172.67.215.38 3.6 kB IP 172.67.215.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (325), with CRLF, LF line terminators
Hash 257a454249d83551c42b866074d8d7b8
a7ce5c92be04bd9da0ae4f7efbea8b3419a2327f
fd403f1caaca9a47c1b9842a876df604400b4f106c53f1b23cd40343c277cf84
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET / HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R5PDsiFRMGsQEuwv9kw7dTzsLX3TKrGgb3OoFqpoDlNY3%2FUSclcJTCJoWVaW46YWlexOwgZb4bzpxWYK6IeI8OpGTzeo9yNsIZ%2FbtNHfmemOxTP8eC8jUarkogYEfKiL%2BpA5%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8310d2504a16568b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/css/style.css
172.67.215.38200 OK 790 B URL GET HTTP/1.1 www.bbtb.c505.net/bagas/css/style.css
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
Hash cb0406facabf211736e6c205c2f12016
7f1791f0433c297056a1b5013015d77162a843e8
63522559221cb1217733189ab984dfaa362299c4d4c81eedc494a0306b65f6f0
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/css/style.css HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: text/css
Content-Length: 790
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 17 Apr 2023 17:32:27 GMT
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vNeMP%2FlQZEmD96MJuIXkWWYjLi4MI4z3LEceQhbChOtKH5fBH1wwx9mMCbWD2Q0C5IYb25bCS%2F7WT6mTg6BnsFHaWBMAnqRZ1ccXWfdCJ1b5nXnLPsktwpp4cMnX%2BvGqyu3SIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8310d2538b3e568b-OSL
alt-svc: h2=":443"; ma=60
filebagasarya.com/img/info/navbar.png
104.21.21.5200 OK 8.5 kB URL GET HTTP/2 filebagasarya.com/img/info/navbar.png
IP 104.21.21.5:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectfilebagasarya.com
FingerprintF0:8B:F1:70:76:A3:14:5A:6C:27:24:64:49:E8:8F:71:89:4C:AF:BF
ValidityTue, 31 Oct 2023 12:31:08 GMT - Mon, 29 Jan 2024 12:31:07 GMT
File type PNG image data, 904 x 339, 8-bit colormap, non-interlaced\012- data
Hash f29c416a7c6f18ba0c0deb4980763c9d
56c7bfbf2c9a7a2be2e2214b0586c11af8e852bf
7f37cb926c06378327ad2a753c7119291b2ead796a6f588a8374de651ec72a8c
GET /img/info/navbar.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:34 GMT
content-type: image/png
content-length: 8459
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 01:57:44 GMT
last-modified: Mon, 06 Mar 2023 02:41:35 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 430970
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kaqfwpn8OYoQd%2F1KLyOw6OwsY6JJA90%2FiafgJK6ZTHVGp3p0EsMvn0c%2BtaAWh2omjvj5MZKMQJpPEiVYsXOwns1IJvUHBdco6C7shnRAap5pmWaX%2FIcDiGyUvbS6%2BjsreJVmcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8310d253dec056c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
filebagasarya.com/img/info/modelFb.png
104.21.21.5200 OK 32 kB URL GET HTTP/2 filebagasarya.com/img/info/modelFb.png
IP 104.21.21.5:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectfilebagasarya.com
FingerprintF0:8B:F1:70:76:A3:14:5A:6C:27:24:64:49:E8:8F:71:89:4C:AF:BF
ValidityTue, 31 Oct 2023 12:31:08 GMT - Mon, 29 Jan 2024 12:31:07 GMT
File type PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Hash 571fc0253c6f01c953d4274981fc9d66
5331c3ae96ea4d421f8bde0d3e5565024c8c3abb
d3a1d3bb7a7c79edc9a08de2369f4f7f201a0852bfaf5526716382fc7ad902a1
GET /img/info/modelFb.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:34 GMT
content-type: image/png
content-length: 31990
cache-control: public, max-age=604800
expires: Fri, 08 Dec 2023 01:57:44 GMT
last-modified: Mon, 06 Mar 2023 02:41:27 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 430970
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHx30o%2Far7alrsy%2BHuo%2F%2FJvWlZV85NGTRO4b7wBVUpn0xF8%2F7V23UzEjWni6fQV%2BgvcTFtQDLN5rLy3V1eNgNJtK7BqlSu79Qk%2FMks112bQBVCr1g5Dxsr4Rg6vq9IB7XoBmtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8310d253dec156c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.bbtb.c505.net/bagas/css/bagas.css
172.67.215.38200 OK 1.1 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/css/bagas.css
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type ASCII text, with CRLF line terminators
Hash ae8f5eac80c514b6ccffce75de1d2d70
eff4b0347b7c8ea58833f35c07e177f80fd28ad2
a9510c5b947eedfa3d84fef078a623ebb72cd26a8acf9855a15521dffc430d62
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/css/bagas.css HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: text/css
Content-Length: 1057
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Thu, 13 Oct 2022 08:52:10 GMT
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oOqdyvEUUo6%2B9W5O48SlEtiOnS4LD8SnmKDpSIyWFMGq73aeS2nAULD%2BH3RSY1e0qles2WFoP09CiaR6ywMxMo54xiDUqF8ZpZqrJ0%2BG6b1LzcZlAYzzVKmFrHsNX7Evw8D3uw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8310d2538a4ab4f7-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/css/asdhwalex.css
172.67.215.38200 OK 974 B URL GET HTTP/1.1 www.bbtb.c505.net/bagas/css/asdhwalex.css
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type ASCII text, with CRLF line terminators
Hash 3cd849c1ee66bd52919d7563adf98da1
ea62846a1a083db346e5fb1ee40d46ab6ef4a26a
7893d2fb081ec23c9fae1f774745dab58213e6892b09087c37689700d56df6a4
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/css/asdhwalex.css HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: text/css
Content-Length: 974
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Sun, 30 Apr 2023 21:07:22 GMT
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gmeoTSDI8GUifmzgBT3Hu4y2oDMmeNWj7ly56g4%2FkWbJofffxLnh4RXtZrzBtWNftzlMEe0FO6urHMBkfYdAICBBcYiILugc6aE2BFCuIXfyXl1ND%2Fuan19n%2FAoj3H9TFz4I5g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8310d2538a14b512-OSL
alt-svc: h2=":443"; ma=60
file.gifan.id/fontawesome.js
104.21.234.34301 Moved Permanently 0 B URL GET HTTP/1.1 file.gifan.id/fontawesome.js
IP 104.21.234.34:80
Requested by http://www.bbtb.c505.net/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fontawesome.js HTTP/1.1
Host: file.gifan.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 06 Dec 2023 01:40:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 06 Dec 2023 02:40:34 GMT
Location: https://file.gifan.id/fontawesome.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=753A36lCX%2F4Mlhdy8EwsBKgQah%2FnA%2FXkivvibmvXwZtNCNpm1FzPMHqKfFiSJmZvlFShHAA8KwmRwI0w90KjNnt%2F%2FWA5Ej0%2FiZAgpC4j7bm2g7u9zScR%2FJuO8Zha4Yjd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d253dbdfd91e-HEL
alt-svc: h2=":443"; ma=60
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css
104.17.25.14200 OK 4.4 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css
IP 104.17.25.14:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (23577)
Hash 04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:34 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-5cbb"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1115588
expires: Mon, 25 Nov 2024 01:40:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sAvBUmA7veFs7y8djASDHnlBcCjPat%2BoLxDbMJRutpfMX3%2FT2kD0FVhweeYl6Mz9kWTKnDEDprR4PJMEQtcSaH7G%2BDUkVT3xUwW6SaNQG2ane4vz6v7J4hiJiGneD7MbywQuTasv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8310d253f91256a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.bbtb.c505.net/bagas/js/bagas.js
172.67.215.38200 OK 31 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/js/bagas.js
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type ASCII text, with very long lines (65447)
Hash 7c14a783dfeb3d238ccd3edd840d82ee
ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b
80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/js/bagas.js HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: text/javascript
Content-Length: 30960
Connection: keep-alive
last-modified: Thu, 20 Apr 2023 09:35:14 GMT
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=48RrM5FBKZJp9iKcvhUhUXIbHmQws7l%2BcygG3dwqq7VjYSBA33mkbwetXLGHRH58rwplaNamh%2BKZgPPW7nsIWFgJrDg15PwoVHNrHl8%2Bp%2BUk8tr%2BeXeEuYt4mmc2dSJuY3uzjw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8310d253aa77067b-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/5.jpg
172.67.215.38200 OK 169 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/5.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1086, orientation=upper-left, width=1080], baseline, precision 8, 1080x1086, components 3\012- data
Size 169 kB (168607 bytes)
Hash bff9f29f72cfd4e77609b8aed20a5cf7
1364883fd51628affa206ecbaa3ca936762add6d
a1feace6f3795fb7be0104efad2862cc1dfc174eef297fc0c218fd15dc40bbe0
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/5.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 168607
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:34:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wG%2Bd%2FRLrQ5MkOm0lxWZLPyxtvi06tlEQnaBbznLq1aPKle81wAt9dUSqpBx9FS2xHwkONSDlqqWMaXYZLw1GVYl6oLuakCxBfalaYN7wN6EJJ4N6sZW5cku8W%2BnZVMLYAuyKAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2542898b4eb-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/2.jpg
172.67.215.38200 OK 367 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/2.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1091, orientation=upper-left, width=1080], baseline, precision 8, 1080x1091, components 3\012- data
Size 367 kB (366884 bytes)
Hash 0a1f2f19c9662bdd1802981c4ad2019a
04d82614687b477eeb7c250dcd09dcc5cec63767
ebed843cee2927222f8c761c5ef33f1cc76aef1654bf4644c4bd41d84903b4a5
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/2.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 366884
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:32:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=COg%2Bs7uXjGsPKSO3sgu3WZvZTvQExD%2BXPcqJEmy1kQ1j4O7ACv2%2BiOM1kM%2BRr%2BK1uUEUJFgumMCc67w97TFeTL3o%2BUS2JkYMDJT%2BBXgQhiP8NbnafFLXX21xUJWzRUvoG9Zf9g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2542a37b512-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/4.jpg
172.67.215.38200 OK 258 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/4.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1089, orientation=upper-left, width=1080], baseline, precision 8, 1080x1089, components 3\012- data
Size 258 kB (257795 bytes)
Hash 63691a57ee2f51b885bce86a6ecd6a66
413cd56d0a80f92f5e7a0aa75217c91354d9e4bc
8f181c2d1f248d867a66702f2638fcd6a4de1ff4996d3a970686b1e23529f6ae
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/4.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 257795
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:33:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M2zTZrq4WbkXWyAx9uOIKZz%2BlXz3H%2FYdDytBssTwEfErC7aSgAyRxCyjMq5eZkdpR5GoGSoyPlioYAOOvRGaSoAuywr8H2sSsKOmvNrC9t7ALCyXXoeOLFtGmlveU4MIpFxJ1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2542b6c568b-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/3.jpg
172.67.215.38200 OK 260 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/3.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1095, orientation=upper-left, width=1080], baseline, precision 8, 1080x1095, components 3\012- data
Size 260 kB (259544 bytes)
Hash bfcbb109e43906bb3ec138a02b82df48
57a218cda73760a59b6cc4fa80a25a780a1470d1
363a8152f79e04f9856c4c6a7cd5312407a2d93ef47f7b3e0ae5ff1af030f8b7
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/3.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 259544
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:33:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fpkSQ%2BeBEj%2FQkr3vEInoONdWFAo%2FnPIMIN%2FAnDpHWR9MJCVymLgUlEKuiAmGuF7j1oNlcq0Wx%2FepoerM0edf5w7adT77XIUt8AAIm5beww9hLl46p840s1oiK07pVynDKFkaTg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2542ffa7129-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/1.jpg
172.67.215.38200 OK 465 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/1.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1091, orientation=upper-left, width=1080], baseline, precision 8, 1080x1091, components 3\012- data
Size 465 kB (465123 bytes)
Hash 6de7d1ef202f2313021a8dc814aad18d
979af4f0eac4ae064f62e10689b322746ba6dff1
3379a69947bef0e1470d5c79f591e4ebed63949b2a9c05824326c5d7d966d6dd
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/1.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 465123
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:31:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PvYS7U7b0a1jjXFUjqEUbNn99qakzR8zc5RURZ4ZUAJVorpqNQSwq9PRwGDQPEnJZwVlWPOTqo2gO7%2BNaqz3rpfR3C3mcS%2F6s72QsJNT756mGRd1uGjWks54gYSK26ZdnlhHeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2542a7ab4f7-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/6.jpg
172.67.215.38200 OK 222 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/6.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1096, orientation=upper-left, width=1080], baseline, precision 8, 1080x1096, components 3\012- data
Size 222 kB (221604 bytes)
Hash befdc9ff4159ab86d0ba8a61fe1ddd17
9ec9c6e54c422480e1ee42b29a053fee8abf379a
4d2b73a81cdc828f2734f5d9bd143de5ac176f7d99cc78b0fc41cb76d1efa63f
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/6.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 221604
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:34:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gg5WKHxic24zJfbEax4yRWxOXS%2FZ8TZy4Ss%2F%2FWxh%2BSx8lC5YYMmlk4I2fWOUvP49Y3mm4lbyBDk1cmvJtPHDSv1ZF%2F6QNJIdxqrZSqJOPmW4iVguf3xd48bAFclRklOX7yeWpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d2544a8f067b-OSL
alt-svc: h2=":443"; ma=60
www.bbtb.c505.net/bagas/img/7.jpg
172.67.215.38200 OK 330 kB URL GET HTTP/1.1 www.bbtb.c505.net/bagas/img/7.jpg
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1091, orientation=upper-left, width=1080], baseline, precision 8, 1080x1091, components 3\012- data
Size 330 kB (330125 bytes)
Hash 61702d8c41806c8ab47ac74578415e05
02bae73ba1a777fadac466ff87275ccb99b7539e
c1db2b1b65dc76468fe7d51d76603b345794f2006d4691bbddf00376f731f380
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /bagas/img/7.jpg HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 06 Dec 2023 01:40:34 GMT
Content-Type: image/jpeg
Content-Length: 330125
Connection: keep-alive
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 01:40:34 GMT
last-modified: Mon, 02 Oct 2023 21:34:00 GMT
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qq%2BQ%2FaDKyBtCfL%2FZWkh0gMeyb%2Fsz91JTwaryv2c9NzngcoRm3Pk%2Fd04U8Prp0%2BZKhhbUiHIsuNXECZuyX%2B0CM2DJAkB%2FwFcneN9ZqBg%2FOW5wvdQ%2BxpJ8jCyXnRq0aXN6Zc9cyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d25518d0b4eb-OSL
alt-svc: h2=":443"; ma=60
ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803
172.64.205.20200 OK 4.9 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803
IP 172.64.205.20:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (26019)
Hash c32e971c7d11c2407f847b61c515f1e2
85ac47a05e49f01cd62301ee121a2ca0dfdc0f83
a7fb3a26d569bec0139baaae950e43c1e10b0afbcf6e9d7654aa1181a8319759
GET /releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bbtb.c505.net/
Origin: http://www.bbtb.c505.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"c32e971c7d11c2407f847b61c515f1e2"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 70c71215ba79c388660ce7c2f052e258.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: HA7oBgVPwEPQ1NxFMO77n5I52fQpFulAY6q24gPe-l7SPDHLfkPvvA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BmO1zRBW3aMszsQebkqCuDS%2FA3zlByX9K6TPb6jVjl397NUwXqbsB3u9o54ZX3J%2FFWTA%2F7RZVgmRfkd4upAxmD2UoAT5EWzQRG31BA6cwmTBUJ2d9Pe9dE5dmYMNvIJ2b5IsdH3T3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8310d258adde7747-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803
172.64.205.20200 OK 127 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803
IP 172.64.205.20:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (608)
Size 127 kB (127123 bytes)
Hash e8ee688b3310772b65f39c69b76f4720
d57c6b7957aabb07762d473ea0b4bd3462f1175e
0e751f751587617116614deaf11f087ea82f7644196c1d0571f71fd549b556b5
GET /releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bbtb.c505.net/
Origin: http://www.bbtb.c505.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"e8ee688b3310772b65f39c69b76f4720"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 02462ba58311d13c5134d2086aba8b32.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: xEpOEXYgrhQD6DZBmPOmCQCYrLwQMm1vftTuWRX4hE4FEaedVTdhDA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yXJec4jKnJOg30kp9gA1JwVMV1xEx2xyOeR1Q9MvzYLMwfwirBRxEmg%2BRZQsrgQX9Apw%2BXxkemtNg08OelRzvKfDZLioPAKnzHmLaiW8wACc%2FLCDUr3kGqj4jH3tfiYdtE2nUqAKig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8310d2597eaf7747-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803
172.64.205.20200 OK 1.8 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803
IP 172.64.205.20:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (1817), with no line terminators
Hash 3dedc00973400e03c5ede855beb3e8b5
c72d245eb6fa18840821a7d53634a4f8ac5119d0
a45344d4b89aadfcddc80ff5e6de83bcbb2799a2af99a046e1cea1dd6fe0f28c
GET /releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bbtb.c505.net/
Origin: http://www.bbtb.c505.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"369cbeaee8e26da69cc5b0a0700cd62c"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ce4a706a25130daedebcad96e5386a46.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: GKc0GxDvG1FF-8Gs7M3MT9M5hqpjpL0AcFP61PERQ4JiZ-t9_oTWhg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E1dCM1BV0Qin0IY9YiBMn8szpA%2FOsRf%2By67SD2fNbBCLdlD17WPcSIp4u3VzEir6AfLsWl%2BBVQG4zSmvabZJbT%2B3koavTzn8e%2Fpk8sLjTELrX8yxRxsFHAAF6jzjzHYGgu0%2BJXM%2B8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8310d258adda7747-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.bbtb.c505.net/favicon.ico
172.67.215.38404 Not Found 1.2 kB URL GET HTTP/1.1 www.bbtb.c505.net/favicon.ico
IP 172.67.215.38:80
Requested by http://www.bbtb.c505.net/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /favicon.ico HTTP/1.1
Host: www.bbtb.c505.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 06 Dec 2023 01:40:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lq6%2FCdlcndBTggTOxuonZHbJLCdEYykKMYnqwBil6cgWif%2B4z3YmIsyICYLv%2BrfhNe6aGWflyZIgjmhrhzmNB8RdPNndIa0%2FxM1N9vie3cp9em443mmk%2FnO2tUyApjo23%2Bouvw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8310d25a9cbcb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803
172.64.205.20200 OK 90 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803
IP 172.64.205.20:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type ASCII text, with very long lines (65321)
Hash 345f5ecc270c94968998574a2d37e31a
4b1937ca073a8376a07161bc40549585493ffa3d
efad9b46d0c00f2562eb53236717ff21ebd474f8d68f69b45f92c424bfd87e9c
GET /releases/v6.0.0/css/free.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bbtb.c505.net/
Origin: http://www.bbtb.c505.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:35 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"345f5ecc270c94968998574a2d37e31a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 972fd2d16e88f1c25331026a963d4a2a.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: rjrnbUY-1Okcn0f-FBpxJb7MPatkxb_1u5AyO12SGekDhr3TfNMUdw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RE6kPFEFtO490Y12y5YruXVlgHo7YUnxoPv4PZy%2F0Kiqoelj3Xhl7WW9oTbnDLmpCdbG4YRQIygB59RbDfY1gfg%2FdLFaHl5shAbHEmsC9dQou2IXZC0xLz8XHJ85p2%2BCWqjYCti%2Ffw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8310d2597e9f7747-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.0.0/webfonts/free-fa-solid-900.woff2
172.64.205.20200 OK 127 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v6.0.0/webfonts/free-fa-solid-900.woff2
IP 172.64.205.20:443
Requested by http://www.bbtb.c505.net/
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT
File type Web Open Font Format (Version 2), TrueType, length 126828, version 768.256\012- data
Size 127 kB (126828 bytes)
Hash d60a1707d7a69023a566fee0f0804a79
00a6fae0a2d0d5ab1125bb3f7aec55ee8165607e
28e42bc5102996223a42faf19a8abd7436644f3bc6d25a9f5de6add426ba138e
GET /releases/v6.0.0/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bbtb.c505.net
DNT: 1
Connection: keep-alive
Referer: http://www.bbtb.c505.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 01:40:35 GMT
content-type: font/woff2
content-length: 126828
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:20:18 GMT
etag: "d60a1707d7a69023a566fee0f0804a79"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 67c28c3777e19eb797bcdb8909f34c46.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR5-P6
x-amz-cf-id: g0DRhmYBgj-Bfn9C5VCdfI8M14IQri7KKI1qpf6i7UrA7Jkoznu0MA==
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4TkAUQ4Iqz7PCasYwzCHG9qQHdueFPgDIJWbeBaWH9FxJ4BcRdf8RaY0cxTPBdChdlWoIZT7C8GqX0NVkwR89ibvGdeZVMXGEyX%2BFdISME0Q2lhLWhiDLji5Io64dad6PfVjiSA2zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8310d25b4fe27747-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2