Overview

URLwww.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
IP 185.237.144.175 (Germany)
ASN#47583 Hostinger International Limited
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-09-11 21:06:01 UTC
StatusLoading report..
IDS alerts0
Blocklist alert19
urlquery alerts No alerts detected
Tags None

Domain Summary (8)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-11 04:57:04 UTC 23.33.119.27
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-11 15:58:57 UTC 143.204.55.27
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-11 04:57:17 UTC 143.204.55.110
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-11 04:58:07 UTC 34.117.237.239
www.perpustakaan.baytalhikmah.sch.id (29) 0 2021-09-11 01:36:40 UTC 2022-09-11 20:06:57 UTC 185.237.144.175 Unknown ranking
ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-11 12:16:56 UTC 93.184.220.29
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-11 04:57:50 UTC 35.164.146.235
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-11 04:57:20 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalo (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/js/colorbox/jquery.colorbox-min.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/js/form.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/js/gui.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/template/default/js/jquery.jcarousel.min.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/template/default/js/bootstr (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/template/default/js/supersi (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/js/jquery.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/template/default/js/bootstr (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/js/highlight.js Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/webicon.ico Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/images/docs/WhatsApp_Image_ (...) Phishing
2022-09-11 2 www.perpustakaan.baytalhikmah.sch.id/repository/template/default/js/supersi (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 185.237.144.175
Date UQ / IDS / BL URL IP
2023-01-26 18:36:07 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/h (...) 185.237.144.175
2023-01-21 20:22:49 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/c (...) 185.237.144.175
2023-01-13 19:01:54 +0000 0 - 0 - 1 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175
2023-01-06 10:55:05 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/r (...) 185.237.144.175
2022-11-24 14:01:12 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/c (...) 185.237.144.175


Last 5 reports on ASN: Hostinger International Limited
Date UQ / IDS / BL URL IP
2023-01-30 00:42:44 +0000 0 - 0 - 2 punjabdevelopersassociation.com.pk/yxknwc3j1.rar 151.106.106.234
2023-01-30 00:40:40 +0000 0 - 0 - 2 mwu.com.mx/wp-content/uploads/2020/08/1.jpg 109.106.254.27
2023-01-30 00:39:05 +0000 0 - 1 - 0 bytilly.com.br/ 156.67.72.55
2023-01-30 00:06:44 +0000 0 - 0 - 3 wshsoft.company/python27.zip 194.59.164.67
2023-01-30 00:02:47 +0000 0 - 0 - 2 corpolevesuplementos.com.br/nyan.jpg 156.67.74.117


Last 5 reports on domain: baytalhikmah.sch.id
Date UQ / IDS / BL URL IP
2023-01-26 18:36:07 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/h (...) 185.237.144.175
2023-01-21 20:22:49 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/c (...) 185.237.144.175
2023-01-13 19:01:54 +0000 0 - 0 - 1 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175
2023-01-06 10:55:05 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/r (...) 185.237.144.175
2022-11-24 14:01:12 +0000 0 - 0 - 1 perpustakaan.baytalhikmah.sch.id/repository/c (...) 185.237.144.175


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-10-08 16:36:01 +0000 0 - 0 - 14 perpustakaan.baytalhikmah.sch.id/repository/f (...) 185.237.144.175
2022-09-27 06:00:06 +0000 0 - 0 - 16 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175
2022-09-15 19:36:24 +0000 0 - 0 - 19 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175
2022-09-15 19:36:02 +0000 0 - 0 - 19 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175
2022-09-15 18:43:36 +0000 0 - 0 - 19 www.perpustakaan.baytalhikmah.sch.id/reposito (...) 185.237.144.175

JavaScript

Executed Scripts (6)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (46)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2508
Expires: Sun, 11 Sep 2022 21:47:38 GMT
Date: Sun, 11 Sep 2022 21:05:50 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 20:07:51 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N2rilHlzSsdUey2_uRclXyEox1jVgeDQtEfmJlg5rn7npTDV94X1ig==
Age: 3479


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RQjQ3ema07nMCsAyX8U0-g3EEbEmAREynODwSUTOain33AcRJxgO7Q==
age: 49718
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 11 Sep 2022 21:05:50 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
set-cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i; expires=Mon, 12-Sep-2022 09:05:50 GMT; Max-Age=43200; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/colorbox/colorbox.css HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1435
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   1435
Md5:    01c5e1bc5d2323c2b2c442671d3ca473
Sha1:   6f55652a01e958bfc02a8b0844ad464aec6a17bf
Sha256: 624e38222f86738d5ef4fdf4c1c7ca0b6ea0c9adcb2070111caf2f6cbad1aa0f
                                        
                                            GET /repository/template/core.style.css HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5
                                        
                                            GET /template/default/css/tango/skin.css HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 728
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   728
Md5:    94a3f6ffdebcab4f48d2e5a6d571d095
Sha1:   948e3f04cbf0e3fc8496da28d32d48271cb3c8fb
Sha256: b3993130121ae2d4eca01c35242ce66ac91b29e1bdb4ca1fbf5dbe2d949c0067
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 20:56:07 GMT
Expires: Sun, 11 Sep 2022 21:30:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: U3InziIZDiSm5PBHALsh2TeWGl-CIvSjA3yepacCT8ZBfSju0-aoNw==
Age: 584


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /repository/template/default/style.css HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
                                        
                                            GET /js/colorbox/jquery.colorbox-min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4463
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (10488)
Size:   4463
Md5:    0ade67f373f399a8a91044ad42b36919
Sha1:   627322805e9b4dc837de76f6670cfcba08dd945a
Sha256: 028fb8f28f491f3fd335a434585f31bde4106d5d4b005373c3da25a8aa39a374

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/form.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 1695
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1695
Md5:    62e80ceb5bdc14d04d28456153ab2ea0
Sha1:   40163d69bea0be2fe54b92ed4cb4ee27797cb0eb
Sha256: b3fcc82ca1fa77b118b1ece5e159c91eb11c499a14c25501d1eb9d6ebd2d91ec

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/gui.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4186
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   4186
Md5:    65e38dad926fda87895c62e912a6beb4
Sha1:   a1bcb26496755cbc75abced38504367b4d2e9e16
Sha256: d3b7e4120fc38d966b5cb6160ee95cab49d2c31d8d79d0df945f26e04cbe24a1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2339
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 21:05:51 GMT
Last-Modified: Sun, 11 Sep 2022 20:26:53 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /template/default/js/jquery.jcarousel.min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4558
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (15622)
Size:   4558
Md5:    01e0eeca44daf58c5d6e3b3a2a74da36
Sha1:   f496b283d4134c109790103e72e1b932850c8d3d
Sha256: 11dcaa12ba22e5e32cde8cb467c15efbe188bd068ffb409edd22bc20447238d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/template/default/js/bootstrap.min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/template/default/js/supersized.3.2.7.min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 21:05:51 GMT
last-modified: Fri, 25 Apr 2014 12:46:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 33555
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-powered-by: Niagahoster
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (65482), with CRLF line terminators
Size:   33555
Md5:    338a8cb4b3bd475394415e14788a258b
Sha1:   5d1cc9c51062e6e66e784f42d807ad22e9e10ec5
Sha256: 77d249bfb6e373a53ff9e93100063680c93a1a607dcd49842fa42a4bbe0e7507

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/js/highlight.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vWugCSxUPZIanFWJCswgpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.164.146.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d2gmUUxqfjNvdObrCu9iCaOQox8=

                                        
                                            GET /repository/images/docs/cover_depan_page-0001.jpg.jpg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5
                                        
                                            GET /repository/images/docs/WhatsApp_Image_2021-08-26_at_09.49.09(1).jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/images/docs/WhatsApp_Image_2021-01-13_at_11.27.22.jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-length: 3842
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3842
Md5:    86312c12846b0ad11c1069910f161adb
Sha1:   84e5f68695627e354fc8c5e33c929e6850de9c8d
Sha256: f0909d8845205e459c285835d26c44a0c031b49e05bf30dbdaed41fd544aead5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/images/docs/saring-sebelum-sharing.jpg.jpg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
                                        
                                            GET /repository/images/docs/Cari_Duit_3D.jpg.jpg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
                                        
                                            GET /repository/images/docs/Tere_Liye_-_Matahari.jpg.jpg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
                                        
                                            GET /repository/images/docs/WhatsApp_Image_2020-12-31_at_10.23.53.jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/template/default/js/bootstrap.min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  data
Size:   7686
Md5:    c1c25ac4a329d1be85f3657342d3977f
Sha1:   3f9a4ddede4fd75d2d22e1fee1c04852148db0ba
Sha256: 25f52e8f9f7982d4c1d4112500a95e4d4e75227b37be1cc67452d891c4776eed

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/images/docs/cover_depan_page-0001.jpg.jpg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe
                                        
                                            GET /repository/images/docs/WhatsApp_Image_2021-01-13_at_11.27.22.jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/images/docs/WhatsApp_Image_2021-08-26_at_09.49.09(1).jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/template/default/img/rss.png HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  data
Size:   7686
Md5:    c1c25ac4a329d1be85f3657342d3977f
Sha1:   3f9a4ddede4fd75d2d22e1fee1c04852148db0ba
Sha256: 25f52e8f9f7982d4c1d4112500a95e4d4e75227b37be1cc67452d891c4776eed
                                        
                                            GET /repository/js/highlight.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /repository/webicon.ico HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:53 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1674)
Size:   3848
Md5:    a39560abea6f891116cfcd14081ad026
Sha1:   a5bd6a4f63565475ff26ed7128a3219e806351ef
Sha256: 3c1be657afa56f65cd7c63b1deaccb662034ace47e4e87d843a558f8500ec4fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4045
Expires: Sun, 11 Sep 2022 22:13:18 GMT
Date: Sun, 11 Sep 2022 21:05:53 GMT
Connection: keep-alive

                                        
                                            GET /repository/images/docs/WhatsApp_Image_2021-08-30_at_10.21.36.jpeg.jpeg HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---
Magic:  data
Size:   4341
Md5:    033c35ad4c84aa06de82122234b732a1
Sha1:   85e3c406226532e290910a24b9ffa4a6ed4d4d23
Sha256: bc96db8ef1047d18b9126aeeb7a08a0f5dd0a1e31f3a657331ccddfe241c4c45

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4045
Expires: Sun, 11 Sep 2022 22:13:18 GMT
Date: Sun, 11 Sep 2022 21:05:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4045
Expires: Sun, 11 Sep 2022 22:13:18 GMT
Date: Sun, 11 Sep 2022 21:05:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4045
Expires: Sun, 11 Sep 2022 22:13:18 GMT
Date: Sun, 11 Sep 2022 21:05:53 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7519
x-amzn-requestid: 8d8a8df6-abf5-45dd-8d78-de5ae715a9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE_UNEoWoAMFRLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631845b4-0101ca7a09e432f305aa7066;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:18:12 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Z0Z4IozbbythqWA7mNaqtO4NWbLi1zL2G6HmMGP0c9VqIzMugvVh_Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 00:00:49 GMT
age: 75904
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7519
Md5:    bb1a86dcf94db0a29a6ebe21866766d4
Sha1:   b3491a6f12c97c8e1848a206a185fae29213c1e5
Sha256: d05619e519fed6c0b6c0616cf540908006a68f127b25e38fb9d041dfe2546df4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10611
x-amzn-requestid: 1492333f-e0ed-4061-8c16-a62e0687b95e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLgc-EBkIAMF27A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae11f-555b67794d0bdfd3384ebde8;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:45:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: gz4lq1qR5Erx6Gfh8Qh4C2RGT4-GLRLZZcMZLAvVztYBgYenM9LIhA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:18 GMT
etag: "22e386713ccb95ca1cf9aa367a5ad02bd1664954"
age: 84335
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10611
Md5:    b290c3f75a769f5cb0f36b5c84436c9b
Sha1:   22e386713ccb95ca1cf9aa367a5ad02bd1664954
Sha256: e311757ae3bc5b821a9c1d4d654250b1ac936228eb4a600aa1e5b391d25adaaf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 22:14:30 GMT
age: 82283
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8485
Md5:    e407da4d97d497925b1ab523fd416787
Sha1:   166741631fb93d109b18dde6d316b3fa3276aa8f
Sha256: 707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13568
x-amzn-requestid: a2fadcbe-350b-4a06-9f9c-ee2da40bb285
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEESeHA_oAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317e742-4740aa3f4ebd479e7a4886ed;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 00:35:14 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jbF2ZaJUhIoJV-o4f6iviFyUnoDW4R0KHTfC5NySmITnsLbD5iJrPQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:11 GMT
age: 84342
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13568
Md5:    8625e0707046e7a3715a8dbb40b1cae2
Sha1:   0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
Sha256: abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:34 GMT
age: 84319
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7635
Md5:    4ec2646c56c4c522f0744768ad20342b
Sha1:   ad1d9eee90556a359547dc7cbb6758aee2c804cd
Sha256: 0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mNvNO0HJjZ1zwPKcjfqiVOnCL0CYXc8BPDSFbV6MXVW71IVt-2K3mQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:46:54 GMT
age: 83939
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6889
Md5:    57d797a1c3f6589746a1135bdb19f54f
Sha1:   7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
Sha256: ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe
                                        
                                            GET /repository/template/default/js/supersized.3.2.7.min.js HTTP/1.1 
Host: www.perpustakaan.baytalhikmah.sch.id
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.perpustakaan.baytalhikmah.sch.id/repository/free-stuff-on-roblox-catalog-2021_gm431946152.pdf
Cookie: SenayanMember=l6bu8cmvudh7l2gfvj96ksl8jco7lp1i

search
                                         185.237.144.175
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: Niagahoster
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sun, 11 Sep 2022 21:05:52 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing