r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11165
Expires: Wed, 18 Jan 2023 20:43:03 GMT
Date: Wed, 18 Jan 2023 17:36:58 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3974
Expires: Wed, 18 Jan 2023 18:43:12 GMT
Date: Wed, 18 Jan 2023 17:36:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 17:34:25 GMT
content-type: application/json
age: 153
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2648
Expires: Wed, 18 Jan 2023 18:21:06 GMT
Date: Wed, 18 Jan 2023 17:36:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YbKtIhmqc2u6mCO05CQx+1wUBD41Qquv8vJAWAYOaDhbSpu3dN0KZvCNw3FCOPBOoBlvcD2t/DU=
x-amz-request-id: TQTNPP473268TEB0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 16:56:45 GMT
age: 2413
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 17:36:58 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 17:17:25 GMT
age: 1174
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.balitripdriver.com/cars/
172.96.191.159301 Moved Permanently 0 B URL HTTP/1.1 www.balitripdriver.com/cars/
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /cars/ HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
x-litespeed-cache: hit
content-length: 0
date: Wed, 18 Jan 2023 17:36:59 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4312
Cache-Control: max-age=146501
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:36:59 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 10:18:40 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.186.195101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.186.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7hqWufnZZIPKNRM+A1Z0/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tYc6Uw1JAhGAFtJcaJrBgZcf0P8=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12394
Expires: Wed, 18 Jan 2023 21:03:34 GMT
Date: Wed, 18 Jan 2023 17:37:00 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12394
Expires: Wed, 18 Jan 2023 21:03:34 GMT
Date: Wed, 18 Jan 2023 17:37:00 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12394
Expires: Wed, 18 Jan 2023 21:03:34 GMT
Date: Wed, 18 Jan 2023 17:37:00 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12394
Expires: Wed, 18 Jan 2023 21:03:34 GMT
Date: Wed, 18 Jan 2023 17:37:00 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12394
Expires: Wed, 18 Jan 2023 21:03:34 GMT
Date: Wed, 18 Jan 2023 17:37:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 70013
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 69302
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 70017
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cwgL1L8gf7dxKO3A9rfi25VzKbT77kkpJzF8gv1niNJ-p5rL6FYPrw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:45:08 GMT
age: 71512
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 50864
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:53:53 GMT
age: 70987
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
172.96.191.159200 OK 22 kB URL HTTP/2 www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12834)
Hash 06c3e1a73a6b28cd43eaf459823d49a6
fd16efb4061907813e13c187f53de8c212120c53
581eaf9c50e24581953b5fd22e7eae19ce903d20d583f226558900d2f2fa6c83
Analyzer Verdict Alert fortinet Phishing
GET /cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
link: <https://www.balitripdriver.com/wp-json/>; rel="https://api.w.org/", <https://www.balitripdriver.com/wp-json/wp/v2/pages/653>; rel="alternate"; type="application/json", <https://www.balitripdriver.com/?p=653>; rel=shortlink
etag: "257-1673604544;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 21575
date: Wed, 18 Jan 2023 17:37:00 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.balitripdriver.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
172.96.191.159200 OK 11 kB URL HTTP/2 www.balitripdriver.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
172.96.191.159200 OK 2.4 kB URL HTTP/2 www.balitripdriver.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (15672), with no line terminators
Hash 0c53a727a9801d2d872125ab96be97df
40616b12b4a9f2e4533f9adc6f965ca2b44581e0
8a69f47fdb908591cba1faa64f3807cbb3b82e12f0fe099c6bcbd31213f3bea9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2418
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.4.2
172.96.191.159200 OK 503 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.4.2
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (2181)
Hash d7ffb38d832078eeb69053d48a9a4e98
d38d6bba48dcb63f0e1373b8d6b2928cf45b55e4
e7756e23c3b24601899a30fdafcb8a9e9dc0f7e4619a00ea916a372b5b0c2f54
GET /wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.4.2 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Sat, 24 Dec 2022 02:21:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 503
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
172.96.191.159200 OK 1.7 kB URL HTTP/2 www.balitripdriver.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (6051), with no line terminators
Hash cfe4870b943b2ade39a643e3a3d6d809
f1f4e04c908b19fa0a5a5b09de5b6b1dfc113f05
00f239a7fb673f1d8ab2db67b74e0bae64d103e520ee209c18e21b5bff3fb509
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1711
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
172.96.191.159200 OK 3.6 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (19277)
Hash 3c0f49bba64d313ff17530aee3e0de3a
2cec8e2b5dce97ec1c602a371470c3b1ad54d34a
35e45af37030e367c7a247b7cf2e5f188e80067a9fa919814ae91c635dafb89b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.17.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3637
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.0
172.96.191.159200 OK 624 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (9895)
Hash 38b2c8df44630788b229d1169f9d652a
cb3e755cb2d1e04fda087c447a84442be474adc7
c9784ecf5dd108e3371594da108a02d4459e5b6473a61792ca5cfc08ea59fadc
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 624
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/elementor/css/post-1777.css?ver=1673601659
172.96.191.159200 OK 355 B URL HTTP/2 www.balitripdriver.com/wp-content/uploads/elementor/css/post-1777.css?ver=1673601659
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (1223), with no line terminators
Hash 1bc64934fd66aa11b23f9c8d4f46518a
57dcfef78ce2fa9e9d23b4bf4d4b00713576e73b
18c34b876afde0c07577796c700e776cb32853d0a56853d1fcf8a66044f7d341
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1777.css?ver=1673601659 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 355
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.0
172.96.191.159200 OK 18 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65496)
Hash ada1bc313d2af5bf407fe2f4acc6b999
be6a13ec0bbbc707ff42ee6d199fc6ab1f5afefc
60b29f6486cfab770fba624928810593d1df8edbd7dc678f423bf0a141cb0d35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17984
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.10.1
172.96.191.159200 OK 36 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.10.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65492)
Hash 05703fd5721491e8b83d37fb554b353d
a8df390533ccce86ae1991787f6ab0d5cfca2601
82c785e8d22c560ee05c891d2c95af239dc5c7bd31ba8e2bc9e5ccebff1f0003
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.10.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35936
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.0
172.96.191.159200 OK 12 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (59158)
Hash 178f113615fea1b059cb42a9fcc9bb3d
a309d33fbab460ecc17467c18f99825c03ce039c
9fc6c8540b2078cfcec74cbd21ef6cedf7e2a4ec99d46a4868111eb601572859
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12380
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.0
172.96.191.159200 OK 4.0 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (26516)
Hash 32699c444a181cd316ee6cb56688144a
1366537c3db165e86947a2e963407283a1ea5b58
6b6910bbb4dacf40ae040c445dd7dd1871097c97a1520b6d5f528d7d88c072a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3987
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/elementor/css/post-312.css?ver=1673601660
172.96.191.159200 OK 339 B URL HTTP/2 www.balitripdriver.com/wp-content/uploads/elementor/css/post-312.css?ver=1673601660
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (1386), with no line terminators
Hash d24665daf2dd34112f6957b2978ebd53
49d0421f8dbee8dd6fc82558699e8a0c793bc5c6
d6fbd1abe02027b6dea979471401a0ce8a56fd250c2ad5a93f0e56080cb327aa
GET /wp-content/uploads/elementor/css/post-312.css?ver=1673601660 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:21:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
172.96.191.159200 OK 284 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/elementor/css/global.css?ver=1673601659
172.96.191.159200 OK 2.6 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/elementor/css/global.css?ver=1673601659
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (14692)
Hash e6ae8a0de08641949a3f16a5699c6f40
5b74889d158c3982bd99a30065a9155866b54198
b1c42719ac11e1abb881e6448ea37de5a557f6791b7a5b06e9f25009da7bf839
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1673601659 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2637
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.0
172.96.191.159200 OK 4.0 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (14869)
Hash 564f097cf1c91789ede5935f27f4f879
7d08e220324006fe221bbc176df2051be8fc1f31
2de1ed7e80ab790199f4b3785fd3ac2494e039a96e55c67e76ea88244dfc93e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4035
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
172.96.191.159200 OK 283 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
172.96.191.159200 OK 286 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/elementor/css/post-159.css?ver=1673601660
172.96.191.159200 OK 1.5 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/elementor/css/post-159.css?ver=1673601660
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (6795)
Hash 93c9301be0d9706d99c113ce02c8b56c
0f3df028965c14393a03fe464c407d6196f61b88
20ed6460bbeef815063dd01ee69311d7daa417c025e83144e185fa82efb1678d
GET /wp-content/uploads/elementor/css/post-159.css?ver=1673601660 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:21:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1496
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.4.2
172.96.191.159200 OK 631 B URL HTTP/2 www.balitripdriver.com/wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.4.2
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (1278)
Hash 6b0a1387731ae0dbf8223b23d270f758
3d114ef4973ef44317229165889e2ffef0a241ca
1552956c7bc4d5bfbead75a3787eff2b8fdf523c631684444a9c0ae1c877c85a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/kk-star-ratings/src/core/public/js/kk-star-ratings.min.js?ver=5.4.2 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 02:21:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 631
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.0
172.96.191.159200 OK 2.4 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1
172.96.191.159200 OK 2.3 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (5315)
Hash c954dd8a35e9fc55ee3cf97116fa176a
2f03e0f683cf944dc66d6215fddfad948a35b493
9cdcb0c8d5da33338243ea55a4d15f551569877f13da86a90af111a8123cc972
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.10.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2259
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
172.96.191.159200 OK 1.7 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 16:23:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.96.191.159200 OK 4.0 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
172.96.191.159200 OK 2.9 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0
172.96.191.159200 OK 2.1 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (4974)
Hash 83c2680579d16bcd7e382867a9bc9cc7
c0614874b51b52bda4681d62e833c4c993987175
d44961c6abdc4ddbb4bd33dc67984a1f38f0cfa26ed29d648577994597a98ad9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2076
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
172.96.191.159200 OK 1.6 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (4875)
Hash 06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1575
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
172.96.191.159200 OK 3.7 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
Hash f778ade6a70be55cbf039cfafb20fa7f
68d7a7f2d88907a038ec557ae0ab67f58d7bcdc5
88fd2a2f80a5ff9f70a6c4019d81f3bae8bc92623697454faa44f448cc43ad93
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3717
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0
172.96.191.159200 OK 1.0 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (2620), with no line terminators
Hash 906c4decdcd32482c1cf583b07925d30
30e726b9febb4b651544266df656a21251f0e8e3
53f86e9641d0e35772d6b54294cc6dd685fb9a376a1baad151da120fef609423
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1047
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
172.96.191.159200 OK 3.3 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (10544)
Hash 3821415a39954c48c7927e661467c6b8
dfe1116a0efc9898cb6caf094213880da83d6990
5f7f5b28f47c366a0bb70435dc3b2253278222c92429f013084f71fd7d29a32e
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3268
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
172.96.191.159200 OK 2.4 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (6475), with no line terminators
Hash 4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
172.96.191.159200 OK 12 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/elementor/css/post-653.css?ver=1673601660
172.96.191.159200 OK 7.9 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/elementor/css/post-653.css?ver=1673601660
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 457efbbdc10a5d74f2e0358fe3185e00
f03fc6450f4eefe469396937131dcd20cf3a11d5
ead09d42f0015ff7b8cb31338c5a2e63f86c29c008a17ef2f790dda20c0033bf
GET /wp-content/uploads/elementor/css/post-653.css?ver=1673601660 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: text/css
last-modified: Fri, 13 Jan 2023 09:21:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7853
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
172.96.191.159200 OK 6.9 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (25115)
Hash e8d8c6e4997a420abc51e5fa8c1caa8b
39ae930f057de725cff8549eed82f31f8d0816c1
730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
172.96.191.159200 OK 6.6 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 139a41f01d192d239e7dce15ca307983
62a3e7c0c77209832dc649bc5583e5e0b4918bf5
d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6637
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1
172.96.191.159200 OK 5.5 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (21520)
Hash ede691fd653bdbfac841737952a78d06
7087461dd394ce9ac24840c0feec87c6ebc43934
b49a64d97cc1da6a71067be4e0acaaa8a182b3ff57390178891cf0da06903803
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.10.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5542
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
172.96.191.159200 OK 6.9 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 1f5152610686781567fb3008c4429792
d0c0bddf5fb8603ed8e55c32f3093c2207f72471
75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6872
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0
172.96.191.159200 OK 11 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type Unicode text, UTF-8 text, with very long lines (35645)
Hash 353388cc2fdf3da834c543a6aa7bfb5e
01d664f3dd904cdc3f8d0532826e578fd3414d9e
dbedf8538f58ddb94b59bcdecb7fef7eeb32ac4d10f19faec944e7aeeeef5737
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11070
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WQSP4KW
142.250.74.40200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WQSP4KW
IP 142.250.74.40:0
File type ASCII text, with very long lines (2916)
Hash 8c8ceca9cf0e2fad8c49870d28e3d585
a45bbebe6cc19497933137474fdf2d741fd3eaf0
229a7619e9c3cf7c35b97134ff7b30a1666daf3ed713dd27bd08e2042fbe5a5d
GET /gtm.js?id=GTM-WQSP4KW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 18 Jan 2023 17:37:02 GMT
expires: Wed, 18 Jan 2023 17:37:02 GMT
cache-control: private, max-age=900
last-modified: Wed, 18 Jan 2023 17:04:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0
172.96.191.159200 OK 12 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (40802)
Hash 4046853285228fd4861281728aece600
4997dbc399d3d0e0c0d23099a682f9cf72a33c00
c7c542f6f26c29f1a438c7d476ebfa1795658b6cd8b7d321b3e7c9757a6ccf1d
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11791
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.0
172.96.191.159200 OK 13 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (43869)
Hash a959ea50f26a58c934c7fed63b3a60bd
5f838be8206525156fb91dc087b7917bf696f5c5
df69ab80da22068e7e2f60881447feaf65effbd69a5a7b3fd59522bf3aea5f29
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.10.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12778
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.balitripdriver.com/wp-content/uploads/2022/10/images-1-1.jpg
172.96.191.159200 OK 9.3 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/images-1-1.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 282x179, components 3\012- data
Hash c49c2d2ff5a70169c09bfd958c01a4c6
89fad3be4a5a733781bc6bed8cb187998210fb26
160bd04e1e80686f15f9bbf57f223b30ac7ce1f655d904d26d62e938795eb5a1
GET /wp-content/uploads/2022/10/images-1-1.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 13:55:51 GMT
accept-ranges: bytes
content-length: 9264
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
172.96.191.159200 OK 30 kB URL HTTP/2 www.balitripdriver.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Sun, 09 Oct 2022 21:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
172.96.191.159200 OK 34 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65280)
Hash 83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:20:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.10.1
172.96.191.159200 OK 1.4 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.10.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (3720)
Hash 28591e063f51afa032f2605cfb94e626
abdf45f59842867e3e07a79b902b59b53cdb02c7
a9801cf7c307371a05e3353dcf3da66ae32588136a92732a88d0745b8e08d100
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.10.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1442
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
142.250.74.35200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.balitripdriver.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 19:42:16 GMT
expires: Thu, 11 Jan 2024 19:42:16 GMT
cache-control: public, max-age=31536000
age: 597286
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.106:0
Hash 37c83bf04fd97909169aacf1dd0f798e
59e01de01d81276c18de68950b4d38b1ed5f67b4
9f5ed25285544bbc3ef4610bf81d54f9173d52008154f044601495fe8f4d0b35
GET /css?family=Rubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 17:37:01 GMT
date: Wed, 18 Jan 2023 17:37:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.10.1
172.96.191.159200 OK 34 kB URL HTTP/2 www.balitripdriver.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.10.1
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type ASCII text, with very long lines (65492)
Hash dc9d8f179249c56c61c2aaad567509ca
53b7c211abcacf2eba432b3610cbe11111f0d8a7
f1d091f927a6c23f176e16ca2d5f66894a093718dbda31d4d16697fbb38a5708
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.10.1 HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 09:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33606
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2022/10/images.jpg
172.96.191.159200 OK 10 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/images.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3\012- data
Hash 7f503e0d1c0c2d2db45f3abb7b6a0cf2
4b35e393c34b9516f420703f03bbc9f07d302da8
ff3bfe4ee02fd0a11368f5b4d5122952b2b5a4adb445a7522ddd28203490a4ac
GET /wp-content/uploads/2022/10/images.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 13:51:38 GMT
accept-ranges: bytes
content-length: 10223
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2022/10/mr-muruga.jpg
172.96.191.159200 OK 26 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/mr-muruga.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 266x266, components 3\012- data
Hash d88262dbf9d5ee2df2ff53645f105733
e952a2d84a9be3db48c36980dbdf741e40bcb35d
b0d91131f1ff555761dc1f8712df5e6ae960907e9c48d00f88e0c29e06106074
GET /wp-content/uploads/2022/10/mr-muruga.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 13:58:20 GMT
accept-ranges: bytes
content-length: 26186
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2019/07/vanessa-june-jun-18-min.jpg
172.96.191.159200 OK 13 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2019/07/vanessa-june-jun-18-min.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash c0762249268e075468dc82e39ef2e54a
bb349d03c83d801fc53585ed99c153ee18d2d9ae
de3154a5a0bff1f6f8400d0c212258fee72cd878e054d61739297676603e81e0
GET /wp-content/uploads/2019/07/vanessa-june-jun-18-min.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Wed, 17 Jun 2020 13:38:56 GMT
accept-ranges: bytes
content-length: 12798
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2019/07/johnny-leong-mar-19-min.jpg
172.96.191.159200 OK 14 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2019/07/johnny-leong-mar-19-min.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash cad99776a305bcc7dfa26e485e44542d
16c5e1eab6c6ec4fd1f7eca13273626b5400e612
e9bd48393177b993d1832a5f7a7b5727aa84c771418e0b5825ad67593a364b1c
GET /wp-content/uploads/2019/07/johnny-leong-mar-19-min.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Wed, 17 Jun 2020 13:38:56 GMT
accept-ranges: bytes
content-length: 13717
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2022/10/sasank.jpg
172.96.191.159200 OK 155 kB URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/sasank.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 553x653, components 3\012- data
Size 155 kB (155282 bytes)
Hash b97150b30716c184c9421d733faed511
5e268318d72693cc7afa16b3c855bc13e7eaeaa1
7ce9be77ec81fd4a39f3c289c2e122f3259ba4c97c44ddf8cbaec09d6df916bd
GET /wp-content/uploads/2022/10/sasank.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 14:06:37 GMT
accept-ranges: bytes
content-length: 155282
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e1c7515ba5231aaae042ef63071a8562
676673d88597e11f572ac38844b18562ab57b920
002b5adabb3fb37aa6c0f18adee2f221a770e217fe95a027fcf8b8fe84794a19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 43904744042cec16f81766250b8ebf49
8393568a2e9c86dafc36563c76703704c7cd86c6
d2359c7cce5176a68cd627ba7e39dfceff78036c6840cd468994df8519f1fb27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/pagead/regclk?auid=1262747310.1674063422&url=https%3A%2F%2Fwww.balitripdriver.com%2Fcars%2F&tft=1674063422459&tfd=4127&gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB&gclsrc=aw
142.250.74.98200 OK 0 B URL HTTP/2 adservice.google.com/pagead/regclk?auid=1262747310.1674063422&url=https%3A%2F%2Fwww.balitripdriver.com%2Fcars%2F&tft=1674063422459&tfd=4127&gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB&gclsrc=aw
IP 142.250.74.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pagead/regclk?auid=1262747310.1674063422&url=https%3A%2F%2Fwww.balitripdriver.com%2Fcars%2F&tft=1674063422459&tfd=4127&gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB&gclsrc=aw HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.balitripdriver.com
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 18 Jan 2023 17:37:03 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/landing?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB>m=2wg1a1WQSP4KW&auid=1262747310.1674063422
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/landing?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB>m=2wg1a1WQSP4KW&auid=1262747310.1674063422
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB>m=2wg1a1WQSP4KW&auid=1262747310.1674063422 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.balitripdriver.com
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 18 Jan 2023 17:37:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 43904744042cec16f81766250b8ebf49
8393568a2e9c86dafc36563c76703704c7cd86c6
d2359c7cce5176a68cd627ba7e39dfceff78036c6840cd468994df8519f1fb27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 18 Jan 2023 16:41:07 GMT
expires: Wed, 18 Jan 2023 18:41:07 GMT
cache-control: public, max-age=7200
age: 3357
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100059449-1&cid=468663204.1674063424&jid=122812550&gjid=488941221&_gid=1455172559.1674063424&_u=YEBAAEAAAAAAgCAAI~&z=1461884922
173.194.222.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100059449-1&cid=468663204.1674063424&jid=122812550&gjid=488941221&_gid=1455172559.1674063424&_u=YEBAAEAAAAAAgCAAI~&z=1461884922
IP 173.194.222.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100059449-1&cid=468663204.1674063424&jid=122812550&gjid=488941221&_gid=1455172559.1674063424&_u=YEBAAEAAAAAAgCAAI~&z=1461884922 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.balitripdriver.com
Connection: keep-alive
Referer: https://www.balitripdriver.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.balitripdriver.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 18 Jan 2023 17:37:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6a6b2d9466c78838d5b89a24b1afc5f1
056b045d2648e975609cc689aace2cebf56dc4b8
87f1afd429d569be0ae89952298d447806d8c9d543b4ed8d2bc80cd9dc3d125d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 17:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 816accd72419764cabc1d038af58446c
ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08
d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 00:41:55 GMT
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
age: 60911
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2022/10/girls-mirror-bali-nightclub.jpg
172.96.191.159200 OK 0 B URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/girls-mirror-bali-nightclub.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
GET /wp-content/uploads/2022/10/girls-mirror-bali-nightclub.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 14:02:28 GMT
accept-ranges: bytes
content-length: 125945
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2019/07/Jerry-subphaso-apr-18-min.jpg
172.96.191.159200 OK 0 B URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2019/07/Jerry-subphaso-apr-18-min.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
GET /wp-content/uploads/2019/07/Jerry-subphaso-apr-18-min.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Wed, 17 Jun 2020 13:38:56 GMT
accept-ranges: bytes
content-length: 12955
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.balitripdriver.com/wp-content/uploads/2022/10/neeraj.jpg
172.96.191.159200 OK 0 B URL HTTP/2 www.balitripdriver.com/wp-content/uploads/2022/10/neeraj.jpg
IP 172.96.191.159:0
ASN #59253 Leaseweb Asia Pacific pte. ltd.
GET /wp-content/uploads/2022/10/neeraj.jpg HTTP/1.1
Host: www.balitripdriver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.balitripdriver.com/cars/?gclid=Cj0KCQiAn4SeBhCwARIsANeF9DJxwQ5hNBqRPCtzZYpzOQ-59fxReb_gIh1M4q1TGJr9sxCCYZ1kUtEaAplOEALw_wcB
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 25 Jan 2023 17:37:01 GMT
content-type: image/jpeg
last-modified: Sun, 09 Oct 2022 14:05:15 GMT
accept-ranges: bytes
content-length: 93886
date: Wed, 18 Jan 2023 17:37:01 GMT
server: LiteSpeed
X-Firefox-Spdy: h2