 OK

559 kB

URL HTTP/1.1
202.125.94.212/asset/images/pop-up-prak-online.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 6147 x 4040, 8-bit/color RGBA, non-interlaced\012- data
Size
559 kB (559283 bytes)
Hash
a9afddac4def2918174d57d982851f16
5dc28657d0525d4ca8edf58d02a4aaa21c381fcc
5816643dae0370066d11e460684effb9ad8774a8b098f541e5d9b7618501835c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/pop-up-prak-online.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 20 Mar 2020 20:37:00 GMT
ETag: "888b3-5a14f3f4c3300"
Accept-Ranges: bytes
Content-Length: 559283
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/dashboard/kcfinder/upload/files/Rilis%20Jadwal.png

202.125.94.212

200 OK

413 kB

URL HTTP/1.1
202.125.94.212/asset/dashboard/kcfinder/upload/files/Rilis%20Jadwal.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 3378 x 2252, 8-bit/color RGBA, non-interlaced\012- data
Size
413 kB (413440 bytes)
Hash
fc281fce5c3b6e272fcbca7eaafc57c7
94bc5425a2949f3dbda5245239a73fcef6603023
65720d47cfe05814355c3d79d119d063b561a67818fe19d554851d6d71063477

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/dashboard/kcfinder/upload/files/Rilis%20Jadwal.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:25 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 14 Oct 2020 00:14:52 GMT
ETag: "64f00-5b1966b99b700"
Accept-Ranges: bytes
Content-Length: 413440
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

202.125.94.212/asset/images/kompres.png

202.125.94.212

200 OK

192 kB

URL HTTP/1.1
202.125.94.212/asset/images/kompres.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 934 x 700, 8-bit/color RGBA, non-interlaced\012- data
Size
192 kB (191584 bytes)
Hash
eadb723df3c9b818dae424138bd00f4a
f33b8994d2775e42b6175679a531c613cbb9c4b3
acf4d1823573c532228a4a9f08cdbc79eaca7424b3e5af574efb101ad3bf1394

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/kompres.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:26 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "2ec60-596f630899f00"
Accept-Ranges: bytes
Content-Length: 191584
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.42

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://202.125.94.212
Connection: keep-alive
Referer: http://202.125.94.212/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 30 Mar 2023 03:50:27 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: http://202.125.94.212
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

202.125.94.212/asset/images/logo-labti.png

202.125.94.212

200 OK

943 kB

URL HTTP/1.1
202.125.94.212/asset/images/logo-labti.png
IP
202.125.94.212:0
ASN
#46042 Gunadarma University

File type
PNG image data, 4167 x 4167, 8-bit/color RGBA, non-interlaced\012- data
Size
943 kB (943255 bytes)
Hash
0c0147b1eb37e9eda84e5efcbc3f8460
96dbab50891525d131772c157df34deb7baa5fab
2b77eac1572f5a105eafc04f3a05f42a226bdc902299257849293ed79e58a029

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /asset/images/logo-labti.png HTTP/1.1
Host: 202.125.94.212
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.125.94.212/

HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 03:50:24 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Sun, 10 Nov 2019 04:10:04 GMT
ETag: "e6497-596f630899f00"
Accept-Ranges: bytes
Content-Length: 943255
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

fonts.googleapis.com/css?family=Poppins:100,200,400,300,500,600,700

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins:100,200,400,300,500,600,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Poppins:100,200,400,300,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://202.125.94.212/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 03:50:23 GMT
date: Thu, 30 Mar 2023 03:50:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML