r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3490
Expires: Fri, 25 Nov 2022 02:27:15 GMT
Date: Fri, 25 Nov 2022 01:29:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Fri, 25 Nov 2022 02:59:33 GMT
Date: Fri, 25 Nov 2022 01:29:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4935
Cache-Control: max-age=123861
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:05 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:53:26 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZqXzxKyOoHgL0lZk4TumPoLjnWrI4+5cXQREaBfEmTdnK3Br/CHrSpZhnMUZ4w9Dc2+eyrdqTPA=
x-amz-request-id: D9P74B19J9CXS6WA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 00:43:37 GMT
age: 2728
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 01:19:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 604
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 01:29:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 01:08:53 GMT
cache-control: public,max-age=3600
age: 1213
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2000
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:06 GMT
Last-Modified: Fri, 25 Nov 2022 00:55:46 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
pbs.fkip.unja.ac.id/index.php
124.158.168.78301 Moved Permanently 0 B URL HTTP/1.1 pbs.fkip.unja.ac.id/index.php
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /index.php HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 01:29:04 GMT
Server: Apache
X-Pingback: http://pbs.fkip.unja.ac.id/xmlrpc.php
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://pbs.fkip.unja.ac.id/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
34.214.17.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.17.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vd3R0bs0GEtEX7M+nQ+X4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AEnksZjrwec23iSuRf+K2ByjJhE=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9426
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 01:29:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9426
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 01:29:08 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9426
Expires: Fri, 25 Nov 2022 04:06:14 GMT
Date: Fri, 25 Nov 2022 01:29:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rKROwsZ-X8yDd4iVaYBaNFe6bgHaThxafIt76PBgLoOTrPMqAVQ9iQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:22:43 GMT
age: 11185
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg
34.120.237.76200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 66d06d3cac1784e4ce6c8c89c300f10a
41ef94d198bbf98185eb332a3b6934c3c26c3afc
55312d1b43447e4f77d8e9e52451bb63a9868ba8122c9e16e0a20479d34367e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2351
x-amzn-requestid: 1e3e6b14-8f46-4b62-a3d1-f5dbe5d5f94f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGupUE_VIAMFa3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f5e3b-573fabc44ce59c2f4c24a32d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 12:06:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XEUrOPYr2rn89eMIJORVFnpqJfxqfjBadcbplZKzqLjDkzHV8NEbHg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 18:51:30 GMT
age: 23858
etag: "41ef94d198bbf98185eb332a3b6934c3c26c3afc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58d104a028a45c82a7310de66477b256
e94f119e32bcff525f9b1a1c239e77747b6fc101
84d79596f4a2c255d1ecb98f557cfa4a2a42230eb92228122df7db6662140250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F012ad1d7-e278-4523-b537-853fcf51e3c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15116
x-amzn-requestid: 8babc46e-4964-4296-b13d-a3ad113d3095
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCDsiGC8oAMFwLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d7fe9-38b816f81940abb71ad60fdd;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 02:05:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FBWmZXoDHzX-tjUXMn4pkKwf1XU28Mz2JkuiikoIcKtYEqx3NFWpUw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 06:12:03 GMT
age: 69425
etag: "e94f119e32bcff525f9b1a1c239e77747b6fc101"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e55f70-58c6-4585-a420-ac74e1b8c6dd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e55f70-58c6-4585-a420-ac74e1b8c6dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2580ebded0a32ceecc3083ae1db2b37
2ec124224738807229328a3ade6ca493ccf4b287
010eeda33c923e2166851da1e131dcc21419d1f4f28995617ca93332ce4be08c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e55f70-58c6-4585-a420-ac74e1b8c6dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10679
x-amzn-requestid: aec8d040-d4e6-4185-b71e-7c049617ebc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b4J3VEM5IAMFtcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637989c8-42b520ea3af2a2086ad416ad;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 01:58:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AqpyU32i39pVq4O_-tSo8Bup9eNgoPGBq_lKyeXYUsN1BapLq-xGGg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 06:12:03 GMT
age: 69425
etag: "2ec124224738807229328a3ade6ca493ccf4b287"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ESacQ13nZwlbUKiNnwl6AxqC9ar8cxPctKLMFWS86aB3ZGsbxG0ZOA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 04:22:08 GMT
age: 76020
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 73480
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pbs.fkip.unja.ac.id/
124.158.168.78200 OK 14 kB IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 5f80e7c214d161a99bf79944698b48a4
5ddeef68c29e822f811572f3a34b8c537dc89657
8e04aa3828b9721fccb996abaf9003e5bb28147d4514de9d7f3ff5cce781dbd1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-pingback: https://pbs.fkip.unja.ac.id/xmlrpc.php
link: <https://pbs.fkip.unja.ac.id/wp-json/>; rel="https://api.w.org/", <https://pbs.fkip.unja.ac.id/wp-json/wp/v2/pages/263>; rel="alternate"; type="application/json", <https://pbs.fkip.unja.ac.id/>; rel=shortlink
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14458
content-type: text/html; charset=UTF-8
date: Fri, 25 Nov 2022 01:29:05 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/css/classic-themes.min.css?ver=1
124.158.168.78200 OK 189 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/css/classic-themes.min.css?ver=1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 189
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/superfish.css?ver=6.1.1
124.158.168.78200 OK 637 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/superfish.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash e485c78739fd7945d8b8698d702465d6
92614cab7d609263000c69429300100dfc606b51
bac0c6e26bd645df5ab5e79d243cc2e500cce1421fc92036f9577129cba49db8
GET /wp-content/plugins/timetable/style/superfish.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 637
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/event_template.css?ver=6.1.1
124.158.168.78200 OK 1.7 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/event_template.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with CRLF line terminators
Hash a6cbea41c7acaa5eca8c684dbbfeef52
44dd88010bb8f89b854831a6629c9cccd259fa88
abd955078989ba703e40963f81f38e4f16732a0220c042a8f77d9f6d57dbdfbb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/style/event_template.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1743
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
124.158.168.78200 OK 13 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 69502c1649c7968ca08d46151a7005aa
0d75f28ae3d83c75bf04d417980b3de9eb92e82e
68dbbe83a3a981810d2d66c651d70f43c83a0dcfc2290fea722a39e9138643c1
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.20 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12698
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1
124.158.168.78200 OK 3.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash 30a0b0f193537f18136e0392bf09b15a
52ba4b54669dde39c8e3f26c2acbd1ef8b98e9c8
dfa004ba71ceb1bf691543026c5707efdd334df4f4df0441462d4dca66c34b06
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/style/jquery.qtip.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3301
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/style.css?ver=6.1.1
124.158.168.78200 OK 5.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/style.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type assembler source, ASCII text
Hash 606b6bd84ec3ae54c4b9773cad2b9e37
4a252aa514cbd799dd119f35ad7c470b24fc0a0b
d0c77b7d5c921fedd7094cff5195d2d024f970ceaeee077f89d878c19df810ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/style/style.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5321
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/responsive.css?ver=6.1.1
124.158.168.78200 OK 1.4 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/style/responsive.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with CRLF line terminators
Hash 4dfeb79a15ede47469034cc3b2abb28c
b6bcabf580f65176f909074c4620bee7c3d17824
f3980c2d785ead6efa928a6de3f6ce6ae691c8eedc964f269dc71e7f6caadaf7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/style/responsive.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1406
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/vc_extend.css?ver=2.0.9
124.158.168.78200 OK 63 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/vc_extend.css?ver=2.0.9
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with CRLF line terminators
Hash 81660a31f9b19afc91733a61e48c2d72
aefcc6b3cafc2507d9c5edf01f30fd7d370d3242
e0f6486acd7edfaabd45aa23642921b20d7fe41183e5703a4c54050a8a94c43e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/visual-elements/assets/vc_extend.css?ver=2.0.9 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:02:15 GMT
accept-ranges: bytes
content-length: 63
vary: User-Agent
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
124.158.168.78200 OK 12 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 08:34:45 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12518
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
124.158.168.78200 OK 972 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 972
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
124.158.168.78200 OK 4.2 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
124.158.168.78200 OK 3.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3286
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.8
124.158.168.78200 OK 1.8 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (9312), with no line terminators
Hash 201a821d0093fc9b7b4e120ca51cefd3
d440fb972c1ecca4e24180a21dc2a1f399663397
0a4fc7354e973a436ffa77f98db4c2ae8bc1c234102f6e3ce81a912822c3e534
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/background-style.min.css?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1786
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
124.158.168.78200 OK 6.5 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6532
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.8
124.158.168.78200 OK 2.8 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (13362), with no line terminators
Hash 022bf1d37b467a4a6d0e964f4682ed2f
313cb2c56ffdd2ecc9f3f78348d060152085b3e0
fd5140ccd70892401a43e96c3a21205b63e1bc2f37dcb1870a6bbb7bd4f33b2c
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/style.min.css?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2752
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.8
124.158.168.78200 OK 3.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (33489), with no line terminators
Hash 8c1c6fc7f93ae5dd2bb1f44187e3696f
1b704e563fb1f432660f0b629badfc0a4816111f
eecec77ef62c064bca9d51ca09c577ae4e6e17e225deebfbdf105d9fa1a8cf2b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/advanced-buttons.min.css?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3345
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
124.158.168.78200 OK 812 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (2137), with no line terminators
Hash d17a11686a6f6c27c05e9137cc912be9
041cc041d1fce96904fcf10269b74e833f23a15f
57e9422099ed475b02d89816ca7c812aaf35664b095136363b025ccd31cb9637
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 812
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
124.158.168.78200 OK 5.7 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (19905)
Hash d3edefe85e1438b44fc6cc7c29b0a570
0122a5c210765d124751b3cf5dd56cc2cf432258
f53f905eec203f05d8277f4de51644307cc91a749d7cc4176ddddd7a8671e9bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5666
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1
124.158.168.78200 OK 2.4 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (2697)
Hash fe04fccfbaba8f6019f9dd65d7b46142
70073355c5fd66b0db520989668e9ac434edd05d
b62807fce3c5253edb97ee03df71a45736bc9956e6526f4c020b40ea4c7a8bd9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/js/jquery.ba-bbq.min.js?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2379
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
124.158.168.78200 OK 2.5 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 08:54:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2457
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.8
124.158.168.78200 OK 4.8 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (27639), with no line terminators
Hash da2fc2749d073a4558e07be91fd485bb
5b2c13af9ee717486ba75d132491dca65b7ca93c
e26b306c0363987a4a02bd157f64c1096a49715389def07c9d1207def1b4ab53
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:05:16 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4755
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1
124.158.168.78200 OK 5.7 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/timetable.js?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (353)
Hash 9fa8c0904924164fd22127de46a02796
20df165700e9c3c6f85cb3a959eab35088151f41
59b98560e5a375e901900823fd378d97b32ca38783fbafa50a3aa4576e255708
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/js/timetable.js?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5692
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.8.0
124.158.168.78200 OK 1.2 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (5542), with no line terminators
Hash 09e872dbfc9ed68eaa3870a75f0a0362
aea018191a60c03e2ed3c1541c385972b848f779
c5d3dbccfb66d5cb77aefc1a335235137d3355e3a9df8770cd85842ad159ac13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1158
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.8
124.158.168.78200 OK 515 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type HTML document, ASCII text, with very long lines (1102), with no line terminators
Hash 8b7814617571a492de65d62ef59e75ab
eb8cdfe393f726cac1d72ba12d45b819454dd39b
5e76082d0bc82e7a7aa6da22805f3b8ad9b12914cbc6ccb23061be251f133658
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate-params.min.js?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 515
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.8
124.158.168.78200 OK 611 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (1350), with no line terminators
Hash 8fa05dcc02aab1489117ee84bea23253
484070e24b0dd797a221229b1f01506386fd6fa4
79a013900b86cbedc1ac48b622cb66ebbfc8c590163805ab9e21313bb1f7de1d
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/jquery-appear.min.js?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 611
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0
124.158.168.78200 OK 3.7 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (51719)
Hash b56aabb4f35984f3e74659f7b23254bf
9e12c8b4c80428a847b50e922b1a8a38d807c23c
825101fe8abc67771f316bff138dbd33445065033cc7efb4b103a26b100bb464
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3653
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
124.158.168.78200 OK 4.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (34217)
Hash ff23202f1227d35b13635501c86b2156
31c5de356f90da7a53468ef8ed0a9237cdaa67ce
c4b5a8cbcaef7b3a6d4d2f1a3d68cfac3a2ccb7fbfcd7ae212bf2c39fc85ed42
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4260
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.8
124.158.168.78200 OK 4.7 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (21391), with no line terminators
Hash b2d7a328accd8b41ab89937aa6fcfa3f
6175373189ad7459afb0354228772a45eb3b6ab6
bb4c2a366e6bd65777b044c7ec4f85fcd0f71f09261976f64df91cd6d18f599b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/custom.min.js?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4740
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Alegreya+SC%3Aregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.8.0
142.250.74.10200 OK 3.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Alegreya+SC%3Aregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.8.0
IP 142.250.74.10:0
File type ASCII text, with very long lines (6832)
Hash fcdebbc433fd6ead7bbbce9244368a5b
8b144fa4d4ededd933d797e55be380551d6028ad
cbda0ea8954c35033ffccaf94165aef89c9302f4694e59b9786064961f10af62
GET /css?family=Alegreya+SC%3Aregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.8.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 01:29:08 GMT
date: Fri, 25 Nov 2022 01:29:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/themes/education/js/popper.min.js?ver=1
124.158.168.78200 OK 7.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/themes/education/js/popper.min.js?ver=1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (20363)
Hash 012d72859494c22ab6bad0b8fdb0ab93
7d9c58c67783880753a84d3d22abfe7e72946a21
fc2682bb25adf8122d2be62985b3f464ab82466ed562e2260dd854c33ceb4dd4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/education/js/popper.min.js?ver=1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 03:54:41 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7300
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0
124.158.168.78200 OK 3.0 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (10774)
Hash f68860bc561bf311cacbe481ed61d0d1
f3b0d1f8a3de031bf05734fac46b112e08e38421
a54a92db6120df0f4ea3df96e9f1779aa4a6ac26278e6d57f9ca324cfe55e29b
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3047
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0
124.158.168.78200 OK 2.8 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Unicode text, UTF-8 text, with very long lines (8853)
Hash bfbdca93ba95323d2d8a1420298f8429
5838f907c4898a5b092f4edd88190b2798f1a3c8
8a10fc2a3464e3c3a6d0015197004d70ebcb22c493bab35ac0bd23f5aa415722
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2813
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.8
124.158.168.78200 OK 9.5 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.8
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (45448), with no line terminators
Hash 1c9ea626acc747e0131ef1b94dbe782d
af584ea25de1bc63a82249f45d01576c1f5b25da
f96f34670e472ad733615c9043633c68837f6b303009641c0c1bcc66062be7e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.8 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9496
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
124.158.168.78200 OK 12 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (56243)
Hash 56ff26e4540fe0eb470200be12da9539
e55c1cf13307417eb0721280047dfe0a7e870752
41bd8b382a880ae6ec59d84506d7b5ba03c23eb9dd5b4044eb8f50e182fb39f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12251
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
124.158.168.78200 OK 5.0 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 08:54:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5009
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
124.158.168.78200 OK 3.9 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (11760)
Hash a752545811353c9abfbbd3dd8b7bc5c1
88a3090518aaf4d892f8e19a5ffb60f3451aff27
3d16460a2a70ff5cd9f08f527eebb0fd9814287607ff31f2e883ded5f952d521
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3915
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.8.0
124.158.168.78200 OK 4.8 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (26407)
Hash 1b0c4816bb78f95e0e04038fdaa1e9a7
6c0e1632afc5b97c042445d857f2ac7d3495d045
33e9221a0fd7d5ffa9fe86084e90a6304432d417e50238bedcfc478df4592202
GET /wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4815
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/masonry/dist/masonry.pkgd.min.js?ver=6.8.0
124.158.168.78200 OK 7.5 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/masonry/dist/masonry.pkgd.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (23946)
Hash b3e320a4b5b4e9e0a70a91d803eab6e2
a726cdb3b391ea6a63062d55c8dea9f2935a1a05
d9011656f27ee52445c5631803fc49b42456af79c592590f95e7081ced52ec59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/masonry/dist/masonry.pkgd.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7486
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/underscore.min.js?ver=1.13.4
124.158.168.78200 OK 7.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/underscore.min.js?ver=1.13.4
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (18798)
Hash 3f92fc0fb188799b432341421df6cfde
09041f63af89e1164a53dec66eb7b2ac1dc58ba6
6b09e750d7ecaac14315f7c7e09b6de17f8d1f790b4acdc094b74832402aee31
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7311
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
124.158.168.78200 OK 7.1 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7097
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
124.158.168.78200 OK 31 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 09:46:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30995
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.8.0
124.158.168.78200 OK 12 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (48177)
Hash dfa10cf1a044d9064767d1f6d2f0eece
723b6208dfb4377353603df02c8c8f7c9d5c0c84
563ed7a12356b6c637e157cdd79324bde3adf97cef417c93ae7c81730920e5a6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11735
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1
124.158.168.78200 OK 14 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (35720)
Hash f48438b9b3cd22e933b6408a2fe86397
e95fcf6a726c30b263d3b32e3de897c5165f699b
b53af328914d83d51645d96277131c01bb09eff1b6040bb9d6a9be3feef98685
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/js/jquery.carouFredSel-6.2.1-packed.js?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14158
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
124.158.168.78200 OK 46 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (65358)
Hash 0902fa9f63e10af7c49b808e93b8d3f9
e429b5b8174e6b7d84f837e128e3aa8a418b5fd3
8a621e96052c745b5a7c85be91b0fec9d7f913346ee4282102f7f141f79f9318
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 45824
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.20
124.158.168.78200 OK 47 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.20
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (42889)
Hash 77714eda7be96b630fdd2debc7044a22
6f0cd135c3301b5a5d743867cc1629c314714419
f80d0281685b83facfddc7c45aee95663574b70f2805fbbd75e6b64d326ae289
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.20 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 46967
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1
124.158.168.78200 OK 16 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (32049)
Hash 26d6ef2df10f399014928de8927e928c
6b88a3af9365585850d40dba240c8dce07cf43db
d265eb604959eca5b13895235c95abfdf448c7a23afbdfef2c1707a7a3460f28
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/timetable/js/jquery.qtip.min.js?ver=6.1.1 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16105
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/themes/education/js/theme.min.js?ver=1.1.4
124.158.168.78200 OK 24 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/themes/education/js/theme.min.js?ver=1.1.4
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (65536), with no line terminators
Hash fe4e35f64bda617c868e7ae1e0a8b535
04a0b14e1ea13dc1ed08a45e7003d2ecc4e47a51
923e0075ddd1c3a0d420366435a0a809c98ee885174d4a65253f5be589ad9d14
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/education/js/theme.min.js?ver=1.1.4 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 03:54:41 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23765
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/vc_extend.js?ver=2.0.9
124.158.168.78200 OK 29 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/vc_extend.js?ver=2.0.9
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (32037), with CRLF line terminators
Hash e111aa5c143cdf9fe71c304d5054a304
ce0cfd986a69716deae59391cd7b0b68b4da851d
e0005a12945179772a7dfafd88ab041ee7390a4c96a787d4710a6fae64a82b00
GET /wp-content/plugins/visual-elements/assets/vc_extend.js?ver=2.0.9 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:02:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 29195
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/css/custom.css
124.158.168.78200 OK 7.3 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/css/custom.css
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b746db4dbecb9d849058a8004a0600a8
2cc6d1525d4fd17f15c56682c548f5b5d344707b
d8f2b56e54567ac7b157531063902fa6ce3bfcb690cb57f37a004f5fd04031c2
GET /wp-content/plugins/visual-elements/assets/css/custom.css HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/assets/vc_extend.css?ver=2.0.9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:02:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7333
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/pbs-logo-e1649746182765.png
124.158.168.78200 OK 13 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/pbs-logo-e1649746182765.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 350 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 2947ba026f8524371d0a5d7acd164ea1
2bcdf8a046971536fd2e4d3a17407fd0805b8f52
52edd2cf507aadd1767859fca32e71bfdfb89eb048ad62c16e7dfaf68e7fb7ff
GET /wp-content/uploads/2022/04/pbs-logo-e1649746182765.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 06:49:42 GMT
accept-ranges: bytes
content-length: 12863
content-type: image/png
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pbs.fkip.unja.ac.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 202728
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pbs.fkip.unja.ac.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 21:11:39 GMT
expires: Sun, 19 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 447450
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/vslmd/modules/svg/js/svg.min.js?ver=2.0.9
124.158.168.78200 OK 29 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/visual-elements/vslmd/modules/svg/js/svg.min.js?ver=2.0.9
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
Hash 746b8fc5e71c4cc41ac37acd98979579
b42838a662a166f167a217796f02bc394a65fa55
d39f356254a38f9270bbd5c2814c54fe941f971b172aae689c4bbf05ec02aba5
GET /wp-content/plugins/visual-elements/vslmd/modules/svg/js/svg.min.js?ver=2.0.9 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:02:15 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 32725
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 01:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0041-scaled.jpg
124.158.168.78200 OK 316 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0041-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 316 kB (315957 bytes)
Hash 7bad281af3ade201b4f62b70b7f973f7
e02c42bc0cb2cc4150de666c9a0d4a27ebe9c161
434095db27215c67a37c9ff21ffd6eeb688eed7edb948dc7513eceed1101a15a
GET /wp-content/uploads/2022/09/DSC_0041-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:39:41 GMT
accept-ranges: bytes
content-length: 315957
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0037-scaled.jpg
124.158.168.78200 OK 381 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0037-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 381 kB (381428 bytes)
Hash ac2a0228d2fe6be1719744bfff34292e
37458f783840a0d40ffe45eadfe14d7313bb35b8
c95c09fa1c03f9c589ca5ba27684e301bbd489f7c9bab36d8a12c4535e26117e
GET /wp-content/uploads/2022/09/DSC_0037-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:38:01 GMT
accept-ranges: bytes
content-length: 381428
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0028-scaled.jpg
124.158.168.78200 OK 424 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0028-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 424 kB (424531 bytes)
Hash 1f74a157d251037e2b0d53e380b90072
b840c8e9dbd711be021ef53602228983968b9f22
846f761f5d365988cf60bbe3846d388375d175a246bd88c2a92d449783d99b91
GET /wp-content/uploads/2022/09/DSC_0028-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:27:54 GMT
accept-ranges: bytes
content-length: 424531
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0036-scaled.jpg
124.158.168.78200 OK 432 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0036-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 432 kB (432156 bytes)
Hash 04a3c9bd2a6233102e10fa2badddddfa
59fc92b97b36edb85f64b6b51405516c2856bce8
716e841532ebf99f36931dc7fe1af018e4ec76cb6798bb4c171f40f814a0e341
GET /wp-content/uploads/2022/09/DSC_0036-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:37:26 GMT
accept-ranges: bytes
content-length: 432156
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0023-scaled.jpg
124.158.168.78200 OK 447 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0023-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 447 kB (447425 bytes)
Hash 3869ac313e814c9903922f87fd9b8d56
7db2f1abc2912198a25a4ae1d817dd828541cbda
94bd88f9174112b136b52aaf3fe61b9e9f7719d86021a3ed6270dc79b2fb954b
GET /wp-content/uploads/2022/09/DSC_0023-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:27:09 GMT
accept-ranges: bytes
content-length: 447425
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0040-scaled.jpg
124.158.168.78200 OK 467 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0040-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 467 kB (467315 bytes)
Hash 5ab9eddd8124a1749af2d4281155e971
7b193f6716c3f20d733424bd66240568b6069144
5c137813a2374c2a63e481ccceefda1745e6ae5109743c28d60a650e9821a81d
GET /wp-content/uploads/2022/09/DSC_0040-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:38:47 GMT
accept-ranges: bytes
content-length: 467315
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0020-scaled.jpg
124.158.168.78200 OK 503 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0020-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 503 kB (503145 bytes)
Hash 96233b5d8398e276b8bcb8ff1263a27a
ffff8cd3c3e318257d97d963cd7b35f1c3a62566
f76c2037286cc49093b92c855d97f3f8b970d7de9ca275695b07fdc8468c9ab1
GET /wp-content/uploads/2022/09/DSC_0020-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:26:20 GMT
accept-ranges: bytes
content-length: 503145
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0032-scaled.jpg
124.158.168.78200 OK 589 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0032-scaled.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1707, components 3\012- data
Size 589 kB (589175 bytes)
Hash 2436e079b5d1e813cc5ed692842be296
b8c79c367e0792b3114ca7213010d69ed9f84bc9
db3b281ed1c1ed3dc3ac042134fd913f0e52ef6b1f126c7973a79368d05e9968
GET /wp-content/uploads/2022/09/DSC_0032-scaled.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:29:50 GMT
accept-ranges: bytes
content-length: 589175
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0035.jpg
124.158.168.78200 OK 615 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0035.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, copyright=MM], progressive, precision 8, 1920x1280, components 3\012- data
Size 615 kB (614807 bytes)
Hash e2556b23314cdb3c180e8a68a178a0b6
7e8f8d67d8e750a7bbe83a49580d80155ea01eb6
6131583f8dff2adabcc691e3ecebde5a9167baee94ea89bb61b789ffe5a14ad4
GET /wp-content/uploads/2022/09/DSC_0035.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:41:23 GMT
accept-ranges: bytes
content-length: 614807
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0033.jpg
124.158.168.78200 OK 666 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/DSC_0033.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, copyright=MM], progressive, precision 8, 1920x1280, components 3\012- data
Size 666 kB (666113 bytes)
Hash e28983c22d2f4bc568fa36ecc1067a1e
d7b86f05cdfa0fecab6101222c40bf56e22b9a7a
216e04bd0602e88bf6564e0b8844fcef8aac0ac6491099f92b09d4e229e48848
GET /wp-content/uploads/2022/09/DSC_0033.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 07:41:13 GMT
accept-ranges: bytes
content-length: 666113
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
124.158.168.78200 OK 76 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
content-length: 75760
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Fri, 25 Nov 2022 01:29:08 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
124.158.168.78200 OK 1.4 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 84b76dee6b27b795e89e3649078a11c2
6640a3432f7ba7aea6129cdf7a5d3eabd47c295c
7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
content-length: 1360
content-type: image/png
date: Fri, 25 Nov 2022 01:29:08 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
124.158.168.78200 OK 1.4 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 31f15875975aab69085470aabbfec802
777e92c050f600b4519299c3d786b8f2f459fea4
15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
content-length: 1350
content-type: image/png
date: Fri, 25 Nov 2022 01:29:08 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
124.158.168.78200 OK 8.5 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
content-length: 8476
content-type: image/gif
date: Fri, 25 Nov 2022 01:29:08 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
124.158.168.78200 OK 280 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 27 x 27, 8-bit colormap, non-interlaced\012- data
Hash d9d2d0b1308cb694aa8116915592e2a9
3ca48361cfe0e41163023d03c26296f375bb3eac
5d62e6c90005bfb71f6abb440f9e4753681cb23bbd5e60477ab6f442d2f0e69c
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:40 GMT
accept-ranges: bytes
content-length: 280
content-type: image/png
date: Fri, 25 Nov 2022 01:29:08 GMT
server: Apache
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
142.250.74.74200 OK 6.8 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (1322)
Hash e50618b92776b0c2829143cad8f3659f
b90c156c67e5768cd7ccf5e7aad127385f5e2d78
4b3bc416d421c1eebce4174809a8620d6f933507c5fdbd9dd35443e1a28a04f3
GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 6791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 08:26:56 GMT
expires: Fri, 24 Nov 2023 08:26:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 61334
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-32x32.png
124.158.168.78200 OK 2.1 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-32x32.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 383e1c47b73710ed27dab611e6bcc92c
967a39896c6c20865bb91fd0947b92ae10234376
5eda61c94f008fa25eea34c34016f760a234b74920712decfc2200e1869f3c51
GET /wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-32x32.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:35:33 GMT
accept-ranges: bytes
content-length: 2119
content-type: image/png
date: Fri, 25 Nov 2022 01:29:09 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-192x192.png
124.158.168.78200 OK 44 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-192x192.png
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 616d4125e357b20ae8da2dfb0d42e323
0df4201be7ad9ccf959a6260dbe76f30ea6f10ea
b6012f3cc0842ccb55bc7cfb10a02c56b4beabfe9941443c684f41ebfcccc533
GET /wp-content/uploads/2022/04/cropped-LAMBANG-UNJA-EMBOSE-baru-copy-192x192.png HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:35:33 GMT
accept-ranges: bytes
content-length: 43870
content-type: image/png
date: Fri, 25 Nov 2022 01:29:09 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
124.158.168.78200 OK 88 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type ASCII text, with very long lines (64270)
Hash 18780f396a11ac685920c1ff0c2758bc
c0ca26e40131747b0027d8657e71d496d44606da
9ae9fa22379e204c7fdb2d3fe21cb8f6abc40aac31ae317958078709c7642b92
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.20 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 04:03:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/b7912e25-0ffd-40d7-8c1e-005fc1f29c8a-300x234.jpg
124.158.168.78200 OK 22 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/09/b7912e25-0ffd-40d7-8c1e-005fc1f29c8a-300x234.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x234, components 3\012- data
Hash 431c2bd39f077dce693f99b38696071e
df5247b909d2e466892672ea5342009e20c3a8f3
6c6b34ab9a49b26a6363cca5a2b0ad5c48d6f05d4204f1f798583693af388ff7
GET /wp-content/uploads/2022/09/b7912e25-0ffd-40d7-8c1e-005fc1f29c8a-300x234.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 08:24:47 GMT
accept-ranges: bytes
content-length: 21510
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:10 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-22-at-12.40.28-300x169.jpeg
124.158.168.78200 OK 12 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/06/WhatsApp-Image-2022-06-22-at-12.40.28-300x169.jpeg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x169, components 3\012- data
Hash 8d274855ff3513cc87bf98c167183ea2
b424392cde51b245f5ccf52b20ea8b08806feaad
187e30934f62c7372029540e32f286ee0b640f65d85eaeb36380b5013c7bbd55
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/06/WhatsApp-Image-2022-06-22-at-12.40.28-300x169.jpeg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 05:41:17 GMT
accept-ranges: bytes
content-length: 11458
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:10 GMT
server: Apache
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/d8c92b4e-a6db-45c6-b3fb-0848ed471ecf-213x300.jpg
124.158.168.78200 OK 12 kB URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/uploads/2022/04/d8c92b4e-a6db-45c6-b3fb-0848ed471ecf-213x300.jpg
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 213x300, components 3\012- data
Hash e783d96fd19398bdf272bd9f878be356
26b2151f3d287ccdb3a7950ceca42309c5556a07
e7e36781791c614d59e247a1cc122efa4339434baa8e5f40e518ab335f5b86aa
GET /wp-content/uploads/2022/04/d8c92b4e-a6db-45c6-b3fb-0848ed471ecf-213x300.jpg HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 08:34:18 GMT
accept-ranges: bytes
content-length: 12507
content-type: image/jpeg
date: Fri, 25 Nov 2022 01:29:10 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 12869
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%2C700&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Lato%3A400%2C700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 01:29:08 GMT
date: Fri, 25 Nov 2022 01:29:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pbs.fkip.unja.ac.id/wp-content/themes/education/css/theme.min.css?ver=1.1.4
124.158.168.78200 OK 0 B URL HTTP/2 pbs.fkip.unja.ac.id/wp-content/themes/education/css/theme.min.css?ver=1.1.4
IP 124.158.168.78:0
ASN #9341 PT INDONESIA COMNETS PLUS
GET /wp-content/themes/education/css/theme.min.css?ver=1.1.4 HTTP/1.1
Host: pbs.fkip.unja.ac.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 03:54:41 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
date: Fri, 25 Nov 2022 01:29:06 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400
IP 142.250.74.10:0
GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pbs.fkip.unja.ac.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 01:29:08 GMT
date: Fri, 25 Nov 2022 01:29:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2