Report - merantikab.go.id/

Report Overview

Submitted URL
merantikab.go.id/
IP
123.231.217.156
ASN
#4800 PT Aplikanusa Lintasarta
Submitted
2023-01-19 01:16:13
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
merantikab.go.id	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	26 kB	1.2 MB	123.231.217.156
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	45 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	765 B	2.4 kB	142.250.74.106
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	66 kB	216.58.207.227
news.merantikab.go.id	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	1.2 MB	123.231.217.156
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.160.69.117

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js	Phishing
2023-01-19	medium	merantikab.go.id/	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/jquery/dist/jquery.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/filterzr/jquery.filterizr.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/Sticky/jquery.sticky.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/count-to/jquery.countTo.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/wow/dist/wow.min.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/js/script.js	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/icon-meranti.ttf?j99dik	Phishing
2023-01-19	medium	merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/themefisher-font.ttf?ug5hnh	Phishing
2023-01-19	medium	merantikab.go.id/agenda_perhari/1	Phishing
2023-01-19	medium	merantikab.go.id/agenda_perhari/2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	merantikab.go.id/vendor/meghna/js/script.js	9.4 kB	2023-03-13	2023-03-13
Pretty URL merantikab.go.id/vendor/meghna/js/script.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:39:21 Last Seen2023-03-13 02:39:21 Times Seen1 Hash 7a86b63502efa6d62391740e8f6444f4 6b02e194a9433ed8a9d217e2744afdacb6fa6ddb 23cffe2eddc704c75d802eb3f601060521039cf903a7cd290edd781d704af0e5 Loading...

	merantikab.go.id/	12 kB	2023-03-13	2023-03-13
Pretty URL merantikab.go.id/ IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:39:21 Last Seen2023-03-13 02:39:21 Times Seen1 Hash 5107e8a53f2e55e63789b4d758bd2b2a 71bd94d5209e2e97504509da7dfa12f7bef7e247 32351eba7d55a83e93297685cd8860f4e9695b80116b8acc79faff0cae262481 Loading...

	merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.min.js	43 kB	2023-03-07	2024-05-06
Pretty URL merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-05-06 06:28:51 Times Seen3067 Hash 777da4aaf5b960636dec0fd4e50ba489 9a94038ccae90e6d2a0f9cb61f79ae7c70320287 e1a52c0a06fa9f65e015b02e7ec463fd621211a9d2ae44b6660597900e927fbb Loading...

	merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-05-08
Pretty URL merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-05-08 11:48:29 Times Seen6062 Hash b37d7edf99565d3858eaa1ad80df3cff 786a4343711e9af5e5dfcc493e7d2331b48875bb b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2 Loading...

	merantikab.go.id/vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js	4.6 kB	2023-03-11	2024-01-22
Pretty URL merantikab.go.id/vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:17:38 Last Seen2024-01-22 01:10:27 Times Seen6 Hash 914b55d05770b75b81490b185b4044c4 4e134d69012f789c6561b017923a8cabbb3bb62f 39e134b26c6f555fc8343607ba36052d27d781eb2f66bd839ce0d54fbd278e93 Loading...

	merantikab.go.id/vendor/meghna/plugins/count-to/jquery.countTo.js	2.6 kB	2023-03-07	2024-05-04
Pretty URL merantikab.go.id/vendor/meghna/plugins/count-to/jquery.countTo.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:53 Last Seen2024-05-04 21:09:08 Times Seen121 Hash 394d412316fe7c58ee2f715a11405a37 1f2045b3a7dfcf26a1bbc7686e725e044b3ce4ed 474754d75548fad740bb581e4b0596cb9a1c0b47cfc03f8a6e273cc6da9b9080 Loading...

	merantikab.go.id/vendor/meghna/plugins/wow/dist/wow.min.js	8.2 kB	2023-03-07	2024-05-08
Pretty URL merantikab.go.id/vendor/meghna/plugins/wow/dist/wow.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-08 10:38:12 Times Seen1391 Hash ed4b12ef0f7e4bf5d5ff3555d18718cb 258fa26dec8fcf4769d49eaca6712ef56923673e 3162b6468674133d7b6c903e4b8a06f7faf51216d1e7f8b3edc8f326b1bfe461 Loading...

	merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-08
Pretty URL merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:32 Last Seen2024-05-08 10:38:12 Times Seen2884 Hash 04c84852e9937b142ac73c285b895b85 8fb8a9319055253d085edfc3bb72d20f614ec709 36460e494e4c628443afded40b2743b5ede9a4a76fb4f7b9ef2345cc7e59fd64 Loading...

	merantikab.go.id/vendor/meghna/plugins/jquery/dist/jquery.min.js	105 kB	2023-03-07	2024-01-23
Pretty URL merantikab.go.id/vendor/meghna/plugins/jquery/dist/jquery.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:41:58 Last Seen2024-01-23 03:16:39 Times Seen10 Hash ad5a3afd3889254fcb38ab44a7f8e837 e278079bf40fa7305e32f054e1bdc294653fa185 50e6fbfc45745f3b3c3d78f8f1796d0a0af75425a02046b7ba5668cb02d22fcb Loading...

	merantikab.go.id/	55 B	2023-03-11	2023-03-13
Pretty URL merantikab.go.id/ IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 08:43:58 Last Seen2023-03-13 15:45:02 Times Seen1 Hash f1f9524805b1d8cd1a2325c887dbfd57 2ce77113982a53fd613037e9dccc6a5f6988382a 18e7b146d81f028d80333932613f2356057204580eb56e5b23522ef069c9aeac Loading...

	merantikab.go.id/vendor/meghna/plugins/filterzr/jquery.filterizr.min.js	22 kB	2023-03-07	2023-12-28
Pretty URL merantikab.go.id/vendor/meghna/plugins/filterzr/jquery.filterizr.min.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2023-12-28 22:02:06 Times Seen35 Hash cc3edf695dc219d0488b6b1b99bb37b8 1a58ab2d4ae5725896f0663a5c0795d84ed610b1 5f3393a1e54452c703d85aea44b7e09b8c7426467b2dc3c8b249b98a474486b2 Loading...

	merantikab.go.id/vendor/meghna/plugins/Sticky/jquery.sticky.js	7.8 kB	2023-03-07	2024-03-04
Pretty URL merantikab.go.id/vendor/meghna/plugins/Sticky/jquery.sticky.js IP 123.231.217.156 ASN #4800 PT Aplikanusa Lintasarta Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:19 Last Seen2024-03-04 14:47:12 Times Seen37 Hash d5f7fb43a03d361850078409ffddd94e 6ccc5c366c53beb5c7e5ff62dc0858140e63602c 8381d12db2d3eccf96bbfa4f1aac3888cdd9cbf6fa1622a871e341bcb51b4d4d Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (64)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17860
Expires: Thu, 19 Jan 2023 06:13:42 GMT
Date: Thu, 19 Jan 2023 01:16:02 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6854
Expires: Thu, 19 Jan 2023 03:10:16 GMT
Date: Thu, 19 Jan 2023 01:16:02 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 00:34:29 GMT
content-type: application/json
age: 2493
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7afaa97fbfa9baa1485c892eac8e114d
8c17c707c218e28ac14197ce8e5eef873207a732
59db16baacb452453dbf44fc2a24f25ab09c4dbaec3a9271fda84230d8f11925

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59DB16BAACB452453DBF44FC2A24F25AB09C4DBAEC3A9271FDA84230D8F11925"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17017
Expires: Thu, 19 Jan 2023 05:59:39 GMT
Date: Thu, 19 Jan 2023 01:16:02 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: HR4FgM/GIH+tnJZVA3n9tlkAxEVm9rgTq1uFzMja9w1OgqTWpz37dTKpZVLFWl26tVGgnsdmkSk=
x-amz-request-id: MAA1E0RW6FNZ1CZT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 00:56:53 GMT
age: 1149
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 01:16:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 00:17:25 GMT
age: 3517
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5490
Cache-Control: max-age=120136
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:02 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 10:38:18 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.160.69.117

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.69.117:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O83rPHKwAcKy8Nhgam3xjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aXjq3lEmMXQzFOI56ajFV521wFc=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2901
Expires: Thu, 19 Jan 2023 02:04:25 GMT
Date: Thu, 19 Jan 2023 01:16:04 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2901
Expires: Thu, 19 Jan 2023 02:04:25 GMT
Date: Thu, 19 Jan 2023 01:16:04 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2901
Expires: Thu, 19 Jan 2023 02:04:25 GMT
Date: Thu, 19 Jan 2023 01:16:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94ef2ebf-b368-4c49-877b-a14ed2f748c4.jpeg

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94ef2ebf-b368-4c49-877b-a14ed2f748c4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4017 bytes)
Hash
e0a101619de7c42082cb54416bf0cba0
a759ba4a1a95674e9b8c7146ba748826d22bc60f
7b75ffde64861431963ec226259f03d3848aada46f611962d10dff8a4aa88bd4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94ef2ebf-b368-4c49-877b-a14ed2f748c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4017
x-amzn-requestid: 3f89e17a-7a8d-460b-9bea-ee8c23b88379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3nBpFr9oAMFbbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61ed7-21c5578f084a3f36640ac14e;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 04:06:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: o7LjBgAA9cnY-Ph8ulkRFPNnWa0tSsKeGgL7CLpsKj4xP5uwTFoTcw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 11:34:13 GMT
age: 49311
etag: "a759ba4a1a95674e9b8c7146ba748826d22bc60f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12174 bytes)
Hash
eeb5713ea23c36906255e88dc10eadbf
896d92a22f676b5946004feb723b094a8a36e09c
eb75a6fcc83d5134137caa6aa110e284a93149faab9557aea8853f9d63f82bc8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12174
x-amzn-requestid: 79fee0c7-be5a-4467-b351-aeb8a7e7d19f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULMH_noAMF77g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-7d7d140511fbcb6063868fd3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VL7g5MbOqAMyRbpSLbv3GseRY4zBNF22AZ_am4KpDyQqbb0Vp6AL-Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:26:24 GMT
age: 64180
etag: "896d92a22f676b5946004feb723b094a8a36e09c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03285c30-851a-4892-8ad6-994296dfce51.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5351 bytes)
Hash
1eff6cdee4c98a6f806c5b417b12cdf2
4b4b817055dc2c0699c6e01d85841638e63d9c0e
2f2fdd1e829e4175e8cf915794ffc16e24dac72ab425448cd0ac5165b1b87b2f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03285c30-851a-4892-8ad6-994296dfce51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5351
x-amzn-requestid: 86ba43bc-0b0f-40ba-9015-463371baf673
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foQFg_IAMFSZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61301-0c1461622a361a5d0ab35cbb;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -mbHxl4DLZkERC2UDDAc2uOtx4kTzqdcgwWxs93CROmqzmbwAU-P6w==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:33:22 GMT
age: 78162
etag: "4b4b817055dc2c0699c6e01d85841638e63d9c0e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5e839b2-9887-4705-93dd-351351c5f612.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6489 bytes)
Hash
dca732f3b0a525c0689d566633effb47
9b12e4ce9f936ccb2203807886765e5b0c6e0339
cb5b0faffd9a609aa7f9af0458d032b30d32894b412ecd6d8aa18c90dc0448bf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5e839b2-9887-4705-93dd-351351c5f612.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6489
x-amzn-requestid: 8290bd7c-4fb9-4149-b82a-dde38ba2afca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewag5H5EoAMFV-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c33e05-6ad6ec63583c8d511f1b6425;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 23:43:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: splv2LTI5lvHrhvTcF5T0t15iXeLQ2FFZ5uPopDoYxFaa8LE5U9uxA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 10:58:17 GMT
age: 51467
etag: "9b12e4ce9f936ccb2203807886765e5b0c6e0339"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F698f24eb-f312-4a20-b261-be41dd92564c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6399 bytes)
Hash
ffb6957f05eb26875b60b795a1a0e818
44c2febdf59c4f08401e7c3edd0837dd4b1a8886
0fdb841fbf2f336f58cc4b63d271c8cdd3fba345de4c774651826ea24e3628b6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F698f24eb-f312-4a20-b261-be41dd92564c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6399
x-amzn-requestid: e4b80b20-8aad-47aa-9059-7f7729f901bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7UZ1ExQoAMFXKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79aa5-66622b6c3e8fd210011618c5;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:07:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vft6w7_C0wITMZHJIKtgk1N4jnzneplWHUZhPz_JyHmSI9kcEMK-SA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:24:46 GMT
age: 64278
etag: "44c2febdf59c4f08401e7c3edd0837dd4b1a8886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3861 bytes)
Hash
b1b47910c4f71976f73a884bcae6f9bc
26c0d42fddb2a02d9878c34a76874710c92a9d30
9c5ce4945939b126cd36202f5afb8009ce790a792270ec31cc22099e4cd12a24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3861
x-amzn-requestid: c8fbb2e1-9ec6-42c0-8030-9be785e8913e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9TegFNEoAMFwqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c865f6-04a9e7db684e88ed69e1bd43;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wTiBoiSa1euVzUKPwlAWWZD-fYwMQGxgvRRzr1ALkrFY5VV3zeL9Jg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:52:42 GMT
age: 12202
etag: "26c0d42fddb2a02d9878c34a76874710c92a9d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

merantikab.go.id/vendor/meghna/plugins/themefisher-font/style.css

123.231.217.156

200 OK

6.9 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/themefisher-font/style.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
6.9 kB (6876 bytes)
Hash
e9919c94126d35e9d18aebd07817c6db
4e4a772fc755a53e7edcd938237c80a81d2a3296
f9b1ae25db70bcfc1dd363246ad00e50147c8b576930fb629bc4c69d3878c330

HTTP Headers

GET /vendor/meghna/plugins/themefisher-font/style.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 6876
Connection: keep-alive
Upgrade: h2
Last-Modified: Mon, 01 Mar 2021 09:48:58 GMT
ETag: "b60e-5bc7686d7b680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/themefisher-font/style_1.css

123.231.217.156

200 OK

442 B

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/themefisher-font/style_1.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
442 B (442 bytes)
Hash
91a5579684347d639d26f4610c6e6be9
2d7d6779c78ecf6778309fc782f3f3862bd3e730
6f1f8f955f03c910051398fa16ea1f38c5a1ea02c0a821b229d70ee435e944ae

HTTP Headers

GET /vendor/meghna/plugins/themefisher-font/style_1.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 442
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 12 Mar 2021 07:54:02 GMT
ETag: "3d8-5bd5234103a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/animate-css/animate.css

123.231.217.156

200 OK

3.0 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/animate-css/animate.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2964 bytes)
Hash
566b0035e08e54b983486ca6166ec704
8d39fb2e5b43ab84f3ac01add5d4a8a7141106d5
3d1611d1caccddb8473b12b4ff72eb29a5301649d733e4ca06441e7dab5a54b5

HTTP Headers

GET /vendor/meghna/plugins/animate-css/animate.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 2964
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "6353-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.css

123.231.217.156

200 OK

577 B

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
577 B (577 bytes)
Hash
9a305af1bd689c44fc4661a500b05755
b07fa876f042d1712050acd9602d1b7fabe85f94
62c7e903b6dc0646986bddbed5003a4da334edfec2120804c87138142cdcd89e

HTTP Headers

GET /vendor/meghna/plugins/slick-carousel/slick/slick.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 577
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "767-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/magnific-popup.css

123.231.217.156

200 OK

1.8 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/magnific-popup.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1830 bytes)
Hash
b891a6cb5e74ef6dd22bbbff85eb441f
641fe58d196bb4d90bf32a3bac5fb19f74c5f7dc
4ead3c65c17d0c3c7146aa395fbbbbd970ac63908bcdeb77ed6d64822437a20a

HTTP Headers

GET /vendor/meghna/plugins/magnific-popup/dist/magnific-popup.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 1830
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "1c86-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick-theme.css

123.231.217.156

200 OK

878 B

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick-theme.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
878 B (878 bytes)
Hash
2ae66f8c8317623b29df8ecb78cc4256
00ac077eef398917fc07b2f2fec25ec7ca48d72b
595d0559c400ebf55e98462bdbcb1efb7863c7ee9c8970a9f3f0109fe19718c0

HTTP Headers

GET /vendor/meghna/plugins/slick-carousel/slick/slick-theme.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 878
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "d15-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/css/style.css

123.231.217.156

200 OK

6.4 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/css/style.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text
Size
6.4 kB (6427 bytes)
Hash
52028347e71393bd75478f25837a6072
52563ab836df931e5dd725f1cc1bd75476aa5854
1509d0fa75114123f3ac75dc5c55a4fa92715bbc7c5aee22ac8df67e9906121b

HTTP Headers

GET /vendor/meghna/css/style.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 6427
Connection: keep-alive
Upgrade: h2
Last-Modified: Mon, 10 May 2021 03:42:04 GMT
ETag: "8626-5c1f18f98fb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js

123.231.217.156

200 OK

9.8 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (32033), with CRLF line terminators
Size
9.8 kB (9838 bytes)
Hash
43c22cf7a7909e424cdb9edbd0f3de1a
3edbbd8b7300b8c191fb986a768b915bb572360b
b1e6ac878e5d746cdada02ab3c918d6e4430bc873423885b568bcd21de6c642c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/bootstrap/dist/js/bootstrap.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 9838
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "90bb-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/

123.231.217.156

200 OK

9.0 kB

URL HTTP/1.1
merantikab.go.id/
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (310), with CRLF line terminators
Size
9.0 kB (9016 bytes)
Hash
0e782226723d0f6ae41b960d179ae45a
fc5d313b88c1fbd09a6b53d2c351afa2507a4f7f
ffe2eef9668ac2941430ce11087ed1d1d3c158ac4424a47b23105e4ebaffbca3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:06 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 9016
Connection: keep-alive
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; expires=Thu, 19-Jan-2023 03:16:06 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D; expires=Thu, 19-Jan-2023 03:16:06 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Anaheim|Quattrocento+Sans:400,700

142.250.74.106

200 OK

926 B

URL HTTP/2
fonts.googleapis.com/css?family=Anaheim|Quattrocento+Sans:400,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
926 B (926 bytes)
Hash
dd629c7a0a78d06b9f505212f72f2405
0009c4fa893da1b4bb2e6df483a8f5d6758c45b1
5b8dc1564bb0b318dc6207f5b14aaf181b8cda4d67543d09d7cf07df86da56a0

HTTP Headers

GET /css?family=Anaheim|Quattrocento+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 19 Jan 2023 01:16:07 GMT
date: Thu, 19 Jan 2023 01:16:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/css/bootstrap.min.css

123.231.217.156

200 OK

20 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/bootstrap/dist/css/bootstrap.min.css
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
20 kB (19749 bytes)
Hash
e8438eabd438f940694edbd4569aa51e
9395d0177441a26b42dad8a09d7fbe2fc6ac2c1a
ccc0a30fa490d287ec17fbc9ff4560d267d0efb697384bc3fab88f1357c5a040

HTTP Headers

GET /vendor/meghna/plugins/bootstrap/dist/css/bootstrap.min.css HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: text/css
Content-Length: 19749
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "1d975-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/jquery/dist/jquery.min.js

123.231.217.156

200 OK

32 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/jquery/dist/jquery.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
32 kB (32382 bytes)
Hash
5c1e4de314c259d9265ee4a7c1438a82
449df25452866908557c098c089ae08b9c0471a9
6dbf1de692fcb31a56c5b0fc6a84e36a7b0c3c08b42bd63e96698ada96f6ae22

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/jquery/dist/jquery.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 32382
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "1995e-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.min.js

123.231.217.156

200 OK

10 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/slick-carousel/slick/slick.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (42862), with CRLF line terminators
Size
10 kB (10445 bytes)
Hash
b85930f19e6ddab27aecf0b74ba4d69b
2a459e83535035c0f0f9f09e68d0d1f7838744e5
27f59fc7fbb34fc991341a966e38784c1be7ffdf100a3a4aa1307b2f95f9cbc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/slick-carousel/slick/slick.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 10445
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "a770-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/filterzr/jquery.filterizr.min.js

123.231.217.156

200 OK

6.0 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/filterzr/jquery.filterizr.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (22239), with no line terminators
Size
6.0 kB (6049 bytes)
Hash
41e701093acfca285781d58281385df1
97f2ccbaddf9f64171cb683e2b1bb2eb9cd8cc6b
82de98223caeaca85cbaee72b375c8a2710883b78b4223a4f834df1e033c17a0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/filterzr/jquery.filterizr.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 6049
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "56df-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js

123.231.217.156

200 OK

2.0 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (4439), with CRLF line terminators
Size
2.0 kB (1993 bytes)
Hash
005974c6dfdaa4098865feb7243aefd0
2301ba3f5353db37df41f3dbebaa90f497adb16d
f886d9aad3c0753b864f0ef9017b4878f65dd32b50d1c48297352a049b146e66

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/smooth-scroll/dist/js/smooth-scroll.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 1993
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "11cd-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js

123.231.217.156

200 OK

7.3 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (20087), with CRLF line terminators
Size
7.3 kB (7348 bytes)
Hash
0a182b6f18084043d30df4c10df4a449
5b2f5a2f735e94197502b3ec18bbfa1ba7131664
732abdfbc62bfe4621bd155c6c00d8b5103b8ad21e82b18d8420ac09639bfedc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/magnific-popup/dist/jquery.magnific-popup.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 7348
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "4efb-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/anaheim/v14/8vII7w042Wp87g4G4UPeEQ.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/anaheim/v14/8vII7w042Wp87g4G4UPeEQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14304, version 1.0\012- data
Size
14 kB (14304 bytes)
Hash
7190a7f874b8638c27283496b67f3fd7
69fa8620d08cffa6838b36d579d22e81b17110e4
d623feacd2078cebfdcd9527cdefbbd04e9c95dae7ac4dfc8c4942c4d107ba94

HTTP Headers

GET /s/anaheim/v14/8vII7w042Wp87g4G4UPeEQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://merantikab.go.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 01:04:28 GMT
expires: Mon, 15 Jan 2024 01:04:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:01:06 GMT
content-type: font/woff2
age: 346299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/quattrocentosans/v18/va9c4lja2NVIDdIAAoMR5MfuElaRB0zJt08.woff2

216.58.207.227

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/quattrocentosans/v18/va9c4lja2NVIDdIAAoMR5MfuElaRB0zJt08.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 24320, version 1.0\012- data
Size
24 kB (24320 bytes)
Hash
056a6ed9c698772e2438032629f4933e
e88b32e3d9492e241bf5451e95967c5597f29967
86380b40e3d14ed9f3e0a5ff79c04f510d7910f677a66685e2b10f8b8765797f

HTTP Headers

GET /s/quattrocentosans/v18/va9c4lja2NVIDdIAAoMR5MfuElaRB0zJt08.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://merantikab.go.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 10:37:19 GMT
expires: Mon, 15 Jan 2024 10:37:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:02:38 GMT
content-type: font/woff2
age: 311928
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/quattrocentosans/v18/va9Z4lja2NVIDdIAAoMR5MfuElaRB0RyklrRPXw.woff2

216.58.207.227

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/quattrocentosans/v18/va9Z4lja2NVIDdIAAoMR5MfuElaRB0RyklrRPXw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 24232, version 1.0\012- data
Size
24 kB (24232 bytes)
Hash
cbe1a8068bb09cd3931bbe4d89f768b1
7cc08b6e0ee00e2704b518af26c8b1851b412313
194c18a2b5dd01fb3f988112f03fdba314ad5f0051ecb8b2fbc652b7e7e46438

HTTP Headers

GET /s/quattrocentosans/v18/va9Z4lja2NVIDdIAAoMR5MfuElaRB0RyklrRPXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://merantikab.go.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 10:37:19 GMT
expires: Mon, 15 Jan 2024 10:37:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:14:23 GMT
content-type: font/woff2
age: 311928
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

merantikab.go.id/vendor/meghna/plugins/Sticky/jquery.sticky.js

123.231.217.156

200 OK

2.2 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/Sticky/jquery.sticky.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
2.2 kB (2165 bytes)
Hash
b5f3dd0699f6a6e04d30da9934106034
1ea402135f9ea95b42f1f3be18c8cd72e79b284d
8c7552cbee824159a2b9e10973273ead1c242aea8798000ba1ebc143aeca6775

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/Sticky/jquery.sticky.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 2165
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "1e8a-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/count-to/jquery.countTo.js

123.231.217.156

200 OK

921 B

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/count-to/jquery.countTo.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
921 B (921 bytes)
Hash
45f34aadd5665219777ee8125da3e288
0899a8417fd2ac01862d5b48cf9aebaceb2f76a5
da2cfc98fc906fd0d530eedb63b8813dbf49e972349b210dc09dfa4f93af761a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/count-to/jquery.countTo.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 921
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "a15-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 01:16:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

merantikab.go.id/vendor/meghna/plugins/wow/dist/wow.min.js

123.231.217.156

200 OK

2.7 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/wow/dist/wow.min.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with very long lines (8152), with CRLF line terminators
Size
2.7 kB (2705 bytes)
Hash
010e0a9b1aa3c95902bd2e673f609ab6
28ee5a1c83658e7434dce35496e18e85573610ab
efb639c2813b4b285063b3e16ee8442cc5e764ed19a700cfb4a882e5f861d7e8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/wow/dist/wow.min.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 2705
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "1ff7-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/js/script.js

123.231.217.156

200 OK

2.7 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/js/script.js
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2674 bytes)
Hash
15cb5001cb8d9c815273dcb7bfe197db
07007cd267c5a0df4a1529c39eef9c0c61444682
96ae7a075043ecaeab7716f6cbcf0b9276e50e5cfe4c0fe0bb4d7ffdb6abc88c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/js/script.js HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: application/javascript
Content-Length: 2674
Connection: keep-alive
Upgrade: h2
Last-Modified: Tue, 02 Mar 2021 20:59:58 GMT
ETag: "249a-5bc94045def80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/icon-meranti.ttf?j99dik

123.231.217.156

200 OK

4.5 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/icon-meranti.ttf?j99dik
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icon-meranti\012- data
Size
4.5 kB (4472 bytes)
Hash
b514c4278a60f130ef8e0d2683ba3bed
cd791513b528c0d7d2a325dd5e7848effb030ea2
15fa4bf4add102211ee9442d15cd609c591e292de7402655c5ffd7d05b2049e2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/themefisher-font/fonts/icon-meranti.ttf?j99dik HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/vendor/meghna/plugins/themefisher-font/style_1.css
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: font/ttf
Content-Length: 4472
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 12 Mar 2021 07:47:18 GMT
ETag: "203c-5bd521bfbad80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/themefisher-font.ttf?ug5hnh

123.231.217.156

200 OK

103 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/plugins/themefisher-font/fonts/themefisher-font.ttf?ug5hnh
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, themefisher-font\012- data
Size
103 kB (102833 bytes)
Hash
59e53e365b1785443a3630dda198a491
8a816758a7008f52d9fb51a645ebd731b66edfad
bc83ebc84171305582a1f4e87214a477759f605e5ab28c72ddbdc312efdfdeb2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /vendor/meghna/plugins/themefisher-font/fonts/themefisher-font.ttf?ug5hnh HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/vendor/meghna/plugins/themefisher-font/style.css
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: font/ttf
Transfer-Encoding: chunked
Connection: keep-alive
Upgrade: h2
Last-Modified: Fri, 11 Oct 2019 01:28:50 GMT
ETag: "2f6c4-5949870aed880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/agenda_perhari/1

123.231.217.156

200 OK

45 B

URL HTTP/1.1
merantikab.go.id/agenda_perhari/1
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JSON data\012- , ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
92858cc2df4d86fc9d1ad4c1d8eb6bd3
78ad8f742afdf5e8e968e6ad7f344cf634b3497c
62c43f6fd2a0cd7b151fe62c3147dd25c4e68f872d796a534bca8e0a250ed955

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /agenda_perhari/1 HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: application/json
Content-Length: 45
Connection: keep-alive
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6InNpbE1JaUhCemhNakw0dHB0SUpQQUE9PSIsInZhbHVlIjoiTXJoSXR6REpOUFVML3BlZitEMkpUTHlvYVdIUElOaUtldXY0YXhXQXdUR21XanhDdWkyTDAvMFZuNDNOQzFoL29SSnFBdXNrZzZhZkxyMmlibnhUQnRBNTViYkxrSkJVZ21vZkFjYmtqYW9EcHJidTZuT1ZQMzZnditDOXlnUkwiLCJtYWMiOiI1NTMxZmJkNWZkNjhiOGNmMzc2YzhhOWZmZmYxMjczZWFkZTcwMWFjOTU2NjhjZjAwZGZlZmM2ZWMzMTZmZDNiIn0%3D; expires=Thu, 19-Jan-2023 03:16:08 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlpCeDVLL0dlUFoxUFJ3dEdjblFlYVE9PSIsInZhbHVlIjoiQVhkREpvL1ZJZ0E3TVFkdGNPaGRTR2phaXNqNUtlaFdobzlGbHVhYk1LN0UvQVNXNEJHaW85ZGVPZ1BqSG16TElzNzZ1dEo2SURYZ1BlbzZHcjRhZVZnYllJbkdUaUxpdGxTNng5Lys2bjdmT2djNzY1eGZSemlkSTFNejM0YlgiLCJtYWMiOiJkMzliMTUwMzAzZjVmYzNkNTVkZGE4Mzc5YjRjMzI5NzY5MjM4NGI3Y2E4ZmJmZGUzMTE0NDQzZDNhMzJkOWM0In0%3D; expires=Thu, 19-Jan-2023 03:16:08 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/agenda_perhari/2

123.231.217.156

200 OK

45 B

URL HTTP/1.1
merantikab.go.id/agenda_perhari/2
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JSON data\012- , ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
92858cc2df4d86fc9d1ad4c1d8eb6bd3
78ad8f742afdf5e8e968e6ad7f344cf634b3497c
62c43f6fd2a0cd7b151fe62c3147dd25c4e68f872d796a534bca8e0a250ed955

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /agenda_perhari/2 HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: application/json
Content-Length: 45
Connection: keep-alive
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6InFUczBSdTFCMTQ0cTFKcVdZUGtvK2c9PSIsInZhbHVlIjoiQ0Y5cUJBeXVzeVdmWkRrRlArL1pKekFuQTZ1R1hhRHpRaDd4dDJKSWtwa0x5R0tlNzhJbURqaHQwd2ZYQWFYWVU5WDZURkdBUVdhUHFZeW1nbFlFanNlUGU3Z0tPeTBlVW1JOERDcStobG5YamV0SFVzdXliSVMxaVE2UE03UCsiLCJtYWMiOiJiZGMxNjg0OTA1NWEwM2Y1OTk3MjY2Y2ZhYjVmYzIyNmMyYzhkZmNjYzc5MjA2ZmU0NmNiMWNkZTkwZTZkZjYyIn0%3D; expires=Thu, 19-Jan-2023 03:16:08 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6InBUb2dZbnlSSjVaQ2xwRFNlc1JRMmc9PSIsInZhbHVlIjoicXNCWlZTYXo0dWU4cDZ6dEJFRTgwMXZHYlhzb3RrcitNczc0bVdtNmNTSVNQTDFkYlM1dTFUeW5tTi80Qi9qZXJGR1RtMHVlU0NqVnIrcUE2OFBud1RnOUlrWGFGVHc2c01RQlpWNExXRnlIelRZaDc1cDVaRWFPNVF3aDlwbkwiLCJtYWMiOiJiOWFhOTQzOTU5ZDU4YzhhYjU5NTdlYzc2ZGU5MGE0NThmOTg3NmZlMDRkOTIzMmIxYTMwODdkYjgzYThjMDYwIn0%3D; expires=Thu, 19-Jan-2023 03:16:08 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/XvZqvp0nv56uexjSoi6oQ5MmEYRuaqwXnNoj0oLR.jpg

123.231.217.156

200 OK

120 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/XvZqvp0nv56uexjSoi6oQ5MmEYRuaqwXnNoj0oLR.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
120 kB (119628 bytes)
Hash
a8f5e5eea169e4227f0635f92f6ece1c
f91cdfaf89c03c0ed40df26225da7cbd72195be2
bae0a54d9ccbc5d39612c1a2aa43f9843e4b1fec41bbf57d7c8978017a523e57

HTTP Headers

GET /web/gambar-berita/baru/2023/01/XvZqvp0nv56uexjSoi6oQ5MmEYRuaqwXnNoj0oLR.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: image/jpeg
Content-Length: 119628
Connection: keep-alive
Last-Modified: Mon, 16 Jan 2023 10:42:06 GMT
ETag: "1d34c-5f25f3c0e3617"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/2UEBmDBSIWdOPp1BOgmV7z0gHJ6t5tBHjPL6PDge.jpg

123.231.217.156

200 OK

86 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/2UEBmDBSIWdOPp1BOgmV7z0gHJ6t5tBHjPL6PDge.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
86 kB (86482 bytes)
Hash
6f72ac4656aab576fa12266eabd6f347
10754681e4e1d8170f77b1444848cb9f1ad18404
5b192163051a3219959e837db7984fb0778376e96828a72748745a2bb45fa4bb

HTTP Headers

GET /web/gambar-berita/baru/2023/01/2UEBmDBSIWdOPp1BOgmV7z0gHJ6t5tBHjPL6PDge.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: image/jpeg
Content-Length: 86482
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 12:08:39 GMT
ETag: "151d2-5f288ad42819a"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/fwriRxxXT1k1ZE911ISsIYRTPItCgQxOc1wCxq3q.jpg

123.231.217.156

200 OK

164 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/fwriRxxXT1k1ZE911ISsIYRTPItCgQxOc1wCxq3q.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
164 kB (164527 bytes)
Hash
c00a10debeee6a9994b5a864d023cfe2
180b5f463e386242374c8a2ed67e1515c2dc25e7
5345a386ca46ac98f5b98cb60325424e60b81747800cc6ed0f7ddde3651472ff

HTTP Headers

GET /web/gambar-berita/baru/2023/01/fwriRxxXT1k1ZE911ISsIYRTPItCgQxOc1wCxq3q.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: image/jpeg
Content-Length: 164527
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 09:49:48 GMT
ETag: "282af-5f236454b8131"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/images/logo-text.png

123.231.217.156

200 OK

151 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/images/logo-text.png
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
PNG image data, 1907 x 375, 8-bit/color RGBA, non-interlaced\012- data
Size
151 kB (151434 bytes)
Hash
0b33879e20da2a0c2d44847ac7b84f6c
b6d4643cb28fbf208add02afdb391552735fbad5
edbe8d516d4d6e9ba1f5a16acc3192be7d9714fae8c7eed6dbdb4ed540b89bd1

HTTP Headers

GET /vendor/meghna/images/logo-text.png HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: image/png
Content-Length: 151434
Connection: keep-alive
Upgrade: h2
Last-Modified: Wed, 03 Mar 2021 05:31:56 GMT
ETag: "24f8a-5bc9b2b4d6b00"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/ANY8X6DoFOBEXZiiVQsJdI0RKeOWbiN0PtAjKFum.jpg

123.231.217.156

200 OK

111 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/ANY8X6DoFOBEXZiiVQsJdI0RKeOWbiN0PtAjKFum.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
111 kB (110607 bytes)
Hash
d07a9a4aef95197e78655737a5a3d1f2
b0b12e4a586ac172bb2375aef29bd217ce639a2c
ff0c3cd3964b8d2d870afa4bb40f25c17489e671327724c69bfa307b311c1771

HTTP Headers

GET /web/gambar-berita/baru/2023/01/ANY8X6DoFOBEXZiiVQsJdI0RKeOWbiN0PtAjKFum.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: image/jpeg
Content-Length: 110607
Connection: keep-alive
Last-Modified: Sat, 14 Jan 2023 05:20:18 GMT
ETag: "1b00f-5f232817bcaa6"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/TLjhnkitXUscHJ0EG6zlGCTssuqVK5XlhFDWF29d.jpg

123.231.217.156

200 OK

171 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/TLjhnkitXUscHJ0EG6zlGCTssuqVK5XlhFDWF29d.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
171 kB (171423 bytes)
Hash
42a09d74b662dfe902f1fcedee386ace
64f90b469b3d4df468f4367d86b593f5bd3b632a
ea894068e9ee2cde4f2314c2219dc3e189af2b68a2669f940da6c4f425f9ea9b

HTTP Headers

GET /web/gambar-berita/baru/2023/01/TLjhnkitXUscHJ0EG6zlGCTssuqVK5XlhFDWF29d.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: image/jpeg
Content-Length: 171423
Connection: keep-alive
Last-Modified: Fri, 13 Jan 2023 09:09:19 GMT
ETag: "29d9f-5f22196af246a"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/8f3hzLLMhJD7cS6t6LgbZFj5QF1XXD1GB4bTVaF7.jpg

123.231.217.156

200 OK

125 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/8f3hzLLMhJD7cS6t6LgbZFj5QF1XXD1GB4bTVaF7.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
125 kB (124636 bytes)
Hash
67c0de6930f9436706f24b59c12653d6
a237fcfa85070db1d3cc2e0610d75c87a159bf19
ef535927a6200523d6772d2324c47b5e671db551adc616c9597923d44a2cee0b

HTTP Headers

GET /web/gambar-berita/baru/2023/01/8f3hzLLMhJD7cS6t6LgbZFj5QF1XXD1GB4bTVaF7.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:09 GMT
Content-Type: image/jpeg
Content-Length: 124636
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 04:53:25 GMT
ETag: "1e6dc-5f26e7ae8b12a"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/6YgkV8HV9fk0bytdU0J0TOWzmAtmPe9UnQetfQLs.jpg

123.231.217.156

200 OK

105 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/6YgkV8HV9fk0bytdU0J0TOWzmAtmPe9UnQetfQLs.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
105 kB (105132 bytes)
Hash
1000ed598a792df179acb0f8d897b1cc
484e783cdb51f5dd3fe67e4d191559c3d1ae213c
3da40a7858d75e9f86dc6df3686526102f3a0d4f782f1cac0c64b93ba964d3eb

HTTP Headers

GET /web/gambar-berita/baru/2023/01/6YgkV8HV9fk0bytdU0J0TOWzmAtmPe9UnQetfQLs.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:09 GMT
Content-Type: image/jpeg
Content-Length: 105132
Connection: keep-alive
Last-Modified: Thu, 12 Jan 2023 11:21:44 GMT
ETag: "19aac-5f20f5269e709"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/drNxSH9WmlNoxdDnKhJraB8Mt2cHKJeBgOD3zpCl.jpg

123.231.217.156

200 OK

174 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/drNxSH9WmlNoxdDnKhJraB8Mt2cHKJeBgOD3zpCl.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
174 kB (174290 bytes)
Hash
f379af573485560b48f35985cdf601d7
761e1b575a4bedb293a1e82b6ddd74caac1c4f9f
ab315fcd222a5e5d7b6b833acd1156a65295facf8b598b60c3fb27409211919a

HTTP Headers

GET /web/gambar-berita/baru/2023/01/drNxSH9WmlNoxdDnKhJraB8Mt2cHKJeBgOD3zpCl.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:09 GMT
Content-Type: image/jpeg
Content-Length: 174290
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:27:05 GMT
ETag: "2a8d2-5f275a7de51df"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

news.merantikab.go.id/web/gambar-berita/baru/2023/01/s0S1Lg4wnB1TICuMXHcSb620uN7nGe9ARiGz6wLv.jpg

123.231.217.156

200 OK

102 kB

URL HTTP/1.1
news.merantikab.go.id/web/gambar-berita/baru/2023/01/s0S1Lg4wnB1TICuMXHcSb620uN7nGe9ARiGz6wLv.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 768x512, components 3\012- data
Size
102 kB (101526 bytes)
Hash
945b8ecd30782ccad4a6c050bed1ec9b
271538e06308952ad1913273c7c9edbdb9376664
270e9e08d6405db128429beee394f92e16f954e8e2b7b98bb303d5134702595f

HTTP Headers

GET /web/gambar-berita/baru/2023/01/s0S1Lg4wnB1TICuMXHcSb620uN7nGe9ARiGz6wLv.jpg HTTP/1.1
Host: news.merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: image/jpeg
Content-Length: 101526
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 18:19:31 GMT
ETag: "18c96-5f28ddb9258ca"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/filedokumens/bg/bupatidanwakil.jpg

123.231.217.156

200 OK

486 kB

URL HTTP/1.1
merantikab.go.id/filedokumens/bg/bupatidanwakil.jpg
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 5616x3744, components 3\012- data
Size
486 kB (485888 bytes)
Hash
6691e6802c49240f1c95d29e41b3cb87
65d17331710632e5158df4ed08236a15f6b844f7
c4a22bba4bd4f0f2947da84fee61714e5e89420474f6f7a718dd6013b08762c0

HTTP Headers

GET /filedokumens/bg/bupatidanwakil.jpg HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:08 GMT
Content-Type: image/jpeg
Content-Length: 485888
Connection: keep-alive
Upgrade: h2
Last-Modified: Thu, 04 Mar 2021 03:23:14 GMT
ETag: "76a00-5bcad7ce06c80"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

merantikab.go.id/vendor/meghna/images/logo.png

123.231.217.156

200 OK

324 kB

URL HTTP/1.1
merantikab.go.id/vendor/meghna/images/logo.png
IP
123.231.217.156:0
ASN
#4800 PT Aplikanusa Lintasarta

File type
PNG image data, 781 x 979, 8-bit/color RGBA, non-interlaced\012- data
Size
324 kB (323506 bytes)
Hash
a5193c331434fccb814156f62ae15e33
34fa5615cfb144cf46388893dc709a2ea3e6b21c
b15e3d498a50b0cc8a70f04e2ac86175318396fe2faba6c6fcab3f50ed208e6f

HTTP Headers

GET /vendor/meghna/images/logo.png HTTP/1.1
Host: merantikab.go.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://merantikab.go.id/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjRQVVR0NnVyOTJLMEcrQVFBOUxGTGc9PSIsInZhbHVlIjoiYzlJQjZPWktiM3hRVDFqVmtVUDN1MUZaQzZUQkxiQ0RQSXJBQkFERmtCY0dWYUZSQnBZN2c1cnZCdFNZb3NNT1FiVkc3N3BRenUxaXlNUmYvNU9hOTFCQlMzeUlyZXJ6c21sOFZVVXp6VlZUbUVxdjhRMmloQjl2WTM3VC9TZlciLCJtYWMiOiJmYjYyMTlhYTk5MTk4YTViNDQzZGQ2Njg1MGNlYWI2MDdlNzdhZWRlNDI3M2YzMWM3NzNhMmE4MGJmNTYzYTlmIn0%3D; laravel_session=eyJpdiI6IjdxSTY0STc1bGNhM2JmemlMSWhLRlE9PSIsInZhbHVlIjoiVmhZWmtwdEFJVWx5SUs3Uk1LZU40RGZVN3BBMzhvc1lOYXNSMnhIVkw0SmN2cUdKUFdHMHRFQTRpM2VPU3J0emhmekZ2azdJUVVaRkRSQXJYN0kvYTNGbmZqMGpYNmE0b05TMFM0RDVTTFNXQ2cwUmYwQlExdkdVZDhCUWRTQlciLCJtYWMiOiJiYTU1MzQzZTRiZmZkY2U0MTU2MzNmMjYzZGJiYWMwNGU3Y2ViNjI1ZmU0YmQ0ZDNjMWY2N2NhMDA3YWEyODhlIn0%3D

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 19 Jan 2023 01:16:07 GMT
Content-Type: image/png
Content-Length: 323506
Connection: keep-alive
Upgrade: h2
Last-Modified: Wed, 17 Feb 2021 04:05:04 GMT
ETag: "4efb2-5bb8052dd5c00"
Accept-Ranges: bytes
X-Frame-Options: allow-from http://kominfo.merantikab.go.id
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

fonts.googleapis.com/css?family=Montserrat:400,700|Open+Sans:300,400,600

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:400,700|Open+Sans:300,400,600
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat:400,700|Open+Sans:300,400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 19 Jan 2023 01:16:07 GMT
date: Thu, 19 Jan 2023 01:16:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML