r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3884
Expires: Thu, 06 Oct 2022 20:15:02 GMT
Date: Thu, 06 Oct 2022 19:10:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6a3Z-acMhXw_AuJt2OGMZ6RXV9CLh_ngkxTbJenF5QmMwflfX0-qlw==
Age: 98580
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4306
Expires: Thu, 06 Oct 2022 20:22:04 GMT
Date: Thu, 06 Oct 2022 19:10:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pcWvgEhXSwi5XiLtO6LrG6hwoX88/g3FxtIthhRBTWEGglIPxqDJ5loeTnFz40wMAEUYuT0DrGs=
x-amz-request-id: D19XZXCDGDV10HV4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 18:30:53 GMT
age: 2365
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
110.232.83.89/slimsppks/repository/
302 Found 0 B URL HTTP/1.1 110.232.83.89/slimsppks/repository/
IP
ASN #23679 Media Antar Nusa PT.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/repository/ HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 06 Oct 2022 20:36:14 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
location: ../
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:10:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 18:29:41 GMT
Expires: Thu, 06 Oct 2022 19:07:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6duL0vfWC8zx7vCSy1oIWDMR_IVY9xXTs1zjC2uqGinWDYqdbGm5vA==
Age: 2438
ocsp.digicert.com/
200 OK 471 B IP
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3649
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:10:19 GMT
Last-Modified: Thu, 06 Oct 2022 18:09:30 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
110.232.83.89/slimsppks/
200 OK 14 kB IP
ASN #23679 Media Antar Nusa PT.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (934), with CRLF, LF line terminators
Hash f95826eeb8d91b25d8485faf3e6f91fa
93fcb5ab37ef96fa10d02519aa5ca6b478c23f02
3f201a1c3093494fa09142e0860d9387d11f0db58380add967b3a955d345f640
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/ HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:15 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Set-Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti; expires=Fri, 07-Oct-2022 08:36:15 GMT; path=/slimsppks/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AMR/wH+TApK1SW0TJxNd3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +z76oq02PqAUgi1UPsT1aY2+mfM=
110.232.83.89/slimsppks/js/form.js
200 OK 5.4 kB URL HTTP/1.1 110.232.83.89/slimsppks/js/form.js
IP
ASN #23679 Media Antar Nusa PT.
File type ASCII text, with CRLF line terminators
Hash 85ca2cf437d932a5fbf2c4771d1426fe
dab20611f16012be914b659f119a11c458cd80c5
e3b669df3265140fb8b5b8699002bb7f92957a1a2871d485f79b2654fbdc41a7
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/js/form.js HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:15 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 12 Sep 2012 06:14:25 GMT
ETag: "fc01e8-14e7-1a39d240"
Accept-Ranges: bytes
Content-Length: 5351
Connection: close
Content-Type: application/x-javascript
110.232.83.89/slimsppks/template/aero/js/custom.js
200 OK 1.1 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/js/custom.js
IP
ASN #23679 Media Antar Nusa PT.
Hash 92c1c22cbdeff21426e0f754f70ece2d
824424cdcf650edf37914a4f1da54b998b7044c8
8aa12fe7019a294dec8f991810974813e2f8faf07aa44f0272dc3bfbb4e19454
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/js/custom.js HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:16 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 21 Dec 2012 09:43:18 GMT
ETag: "fd0054-43d-ad61b980"
Accept-Ranges: bytes
Content-Length: 1085
Connection: close
Content-Type: application/x-javascript
110.232.83.89/slimsppks/template/core.style.css
200 OK 3.8 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/core.style.css
IP
ASN #23679 Media Antar Nusa PT.
File type ASCII text, with CRLF line terminators
Hash 39b09612abd689a7d6733884cc4e5bb9
df8f4b8daf11088afe931b1f4e7ed275cead5778
b9fd7e4b9213df2fea65cc8f51b8766e08a5f0669f5752386bca8451c8bfa8bd
GET /slimsppks/template/core.style.css HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:16 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 17 Oct 2012 01:15:48 GMT
ETag: "fd0070-eac-2bc3900"
Accept-Ranges: bytes
Content-Length: 3756
Connection: close
Content-Type: text/css
110.232.83.89/slimsppks/template/aero/js/supersized.3.1.3.min.js
200 OK 12 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/js/supersized.3.1.3.min.js
IP
ASN #23679 Media Antar Nusa PT.
File type ASCII text, with very long lines (11460)
Hash f0bd75a686db80d53332e34e2fe039b6
2967715570d34317744ac9fdd15cf1f91c57f213
9d23308ee4e812790c88c4473027b05bf2a8d684f1085454e97206cb4e340e73
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/js/supersized.3.1.3.min.js HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:16 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 02 Jan 2013 01:31:10 GMT
ETag: "fd0055-2d98-3378b380"
Accept-Ranges: bytes
Content-Length: 11672
Connection: close
Content-Type: application/x-javascript
110.232.83.89/slimsppks/js/gui.js
200 OK 15 kB URL HTTP/1.1 110.232.83.89/slimsppks/js/gui.js
IP
ASN #23679 Media Antar Nusa PT.
File type HTML document, ASCII text
Hash 44666e0e9f61200caa23885b4a55a10d
ccafc2757f39f018fe1a612734e6a22fe9017a60
cfc499251d860b9e408d691649f1e4707a00681cb01fbd3ddee0d195a1a42813
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/js/gui.js HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:16 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 12 Sep 2012 06:14:25 GMT
ETag: "fc0159-3a78-1a39d240"
Accept-Ranges: bytes
Content-Length: 14968
Connection: close
Content-Type: application/x-javascript
110.232.83.89/slimsppks/js/jquery.js
200 OK 70 kB URL HTTP/1.1 110.232.83.89/slimsppks/js/jquery.js
IP
ASN #23679 Media Antar Nusa PT.
File type ASCII text, with very long lines (565), with CRLF line terminators
Hash 9e936b27d8d0e4e07ebef242d7c6e2cc
7a8bbcb71e47def87d97823839bbbb0118495591
9bb7215ec64011fa295930f1103687765f225f99230018ff046772306f196476
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/js/jquery.js HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:15 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 12 Sep 2012 06:14:25 GMT
ETag: "fc014e-11165-1a39d240"
Accept-Ranges: bytes
Content-Length: 69989
Connection: close
Content-Type: application/x-javascript
110.232.83.89/slimsppks/template/aero/style.css
200 OK 23 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/style.css
IP
ASN #23679 Media Antar Nusa PT.
Hash 6228b678040f7e8fa538d35074d57757
4d9824fc8abe142c2c89f85dbec767edba500af4
ea8321363ff2dcdbe25e950b3b6a02e045d88c14d7d54553d8e4a587790331b7
GET /slimsppks/template/aero/style.css HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:16 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 25 Sep 2013 01:08:42 GMT
ETag: "fd0047-5b90-e4e99a80"
Accept-Ranges: bytes
Content-Length: 23440
Connection: close
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:10:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3101
Expires: Thu, 06 Oct 2022 20:02:02 GMT
Date: Thu, 06 Oct 2022 19:10:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 76285
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 77595
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 76018
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:50:38 GMT
age: 55183
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 77595
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 77453
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
110.232.83.89/slimsppks/template/aero/images/logo.png
200 OK 16 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logo.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 89 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 7237eb10dba844a605cddeb34b35895a
869fb985b9823aaaeda4e841f576709c977b38ef
846a307ba0afe054b9f717775f3d0647bdec5f7b470eed5c662c0504cd5cbfc6
GET /slimsppks/template/aero/images/logo.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 14 Nov 2012 08:33:08 GMT
ETag: "fd00a9-3c7c-62515900"
Accept-Ranges: bytes
Content-Length: 15484
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/css/reset.css
200 OK 2.1 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/css/reset.css
IP
ASN #23679 Media Antar Nusa PT.
Hash a0057db713e723b2d029b381e4bf4e2f
2385285a3332d9115f99599273d24129d2e3b0b2
775f318cf3e7e3b851713bac465a5e521b55c9f41d90d31e06173b1295f7e5ef
GET /slimsppks/template/aero/css/reset.css HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:18 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Sat, 04 Aug 2012 03:21:22 GMT
ETag: "fd004a-802-238a3080"
Accept-Ranges: bytes
Content-Length: 2050
Connection: close
Content-Type: text/css
110.232.83.89/slimsppks/template/aero/css/animation.css
200 OK 5.5 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/css/animation.css
IP
ASN #23679 Media Antar Nusa PT.
Hash 3c87eb423ac7aa5cf49618bcd1656036
4f4960033301904aa8a46d48581b1a0dec3d0cc4
fa10f8cad37e2289a3a26db443ebcae9505cbd8366ed68b59fc28266303969d0
GET /slimsppks/template/aero/css/animation.css HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:18 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 03 Jan 2013 10:27:42 GMT
ETag: "fd0049-1563-d01b0380"
Accept-Ranges: bytes
Content-Length: 5475
Connection: close
Content-Type: text/css
110.232.83.89/slimsppks/images/docs/Volume_29_No_1,_Juli_2011.jpg
200 OK 300 kB URL HTTP/1.1 110.232.83.89/slimsppks/images/docs/Volume_29_No_1,_Juli_2011.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 1594x2141, components 3\012- data
Size 300 kB (300452 bytes)
Hash 08712997fb1e68857d43eab91fd1c029
8d50a8bb2e1726264e47359eaa7a726d65eb7f62
100cce0a00746947dbb17b0dce7a5ad2c9f7ecbbf8221a527433a0f01876cb1c
GET /slimsppks/images/docs/Volume_29_No_1,_Juli_2011.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 31 Mar 2022 05:18:30 GMT
ETag: "204382a-495a4-cae53580"
Accept-Ranges: bytes
Content-Length: 300452
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/images/docs/Volume_28_No_2,_Desember_2010.jpg
200 OK 304 kB URL HTTP/1.1 110.232.83.89/slimsppks/images/docs/Volume_28_No_2,_Desember_2010.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 1619x2161, components 3\012- data
Size 304 kB (304141 bytes)
Hash 19e7d91d936bf6e45f6c379a7c22b704
343f9fb9c848cb8f88585428b8364d69aa59815a
b1e1ed59d8a0a841321dea72cb0fa48c5c44830e66246273d31c30fcf13dfdc9
GET /slimsppks/images/docs/Volume_28_No_2,_Desember_2010.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 31 Mar 2022 04:56:48 GMT
ETag: "2043829-4a40d-7d4a4400"
Accept-Ranges: bytes
Content-Length: 304141
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/images/docs/Volume_23_No_2,_Desember_2005.jpg
200 OK 306 kB URL HTTP/1.1 110.232.83.89/slimsppks/images/docs/Volume_23_No_2,_Desember_2005.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 1614x2136, components 3\012- data
Size 306 kB (306517 bytes)
Hash a03948174264183a13e8bc253ff6bf0c
91cb053a65936a5aebb55e6a8471b188f75caef1
55d7e02ba8ee1532fd95135d11001e74cbf66f9a722aa413a7b822b225641afe
GET /slimsppks/images/docs/Volume_23_No_2,_Desember_2005.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 30 Mar 2022 03:49:59 GMT
ETag: "2043827-4ad55-707e67c0"
Accept-Ranges: bytes
Content-Length: 306517
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/images/docs/Volume_19_No_2,_Desember_2001.jpg
200 OK 317 kB URL HTTP/1.1 110.232.83.89/slimsppks/images/docs/Volume_19_No_2,_Desember_2001.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 1584x2121, components 3\012- data
Size 317 kB (316959 bytes)
Hash 398345a1d00f0e6acddaaecbe3d4e76c
bb6b006f19f95c5cd19207e7663e1d1282b87219
290115cb7e33f7e699642e7a0768f272c7e713bb2eec4c1b92c3987cdeb516bb
GET /slimsppks/images/docs/Volume_19_No_2,_Desember_2001.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 30 Mar 2022 04:20:09 GMT
ETag: "2043828-4d61f-dc60d040"
Accept-Ranges: bytes
Content-Length: 316959
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/css/supersized.core.css
200 OK 507 B URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/css/supersized.core.css
IP
ASN #23679 Media Antar Nusa PT.
Hash 97e2d0c0f312b4abb8455be7bbc1b26a
664a97132a6f5401408946fbd8d17e121742d7ef
e35b3221173d9ccc6cb63f9b6a48fc597e37661f045667f71988ddf3dd580852
GET /slimsppks/template/aero/css/supersized.core.css HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 04 Jan 2013 12:33:32 GMT
ETag: "fd004b-1fb-aff63f00"
Accept-Ranges: bytes
Content-Length: 507
Connection: close
Content-Type: text/css
110.232.83.89/slimsppks/images/docs/Volume_29_No_2,_Desember_2011.jpg
200 OK 301 kB URL HTTP/1.1 110.232.83.89/slimsppks/images/docs/Volume_29_No_2,_Desember_2011.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 1609x2146, components 3\012- data
Size 301 kB (301127 bytes)
Hash 7fa4dc521834f763dee98135ecb9c11c
154475d25fe660bd8c78e2fea328dd583fccb1c0
468f6c87b1365316bf7f0fa1b423afd423dfebfe9122494414789ba84c2636d9
GET /slimsppks/images/docs/Volume_29_No_2,_Desember_2011.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:17 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 06 Apr 2022 04:21:02 GMT
ETag: "204382b-49847-b06d2780"
Accept-Ranges: bytes
Content-Length: 301127
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/logoLIPI.jpeg
200 OK 4.6 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logoLIPI.jpeg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3\012- data
Hash 542d1918493cca893720e26e7bbe5dd6
4fa526e77796e20e0bedcdbb5770fdfd7a196fc4
fa3fa474f99d061bdd329c60764e85cae66505a27c8b30a48d015484e07ae818
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/images/logoLIPI.jpeg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 16 Aug 2013 02:16:16 GMT
ETag: "fd0157-1228-2ce5bc00"
Accept-Ranges: bytes
Content-Length: 4648
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/help.png
200 OK 4.0 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/help.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash a95951a741c26f2ec51d67c1f7af0dd3
a089da68b9b4dd60e3a2a2d9ccff22ae9874dcab
b95d3a62df8f66d2c917e6559dd9a5a9bf4f5743d5f8288d6e910981b98a7426
GET /slimsppks/template/aero/images/help.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 02 Jan 2013 03:57:46 GMT
ETag: "fd0060-fab-3fc10280"
Accept-Ranges: bytes
Content-Length: 4011
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/logo1.png
200 OK 2.0 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logo1.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 44bced2bf6b0b38c577bada10e3211df
e5ae1a9cf152a9727f85dc9421df732fee3a388e
a3fe400d13daad63732f14e65f294db09635a36018ae3244eb4d1ced378c3a86
GET /slimsppks/template/aero/images/logo1.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 13 Aug 2013 04:14:20 GMT
ETag: "fd00b3-7d2-799cdf00"
Accept-Ranges: bytes
Content-Length: 2002
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/globe.png
200 OK 3.7 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/globe.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b5ee7f7c919e160559cbedf420d3d26
0c3d6bf4101eae008f5f492cc7ad52e75b275809
20e0472dac695b37cf3b05e252473732f8a2046a283902e44233651dc27e9333
GET /slimsppks/template/aero/images/globe.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 25 Jan 2011 06:55:12 GMT
ETag: "fd005f-e98-32a89400"
Accept-Ranges: bytes
Content-Length: 3736
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/logoUNTAN.jpg
200 OK 12 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logoUNTAN.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 224x225, components 3\012- data
Hash c1077af5a2e1c94036e1d7a1e38d8fba
2042013bc8a46b03362b019ba64aebf97d49755a
dd1dbc39999aab87333aa410ea9b3eff6d6a71cd9d337f70744bb1ea2dedc502
GET /slimsppks/template/aero/images/logoUNTAN.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 13 Aug 2013 03:20:24 GMT
ETag: "fd00ae-2f7c-b8bb6e00"
Accept-Ranges: bytes
Content-Length: 12156
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/line-dotted.png
200 OK 118 B URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/line-dotted.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Hash 919bccca9bde9fb2da8a0d77b97bd4d9
d034811cea1c033ab690ca18c88a58df97e080a0
1fba0175d370127435045db2d2ce58cd23a7fbb63ba383cf9041b059596f7393
GET /slimsppks/template/aero/images/line-dotted.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 06 Dec 2012 21:46:50 GMT
ETag: "fd0064-76-951a680"
Accept-Ranges: bytes
Content-Length: 118
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/ic_search.png
200 OK 2.3 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/ic_search.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash a0dbca16ffa9e3066ecfde61b76e2433
2198a75242179df4d771d4d78995975fb456112c
d6e13b49d5dae2c3f200f35b5e4a298ab2ab6d1fc3d393c4030105a467cb1553
GET /slimsppks/template/aero/images/ic_search.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 08 Nov 2012 10:54:36 GMT
ETag: "fd0062-8e8-a931b300"
Accept-Ranges: bytes
Content-Length: 2280
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/font/SALARYMA-webfont.woff
200 OK 7.5 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/font/SALARYMA-webfont.woff
IP
ASN #23679 Media Antar Nusa PT.
File type Web Open Font Format, TrueType, length 7472, version 1.0\012- data
Hash 8d8e86fd81564fe65911c79303a0dc30
b0895e6cbf24646f4c2f0c5b6efbc2bf7743055d
cc91ce9ba7d7669f708a051d30a572c6647d94c1dc39c72e674d3b3d9257f5d1
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/font/SALARYMA-webfont.woff HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Thu, 23 Dec 2010 02:06:42 GMT
ETag: "fd0053-1d30-52239080"
Accept-Ranges: bytes
Content-Length: 7472
Connection: close
Content-Type: text/plain; charset=UTF-8
110.232.83.89/slimsppks/template/aero/font/DroidSansMono-webfont.woff
200 OK 16 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/font/DroidSansMono-webfont.woff
IP
ASN #23679 Media Antar Nusa PT.
File type Web Open Font Format, TrueType, length 15696, version 1.0\012- data
Hash 8cc197f2858e7523e16de485dd482899
dbc8c817a1d217fd3fde68aaa13c6a8c561d89ab
c616f72347feda83f7a28adadb8abd614368014280051e8f877d3131f8898ff9
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/font/DroidSansMono-webfont.woff HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/template/aero/style.css
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:19 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 18 Dec 2012 07:32:18 GMT
ETag: "fd004f-3d50-7f5d8480"
Accept-Ranges: bytes
Content-Length: 15696
Connection: close
Content-Type: text/plain; charset=UTF-8
110.232.83.89/slimsppks/template/aero/images/home.png
200 OK 3.5 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/home.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash b94d6b88be067c885c6dbaef145b89b3
5e0dc09c2c2bfb4a3c8c0dabcdeebf692a1b4b26
b4ca2530e73c76924f4765f5a3b97997ff6bb787218bc0211ee75577132ac8d6
GET /slimsppks/template/aero/images/home.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 25 Jan 2011 06:55:34 GMT
ETag: "fd0061-dd7-33f84580"
Accept-Ranges: bytes
Content-Length: 3543
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/book.png
200 OK 3.0 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/book.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 10b3593a998d27497f130fad295d57c7
9df89235ecf07da0b0443f778dd27f3511a41cf6
69a4b726abe0ca30e797ee3f08d346cab704fe58237cc0786885b2694ffdd77b
GET /slimsppks/template/aero/images/book.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Sat, 05 Jan 2013 01:27:16 GMT
ETag: "fd005b-bcd-7f0c4500"
Accept-Ranges: bytes
Content-Length: 3021
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/info.png
200 OK 3.7 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/info.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 364f4803b97f2a9ee868f9966e98d944
7291c4bd1579f3d720c0df4bddd5133b6f14531b
a01ae70da71374e283a3e1d17b70c4acb17ca1c1dd9508dd6f9f59908f41abfc
GET /slimsppks/template/aero/images/info.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 25 Jan 2011 06:55:34 GMT
ETag: "fd0063-e9b-33f84580"
Accept-Ranges: bytes
Content-Length: 3739
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/user.png
200 OK 1.1 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/user.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 81f36c08d7aa2fb975bc7bb3894c4156
24259888ef746b35a063ea4b6dc59eb2882ce5e7
b30c2863e5b43762ded0ac7c6956146edf939915f26c8e3f061f81ac1febe348
GET /slimsppks/template/aero/images/user.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Mon, 24 Jan 2011 04:05:04 GMT
ETag: "fd006d-440-b45f7c00"
Accept-Ranges: bytes
Content-Length: 1088
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/sound.png
200 OK 1.3 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/sound.png
IP
ASN #23679 Media Antar Nusa PT.
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 28ec478e52ee6a38c8562d098d78faa0
15918da7e503d001b4fd52f1df510d9067f374fb
d74de3b6ce7569701380370b7726e464b9f73ef4584592b0cceb38ddd527d77b
GET /slimsppks/template/aero/images/sound.png HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Mon, 24 Jan 2011 04:15:32 GMT
ETag: "fd006b-4f2-d9ce0100"
Accept-Ranges: bytes
Content-Length: 1266
Connection: close
Content-Type: image/png
110.232.83.89/slimsppks/template/aero/images/logoGOOGLE1.jpg
200 OK 5.1 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logoGOOGLE1.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 171x185, components 3\012- data
Hash b101708dd64e18da245822452af053f7
1341af70015d63972b5ccdac62c0e8279cd8ffda
656551ec19721adf4fdae1db776170d99d447486d5f49a6b736ab1a41236a326
GET /slimsppks/template/aero/images/logoGOOGLE1.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:21 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 28 Aug 2013 02:41:08 GMT
ETag: "fd0002-13d9-ebec5900"
Accept-Ranges: bytes
Content-Length: 5081
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/LOGOusu.jpg
200 OK 16 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/LOGOusu.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x231, components 3\012- data
Hash f18169a71dd8e17373db2b65f0a51242
d293ce44b0b5a1fe30e246749809ab01094eada6
4a5fd94a487df6b5efc3bd797034bf8f76506655cf07876c20807a91f2dfab6d
GET /slimsppks/template/aero/images/LOGOusu.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 13 Aug 2013 03:13:54 GMT
ETag: "fd00af-3ca8-a17c8080"
Accept-Ranges: bytes
Content-Length: 15528
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/logoUI.jpg
200 OK 16 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logoUI.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3\012- data
Hash 4b8382378f9137910a667e961071e4da
ba68ed737acc82ea417733c6fed7eb9bdced3503
b9ed4811bc37692f5b63ec562f39281110561e228ec9361c8afe50781c1e7f4c
GET /slimsppks/template/aero/images/logoUI.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Tue, 13 Aug 2013 03:19:00 GMT
ETag: "fd00ad-3e99-b3b9b100"
Accept-Ranges: bytes
Content-Length: 16025
Connection: close
Content-Type: image/jpeg
110.232.83.89/slimsppks/template/aero/images/logoKEMDIKNAS.jpeg
200 OK 15 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/logoKEMDIKNAS.jpeg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 226x223, components 3\012- data
Hash 9102b9abe3a3714d4d1d1f07898475bb
9098fd1af622af87f90e47004e44711564c62a94
b1707cb5b04d0810228bd72bbe2f09fe501505e06dd62ae4a5a2b4db7405532d
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/template/aero/images/logoKEMDIKNAS.jpeg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:20 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Fri, 16 Aug 2013 02:25:06 GMT
ETag: "fd0158-398a-4c7ce480"
Accept-Ranges: bytes
Content-Length: 14730
Connection: close
Content-Type: image/jpeg
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Thu, 06 Oct 2022 18:22:02 GMT
Expires: Thu, 06 Oct 2022 20:22:02 GMT
Cache-Control: public, max-age=7200
Age: 2903
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:10:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1974794975&t=pageview&_s=1&dl=http%3A%2F%2F110.232.83.89%2Fslimsppks%2F&ul=en-us&de=UTF-8&dt=IOPRI%20%7C%20Special%20Library&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=814605092&gjid=756957230&cid=349618339.1665083425&tid=UA-53119664-1&_gid=1638488152.1665083425&_r=1&_slc=1&z=2066659182
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1974794975&t=pageview&_s=1&dl=http%3A%2F%2F110.232.83.89%2Fslimsppks%2F&ul=en-us&de=UTF-8&dt=IOPRI%20%7C%20Special%20Library&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=814605092&gjid=756957230&cid=349618339.1665083425&tid=UA-53119664-1&_gid=1638488152.1665083425&_r=1&_slc=1&z=2066659182
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=1974794975&t=pageview&_s=1&dl=http%3A%2F%2F110.232.83.89%2Fslimsppks%2F&ul=en-us&de=UTF-8&dt=IOPRI%20%7C%20Special%20Library&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=814605092&gjid=756957230&cid=349618339.1665083425&tid=UA-53119664-1&_gid=1638488152.1665083425&_r=1&_slc=1&z=2066659182 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://110.232.83.89
Connection: keep-alive
Referer: http://110.232.83.89/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://110.232.83.89
date: Thu, 06 Oct 2022 19:10:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:10:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:10:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-53119664-1&cid=349618339.1665083425&jid=814605092&gjid=756957230&_gid=1638488152.1665083425&_u=IEBAAEAAAAAAACAAI~&z=1230588853
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-53119664-1&cid=349618339.1665083425&jid=814605092&gjid=756957230&_gid=1638488152.1665083425&_u=IEBAAEAAAAAAACAAI~&z=1230588853
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-53119664-1&cid=349618339.1665083425&jid=814605092&gjid=756957230&_gid=1638488152.1665083425&_u=IEBAAEAAAAAAACAAI~&z=1230588853 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://110.232.83.89
Connection: keep-alive
Referer: http://110.232.83.89/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://110.232.83.89
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 06 Oct 2022 19:10:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:10:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
110.232.83.89/slimsppks/webicon.ico
200 OK 2.3 kB URL HTTP/1.1 110.232.83.89/slimsppks/webicon.ico
IP
ASN #23679 Media Antar Nusa PT.
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 48 x 48, 8-bit colormap, non-interlaced, 32 bits/pixel\012- data
Hash 43d2debd33cfeefa6234be46a728cb80
fcbb05023e2d165b0bc5cdd8a0d7b0ae7585c3be
0b149fceb6451233b8cbb268de261cf280eb71085e6b9339c679dcc557a1ba58
Analyzer Verdict Alert fortinet Phishing
GET /slimsppks/webicon.ico HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:21 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 14 Nov 2012 10:00:48 GMT
ETag: "fb9050-8ef-9bd69400"
Accept-Ranges: bytes
Content-Length: 2287
Connection: close
Content-Type: text/plain; charset=UTF-8
110.232.83.89/slimsppks/template/aero/images/1.jpg
200 OK 137 kB URL HTTP/1.1 110.232.83.89/slimsppks/template/aero/images/1.jpg
IP
ASN #23679 Media Antar Nusa PT.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=1200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1200x750, components 3\012- data
Size 137 kB (136649 bytes)
Hash 6e50f421719302e8476b8e5fe1b20de2
6a4383c09f5822a41bab294b3e3401dde67df848
056eaf7bd63e19846a7719790ab0543959cf6e215359105459ada482de3e4140
GET /slimsppks/template/aero/images/1.jpg HTTP/1.1
Host: 110.232.83.89
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://110.232.83.89/slimsppks/
Cookie: SenayanMember=rd1k404mj0dt3k0gk5537kabm28nkpti
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 20:36:21 GMT
Server: Apache/2.2.3 (CentOS) DAV/2 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8
Last-Modified: Wed, 02 Jan 2013 01:28:22 GMT
ETag: "fd0057-215c9-29753980"
Accept-Ranges: bytes
Content-Length: 136649
Connection: close
Content-Type: image/jpeg
110.232.83.89
93.184.220.29
34.120.237.76
23.36.76.226