r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6ed951622549ed76959631f8a1bf497b
682b2dd2a72190510e3fa7bdb0c0c6f25a322dfb
86f5e5ae2da408a899d16c83b7ca441033ac0c30062cd29f2db1b1b5be666746
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86F5E5AE2DA408A899D16C83B7CA441033AC0C30062CD29F2DB1B1B5BE666746"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6877
Expires: Sat, 19 Nov 2022 12:18:11 GMT
Date: Sat, 19 Nov 2022 10:23:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3117
Cache-Control: max-age=89970
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:34 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:23:04 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 19 Nov 2022 09:45:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2306
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7554
Expires: Sat, 19 Nov 2022 12:29:28 GMT
Date: Sat, 19 Nov 2022 10:23:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: o4Jf7GfkGlkG/avqd/lukDZo5RfqMHWlrxP8HRBLz+JygXx34CmhykwhSXwldN1spWttwJxyMxg=
x-amz-request-id: ARRXSFH8KAJTXVKJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 19 Nov 2022 10:15:59 GMT
age: 455
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 10:23:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 19 Nov 2022 09:44:49 GMT
cache-control: public,max-age=3600
age: 2325
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
kursusbaikiphone.com/
113.23.169.115301 Moved Permanently 0 B IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://kursusbaikiphone.com/
content-length: 0
date: Sat, 19 Nov 2022 10:23:32 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fe40cc6ea871d80382b6082111393fbe
281f75d0a35dc8ef908bb0500e57abd86bd5388e
6d15422cdf7a6d72d06497188f27af893682314e82ac8a189a0ee2d798cb62d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4758
Cache-Control: max-age=86559
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:35 GMT
Etag: "63774b30-1d7"
Expires: Sun, 20 Nov 2022 10:26:14 GMT
Last-Modified: Fri, 18 Nov 2022 09:06:56 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.74.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.74.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ppSazLs4ga5O2P5GyY3R5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xQexqHR/PEYtWG1dp8SiWe69ts8=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07caf241d63e15426cd26434ef88e9dd
ec289ab860ffccd49ce9a62d2c47c59dc181fbd5
d1f4bc6604b8a399049b5943d23dbfb842d9a100bf6f5c71e91a27cd3588cecb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
Hash cf83d06737774582a1732ce7bb602467
bf83489da2e12fbf919e86711f46eeec2cf0dc08
e77adac06638c2489615148dcb9508c70d5d9e233024a668e3c4fb0016e9a909
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Nov 2022 10:23:36 GMT
date: Sat, 19 Nov 2022 10:23:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
113.23.169.115200 OK 12 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 05:17:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
113.23.169.115200 OK 2.4 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
113.23.169.115200 OK 982 B URL HTTP/2 kursusbaikiphone.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/
113.23.169.115200 OK 18 kB IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10595), with CRLF, LF line terminators
Hash 46de81026ba1524fe93b28888e8455e0
ada354be43f45390df830697dc73c3623ec7a464
3310affae962ee6739ff7565b7ea4a48261361f993bb22556fe090d7a99b349e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://kursusbaikiphone.com/wp-json/>; rel="https://api.w.org/", <https://kursusbaikiphone.com/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://kursusbaikiphone.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Sat, 19 Nov 2022 10:23:33 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9096
Expires: Sat, 19 Nov 2022 12:55:12 GMT
Date: Sat, 19 Nov 2022 10:23:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9096
Expires: Sat, 19 Nov 2022 12:55:12 GMT
Date: Sat, 19 Nov 2022 10:23:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9096
Expires: Sat, 19 Nov 2022 12:55:12 GMT
Date: Sat, 19 Nov 2022 10:23:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9096
Expires: Sat, 19 Nov 2022 12:55:12 GMT
Date: Sat, 19 Nov 2022 10:23:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53a83e17-462d-4d4f-8f42-f44460fc79a2.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53a83e17-462d-4d4f-8f42-f44460fc79a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 50a8727077dd86072a07bd2077c252a8
0e2df523714ca147a69465f3ad4867a33314acb2
9fd12b1e80aa231ffd709c05edda762a4c63d0c70010fb62efdf21c73e657459
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53a83e17-462d-4d4f-8f42-f44460fc79a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7445
x-amzn-requestid: 10c0e6f1-9264-49a0-93b1-16f291edb643
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bu9_nGVwIAMFlKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375dd30-42e9fc0207225de072a699c6;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 07:05:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z7UqLro_YPrsSZEMfCuHtkHSv_JSUjySa_uzw0SDRq3XbR412AxFQg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:12:55 GMT
age: 11441
etag: "0e2df523714ca147a69465f3ad4867a33314acb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cf981b1ea47b981c73aa1f291be4d8a
d18b869e1940841e9b03f66f5608e381f1727b37
3352a04b9596b594aeb5de3dc70047196a830e3ca79babf7c1b72ff1103b2d26
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7754
x-amzn-requestid: 2c21447c-03bb-4e50-9eeb-a8ae86c0d204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRmFuiIAMFjWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa70-7a7e65fc5d443a1d70feb62b;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FOOPIt4Esu0ifQGtxGkVlsrvvCrMjc8K6u02NCgurh2d7bvBieMkwg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:48:36 GMT
etag: "d18b869e1940841e9b03f66f5608e381f1727b37"
content-type: image/jpeg
age: 45300
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6b026c34985bbf2ebf89a62d0724c66
72369ebeccf447fa91ef77711d6297063c99777e
e5598ada634274ab9995dedda8c1fd18344abcfdd49b3a1aaede0a86fafc0f40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3035
x-amzn-requestid: 3e3f3a7f-9a1d-4b37-b932-22c6e3e638f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRcFOuoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6f-09dc20ea5620dd167e3f7265;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pLsLyVnqWVp3c5Z5IavS9Xumx3cYUsungYuOLojzKNtOoRQx7-rEOQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:48:36 GMT
etag: "72369ebeccf447fa91ef77711d6297063c99777e"
content-type: image/jpeg
age: 45300
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141ee43e-4742-4784-a9a2-359cfa7ac9a3.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141ee43e-4742-4784-a9a2-359cfa7ac9a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 859348e84041e7934b7f959f087a3679
583310946175391015cb46fcfa476cca96ebb9a9
7fba6813b2d8f06a6098b2c628580190b094c79e300744506344a3febc5f06de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141ee43e-4742-4784-a9a2-359cfa7ac9a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9681
x-amzn-requestid: c786a64b-40d2-4de1-adee-3a6ee4d791ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brlnQGuWoAMF_Wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637482fb-02471a5a3d5f299d33f7b026;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 06:28:11 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Vaw_JJDie7z-IE1-40wBV8wW2dlZi8TKXbf3I0ZWw4NrtWZkHT2yCg==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 16:42:12 GMT
age: 63684
etag: "583310946175391015cb46fcfa476cca96ebb9a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 84839dd7a1d5d50d40a848e92d3ae6ca
150c83236b3518afce551ef94e2c3dddc275ce3f
fb9fffd5dafa855d3f16aefcdf31f656ea5219547a91b336ab41a998ead28050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6103
x-amzn-requestid: 4f0d1ea8-611c-48cf-be66-dd26b6d56a93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubTBFxDoAMFfYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5ac-4222e7656cb7a56b557d5b13;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cRJ56pbYNmpcRq4YFqeetWeMa1BSBZF9hWpiAXozgB9DyWoNHrybKg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 03:45:45 GMT
age: 23871
etag: "150c83236b3518afce551ef94e2c3dddc275ce3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s1153EpshSWYGLcN7Zzzs4PgXl9cddZ20gTwh5bK2HOBu4e_PSNCpQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 03:36:46 GMT
age: 24410
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0
113.23.169.115200 OK 19 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash a74053a384baf15f084b143b0e0f1dd3
4a6705bd8f3573439f0ad1311033c786abd99b24
c665c0f1a95e5b903884e255074ae726f4c2b88f4302a26ebd36f94f4a45097d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=6.1.0 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19218
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/css/classic-themes.min.css?ver=1
113.23.169.115200 OK 217 B URL HTTP/2 kursusbaikiphone.com/wp-includes/css/classic-themes.min.css?ver=1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 02:21:15 GMT
accept-ranges: bytes
content-length: 217
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1
113.23.169.115200 OK 2.4 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Unicode text, UTF-8 text, with very long lines (17923), with no line terminators
Hash ec41958d4b8e3f562fd97efea3e9a63e
550251108c88e60743ce55b0938aaf41f62c29bd
54bcac6e842100dfe2b97bdbebd393f71d934adc136eba5ddcc8174804b4fc5a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2373
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/twenty-twenty-one.css?ver=5.9.1
113.23.169.115200 OK 8.3 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/twenty-twenty-one.css?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Unicode text, UTF-8 text, with very long lines (55410), with no line terminators
Hash cf289495660d45c4059c6a90ccfe9755
081e2e255b349a1df7da830461e32cfbcb9cb9b2
c220d2edb02b86121daf55c7752b722d66f7bf11c2879207bee7f502ea2f6752
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/twenty-twenty-one.css?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8321
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/themes/twentytwentyone/style.css?ver=1.4
113.23.169.115200 OK 22 kB URL HTTP/2 kursusbaikiphone.com/wp-content/themes/twentytwentyone/style.css?ver=1.4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Unicode text, UTF-8 text, with very long lines (403)
Hash 62daf70bcac352a086ee7c6c0498068e
c8d6502c4f964874a0016223cf246e1dd81528e7
f15ba3c042055ec36a3714964cce47932b19c5f428e696d4630225c315944e31
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/twentytwentyone/style.css?ver=1.4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21920
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/jetpack/modules/theme-tools/compat/twentytwentyone.css?ver=10.7
113.23.169.115200 OK 802 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/jetpack/modules/theme-tools/compat/twentytwentyone.css?ver=10.7
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash f7deaa6d384e663bdef84c5d3b40511d
ec98418a8d7554219838fe9576072a57d8a609eb
29d339c73ef37477b8a3b6a064e5f184902256754de3b6a46af4298368589b5c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/modules/theme-tools/compat/twentytwentyone.css?ver=10.7 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 802
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/facebook-conversion-pixel/video.js?ver=6.1.1
113.23.169.115200 OK 2.7 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/facebook-conversion-pixel/video.js?ver=6.1.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash 65e4abc845907c71eccd1759b01d0de1
f9135e8224143fa1715adc6bc668168a8bf2c1db
3217e51898ad5061141abeee5f465e1549e907060e2430f851eeb64fe37c0f70
GET /wp-content/plugins/facebook-conversion-pixel/video.js?ver=6.1.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Fri, 09 Sep 2022 13:13:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2694
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
113.23.169.115200 OK 3.6 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (18854)
Hash 23d0cda7fbd7f269a200dfff8ee211c6
497cc19819270e7a3795ab61e775c130ac7b255a
299d22db4a8362551089748bb93645f190469be3b392fa206b9872bd298bb41b
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3554
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/css/post-5.css?ver=1639888685
113.23.169.115200 OK 281 B URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/css/post-5.css?ver=1639888685
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (946), with no line terminators
Hash 9fe8829e11b1fc64526f25e35cc201e3
c53168f7fa495fa81ba31605564d3f343e3d8857
80e2ee374357abed4e137a5c2ea775ebf1380b384a96e9482a1e61ad002c7d5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-5.css?ver=1639888685 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 281
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/css/global.css?ver=1639891280
113.23.169.115200 OK 756 B URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/css/global.css?ver=1639891280
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (6697)
Hash 8279d3577a82c8463dfc3cf01541839a
7e502015d5e7b447c9e52fc84628ecccb3cfae8b
23a28162517834a628d34673fd29e47d61c5580d30a2bf7df91cec8eb3672562
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1639891280 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 756
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
113.23.169.115200 OK 286 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
113.23.169.115200 OK 284 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
113.23.169.115200 OK 283 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
113.23.169.115200 OK 4.0 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.8
113.23.169.115200 OK 2.4 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1
113.23.169.115200 OK 3.2 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (9151)
Hash 2310bfbea6b102d98f1e6e5d2daa79cc
ce50a4b987aceea2ea381932bb41400c4909d0fb
8b34f97d2be93eb99e3316cdf266e6b4088e8e7c15d84906bb9263f8d5e3840c
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3238
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1
113.23.169.115200 OK 970 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 155d874ef60217f790dedec58e83d832
42a2698adec25b2000046cf7e3818e6478951fc3
c6801f4d5dcdd86ba3e33dc35a8765c03fd55e9f621443dd0fb7cd8c8e6707da
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 970
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1
113.23.169.115200 OK 899 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.9.1
113.23.169.115200 OK 677 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1
113.23.169.115200 OK 934 B URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (2938), with no line terminators
Hash ef8ddf2830341f13634a12266fa9813f
45c12d8b054261b0597ffdb97ff55f8ab7a913c4
698fbd0089cafb0659518bf2359ce5c990e71c9a543338fdc7b1595ee11ade22
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/themes/twentytwentyone/assets/js/responsive-embeds.js?ver=1.4
113.23.169.115200 OK 483 B URL HTTP/2 kursusbaikiphone.com/wp-content/themes/twentytwentyone/assets/js/responsive-embeds.js?ver=1.4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash faf9832786a16e385ee3039997413a50
b0d6d6ef09501bd453ad82b6439c922662c7f443
948eba814bcd0a656a3f17428fee0fb8af234daddfab942b3943a805349e3049
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/twentytwentyone/assets/js/responsive-embeds.js?ver=1.4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 483
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/facebook-conversion-pixel/pixel-cat.min.js?ver=2.6.6
113.23.169.115200 OK 2.8 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/facebook-conversion-pixel/pixel-cat.min.js?ver=2.6.6
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (11660), with no line terminators
Hash d22613812c7fb208e554f099122513ea
a4883e53506c8125af04c75ae1b4d995c4a2816f
23019af4b7c33bcc2112c469e25bc0b8bed5549ed1ee34b6e48780dc82defd93
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/facebook-conversion-pixel/pixel-cat.min.js?ver=2.6.6 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Fri, 09 Sep 2022 13:13:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2832
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.8
113.23.169.115200 OK 2.0 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (4840)
Hash 9ee67288564b75da5a4e925cfb1bef17
0a223463774347b8e8fc6ec9e40de23f077156c6
2fbaf156cd2fe9e5ce272202990e53f7b05235a896a8545fd53f371c6c732e87
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2011
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
113.23.169.115200 OK 2.9 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.8
113.23.169.115200 OK 1.0 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (2577)
Hash f5c8273175207966436fe071db580974
643680fc9a1703cb3bc469bfbb3dbcbf6425e38a
8b0897055f6baa5de94adb95e824af4afd1dced496711c905c8b7c09738aa4de
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1023
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
113.23.169.115200 OK 3.3 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (10725)
Hash 8c5a95ea30259ea6dc50f9f1357dc31a
be1fd6dc96f6ba018bbfa49a058390700ead5bf0
914c938c132cd311967ed71676397704bf8d95abf2c51c79937f43be35030a70
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/css/post-2.css?ver=1662298784
113.23.169.115200 OK 4.2 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/css/post-2.css?ver=1662298784
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9e1a34ff0ff919717426b40b90d46add
106fe1cf3eccae758f2e506e84614a25eb50c9c3
277b60a2996107f3db443669fd9147d0e1acf7020e9d4db60bd7343ec6b6bb80
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2.css?ver=1662298784 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 13:39:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4163
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
113.23.169.115200 OK 12 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.7
113.23.169.115200 OK 16 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.7
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (18436)
Hash cc2273d1e6eb7685dbec2d621ae381a1
637607326bea238db09c327fa8303912e192cd08
83ada6363a2308ab337cf19f99ef2bab7b00da58d92a2a9c8f15088a9316eec2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.7 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16057
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/businessman-losing-his-money-money-fly-away-like-vector-14161703-1-pu92xcorb39lah32hp3baf69m0nsldv074y4n0ed18.jpg
113.23.169.115200 OK 10 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/businessman-losing-his-money-money-fly-away-like-vector-14161703-1-pu92xcorb39lah32hp3baf69m0nsldv074y4n0ed18.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 389x262, components 3\012- data
Hash fb8e3e1ed7f641e539171399013bbfdc
53a7ea03169f37a793e6f8b65689276fe65b02ca
0e4f34623ce2d1f287e70a04f8b96062f4ebb4d00fa61ef47b36637dc12d3992
GET /wp-content/uploads/elementor/thumbs/businessman-losing-his-money-money-fly-away-like-vector-14161703-1-pu92xcorb39lah32hp3baf69m0nsldv074y4n0ed18.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 10084
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/8-Tips-To-Start-Saving-Money-1-pu92x1ep12u5f5jgbk7sgi0qhe7e10m85l4avov33w.jpg
113.23.169.115200 OK 15 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/8-Tips-To-Start-Saving-Money-1-pu92x1ep12u5f5jgbk7sgi0qhe7e10m85l4avov33w.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 389x262, components 3\012- data
Hash 6079268579acde824d3744ad051d20b5
418eb6bcb6cd97fd1a19f7f41a3d2975a167ff9d
f5a11e89c7aa8444b87d93654aebbf663f7e2eea2063ba8ce15d75c6d987495f
GET /wp-content/uploads/elementor/thumbs/8-Tips-To-Start-Saving-Money-1-pu92x1ep12u5f5jgbk7sgi0qhe7e10m85l4avov33w.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 14605
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.8
113.23.169.115200 OK 16 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (65497)
Hash 9de9c05ea6d529fadd72c8065e584f1c
8bcde11eedda27c6c349a334b4c4bc726faa2cee
fcdc0e3b652ff9dd5a189602efd68ee079baf295c5441ed9859c9a3632152a21
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16496
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
113.23.169.115200 OK 30 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:21:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.8
113.23.169.115200 OK 4.4 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (13963)
Hash 576ca361de3ff1fd062d61f0707eaaee
b8f683035cfc40df94dc6cae078f03310807e259
5b07297f61e3b5b60d14d890303e4ba3dccca1f29b785998e7b09073009188d3
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4369
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
113.23.169.115200 OK 6.8 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:21:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
113.23.169.115200 OK 34 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (65280)
Hash 83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
113.23.169.115200 OK 4.6 kB URL HTTP/2 kursusbaikiphone.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.8
113.23.169.115200 OK 10 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (36590)
Hash 80f20a818e1e2de4cb081ee5cd480760
9b9738b1c27afab25842ffee09771a54e130cf41
429a6696b17195858e68b000cc4804d699935ffd6204cc69d519386a973f9b9b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10312
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.8
113.23.169.115200 OK 8.7 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.8
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (32235)
Hash 90a0487c1dca61b29255bc8d64ecfe54
c9d2cdcc30d886ba467699a7793240a85cd3f79c
eeb1af7425199c7eccff275d995d3ee3f3eef0cc58d38be4a2f1b2b97d159078
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.8 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8742
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/66214571_2413515062228158_5711430347531485184_n-pu9329eisbxjshd4pqc4eguvb8uhmawy5mz3rxpmki.jpg
113.23.169.115200 OK 44 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/66214571_2413515062228158_5711430347531485184_n-pu9329eisbxjshd4pqc4eguvb8uhmawy5mz3rxpmki.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x525, components 3\012- data
Hash 9d4ca2c73702b3b5af1a70933e9b5d8a
ab9d36a8ab2b318b4ff82c2554917d1b19afa945
be2c47bf8ed44cd198fc7e1d049d4b9064b1ed4364fbdc05ffd503a3e2b069cf
GET /wp-content/uploads/elementor/thumbs/66214571_2413515062228158_5711430347531485184_n-pu9329eisbxjshd4pqc4eguvb8uhmawy5mz3rxpmki.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 43903
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/66008232_2413515148894816_1627687966895767552_n-pu92vbdgaefa07gb9q9cz7y9ar2uqtccj9fy4c0b48.jpg
113.23.169.115200 OK 35 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/66008232_2413515148894816_1627687966895767552_n-pu92vbdgaefa07gb9q9cz7y9ar2uqtccj9fy4c0b48.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x340, components 3\012- data
Hash f567a4a836fc25917a74f12d95eabed0
896beac81bc2d1ab8cb35e44fd67ae69ac2ab0c5
4aadfd9ea932ff8dcaf457bec4e0e4350fe658fe26b78e1320517d6a66d7bec5
GET /wp-content/uploads/elementor/thumbs/66008232_2413515148894816_1627687966895767552_n-pu92vbdgaefa07gb9q9cz7y9ar2uqtccj9fy4c0b48.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 35093
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 228588
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Hash 05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:51:10 GMT
expires: Thu, 16 Nov 2023 19:51:10 GMT
cache-control: public, max-age=31536000
age: 225147
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:40:23 GMT
expires: Thu, 16 Nov 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 225794
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 226169
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 245765
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&j=1%3A10.7&blog=203681505&post=2&tz=8&srv=kursusbaikiphone.com&host=kursusbaikiphone.com&ref=&fcp=3251&rand=0.007169916313976676
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A10.7&blog=203681505&post=2&tz=8&srv=kursusbaikiphone.com&host=kursusbaikiphone.com&ref=&fcp=3251&rand=0.007169916313976676
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A10.7&blog=203681505&post=2&tz=8&srv=kursusbaikiphone.com&host=kursusbaikiphone.com&ref=&fcp=3251&rand=0.007169916313976676 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 10:23:37 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c58de690a701dea26333a42815dc3003
91d9e60c285f6578b5d814901a90f52cafbb8790
179d035993138ec5fdb0b2bf1987888f751903e959af09e335ada210be842ca6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kursusbaikiphone.com/wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4
113.23.169.115200 OK 962 B URL HTTP/2 kursusbaikiphone.com/wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash f995de76ac47fdf4f7d3f0fc15a60aa3
70114f62052bb22de910c9ba5877f1682d7f0f11
3a4a67744f54e54d45004b8e0e571d29f2e7168236f2d7ce44c9ff0208d60a88
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 962
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/Image-pu92ueh3n768pus3lu1f1y94i9l09epqqqlybnd7qq.jpg
113.23.169.115200 OK 71 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/Image-pu92ueh3n768pus3lu1f1y94i9l09epqqqlybnd7qq.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x933, components 3\012- data
Hash 996490dc48b047f071c88ea8280937be
56abc8dabc60dd98e1a533d63383b7e72ee7e693
9cab24f2c220380399c56a4a3ff15ac177cbc925a0f598e0727ffbbacb7790e4
GET /wp-content/uploads/elementor/thumbs/Image-pu92ueh3n768pus3lu1f1y94i9l09epqqqlybnd7qq.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 71276
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/RainingMoneyWindfall-pu92tdte8ns2529cjw6yupi5c8lox7o7lp60luvgvo.jpg
113.23.169.115200 OK 57 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/RainingMoneyWindfall-pu92tdte8ns2529cjw6yupi5c8lox7o7lp60luvgvo.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x466, components 3\012- data
Hash 22503cc4c8de8522259111c1e2418b9b
a8008da75ed8452f6b78d911c035bce3618bef7f
ac34b0fb6db016336066a54db15d8b22762afc6b041289670e6486693366a5d8
GET /wp-content/uploads/elementor/thumbs/RainingMoneyWindfall-pu92tdte8ns2529cjw6yupi5c8lox7o7lp60luvgvo.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 57138
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/1111-pu92t2jbyncm9qpqdrbg0scm7m5acuffk5c6ujc6e2.jpg
113.23.169.115200 OK 40 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/1111-pu92t2jbyncm9qpqdrbg0scm7m5acuffk5c6ujc6e2.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x393, components 3\012- data
Hash e5bc10606d83cc9c7c3e0a0bdc5e2e67
1fa459f3bd96392f9e6317bf95a2a3bc32c1cbae
0013704e7c98d38e7e330ef07617d5a4e1b57507f4309df2460ca4a347ff5adc
GET /wp-content/uploads/elementor/thumbs/1111-pu92t2jbyncm9qpqdrbg0scm7m5acuffk5c6ujc6e2.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 39598
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/maxresdefault-pu92st4y2azr1n3dwn96buq09rfm7ve46utc1rq3ku.jpg
113.23.169.115200 OK 43 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/maxresdefault-pu92st4y2azr1n3dwn96buq09rfm7ve46utc1rq3ku.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x323, components 3\012- data
Hash a86dc90fa249b73086525ea1d1de5341
9ce51b852dff2c13aa08bbb083b4735b68480e80
eace912e0fae6df6f8ab9bcfe8ac78ce417eca6286fd44a1fe3b03f4c9a485cd
GET /wp-content/uploads/elementor/thumbs/maxresdefault-pu92st4y2azr1n3dwn96buq09rfm7ve46utc1rq3ku.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 43405
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/Image-2-1-pu92u52pqutdhr5r4pz5d0mikevc4fofdg33ivr5gy.jpg
113.23.169.115200 OK 68 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/Image-2-1-pu92u52pqutdhr5r4pz5d0mikevc4fofdg33ivr5gy.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x933, components 3\012- data
Hash bede3af49e1541475bfa7b93677646f2
1dd16aaa652939300c51cb242fb5aff139e4b49d
843f3807a5a548b805c238580f59c23dd0f0ab8295a202319047a5828e091c91
GET /wp-content/uploads/elementor/thumbs/Image-2-1-pu92u52pqutdhr5r4pz5d0mikevc4fofdg33ivr5gy.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 67859
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
113.23.169.115200 OK 78 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:35 GMT
content-type: font/woff2
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-length: 78196
date: Sat, 19 Nov 2022 10:23:35 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
113.23.169.115200 OK 77 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:35 GMT
content-type: font/woff2
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-length: 76764
date: Sat, 19 Nov 2022 10:23:35 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1
113.23.169.115200 OK 1.1 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type ASCII text, with very long lines (7043), with no line terminators
Hash 398489038b789364a5c83f044e11974d
d5caf5f64c45693de65b5c0a801bfbf83a325485
32365dde0c909abbb02d8b6a8d9938056ba47f325d51e75082e3d265ce5f76d5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=5.9.1 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:35 GMT
content-type: text/css
last-modified: Sun, 04 Sep 2022 04:23:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1058
date: Sat, 19 Nov 2022 10:23:35 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/?wc-ajax=get_refreshed_fragments
113.23.169.115200 OK 123 B URL HTTP/2 kursusbaikiphone.com/?wc-ajax=get_refreshed_fragments
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JSON data\012- , ASCII text, with no line terminators
Hash fdb266fa2604b9db35fa5a5d7d7f264d
77e89a47a7ae9286d5e49bf52416c8aa2a7d2f5e
3023157c2365fa35484c1485774d63e6335fd3da9b488dd2ebcff3f21f9a657c
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://kursusbaikiphone.com
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://kursusbaikiphone.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 123
content-encoding: br
vary: Accept-Encoding
date: Sat, 19 Nov 2022 10:23:35 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/111_2-1-pu92sgx1lgj0upl4vzz0xft0jr3uft1lt6c0t688d6.jpg
113.23.169.115200 OK 64 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/elementor/thumbs/111_2-1-pu92sgx1lgj0upl4vzz0xft0jr3uft1lt6c0t688d6.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 700x393, components 3\012- data
Hash 951b291c448c64c151e9a142ff178555
f2d73af51a5944cd56dc8f20572f3558ace8653e
b5f571225d6b6cdcfa76f292016017f25f5b5aa5ae15d2fdca42697c2d3f58c7
GET /wp-content/uploads/elementor/thumbs/111_2-1-pu92sgx1lgj0upl4vzz0xft0jr3uft1lt6c0t688d6.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:54:40 GMT
accept-ranges: bytes
content-length: 64212
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
113.23.169.115200 OK 13 kB URL HTTP/2 kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kursusbaikiphone.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:36 GMT
content-type: font/woff2
last-modified: Sun, 04 Sep 2022 04:23:19 GMT
accept-ranges: bytes
content-length: 13276
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/09/Image-1-2.jpg
113.23.169.115200 OK 42 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/09/Image-1-2.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x445, components 3\012- data
Hash e2f9032e5c38197fbfe5e5c5711f6dda
9425280e8c8d20a5f48596caa0f10074d5ad3726
1404aeda3f252c17d7a974aeb18f905d710a2e57bc2c34c36e536fbd333d9798
GET /wp-content/uploads/2022/09/Image-1-2.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:36 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 05:02:08 GMT
accept-ranges: bytes
content-length: 41692
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2021/12/68779683_2439012093011788_8882552951554441216_n-1-768x576.jpg
113.23.169.115200 OK 80 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2021/12/68779683_2439012093011788_8882552951554441216_n-1-768x576.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x576, components 3\012- data
Hash 2c52b7289ceae4062e47b89a2200f135
1b86b5fda1886a9d3f9f76c21066e30016127c13
8dc7be80c9ca67df61f6b2760d37696d75443e0387dc744737292cf58e4afd89
GET /wp-content/uploads/2021/12/68779683_2439012093011788_8882552951554441216_n-1-768x576.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:36 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:44:57 GMT
accept-ranges: bytes
content-length: 80500
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2021/12/50762649_2310028035910195_4248376053413707776_n-768x576.jpg
113.23.169.115200 OK 68 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2021/12/50762649_2310028035910195_4248376053413707776_n-768x576.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x576, components 3\012- data
Hash 9fd0fd488663073cdbe856dadea1c798
c40f80da6976de35864d905550d779de1014a1cf
0f676b0e4e27467906939c8c9a05be343e88f33219ab4a05c09f903a119ba45d
GET /wp-content/uploads/2021/12/50762649_2310028035910195_4248376053413707776_n-768x576.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:36 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:44:26 GMT
accept-ranges: bytes
content-length: 67572
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2021/12/66294441_2413514835561514_2659186738840207360_n-768x576.jpg
113.23.169.115200 OK 74 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2021/12/66294441_2413514835561514_2659186738840207360_n-768x576.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x576, components 3\012- data
Hash 1ce01daa1c2394072472fd217f151412
ffd9ef55399fb8edfdc8c2f7ede29311a959a517
1ca262cbefa38d4598a57d6717f53df3a023384eb7dd71d93a2969ac72fbf253
GET /wp-content/uploads/2021/12/66294441_2413514835561514_2659186738840207360_n-768x576.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:36 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:45:11 GMT
accept-ranges: bytes
content-length: 73500
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2021/12/234088671_3033198853593106_5721843593555978628_n-938x1024-1.jpg
113.23.169.115200 OK 145 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2021/12/234088671_3033198853593106_5721843593555978628_n-938x1024-1.jpg
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 938x1024, components 3\012- data
Size 145 kB (144808 bytes)
Hash 6a09cf0257c5659ce335005f61a53391
465dc4bdc820986b69467e7e89a6455c5a0687a2
d8ddf618aa8aab8e10fb69169b65d13f3a0cd991a1ae4bacd9515dafa9b44938
GET /wp-content/uploads/2021/12/234088671_3033198853593106_5721843593555978628_n-938x1024-1.jpg HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/jpeg
last-modified: Sun, 04 Sep 2022 04:47:59 GMT
accept-ranges: bytes
content-length: 144808
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a5ddbe8f6f5abe924fc9060d630e3b
8f3f1cf4e9d6ba3176b25c2caf9ea958d1694d0a
b426d43bef89fa91dada624d5334111b77f284f1c4a49af081814e00106410a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2329
Cache-Control: max-age=128055
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:40 GMT
Etag: "6377f6ca-1d7"
Expires: Sun, 20 Nov 2022 21:57:55 GMT
Last-Modified: Fri, 18 Nov 2022 21:19:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: wvcr0DRal0ewQdECKlOtLHzmedjCY0wgI2jDn311eImy8Mn1T7EeC9hWQzrFe/9PGl+6d+e2ozorIr37K+6z9A==
content-length: 27340
x-fb-trip-id: 2050670934
date: Sat, 19 Nov 2022 10:23:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a5ddbe8f6f5abe924fc9060d630e3b
8f3f1cf4e9d6ba3176b25c2caf9ea958d1694d0a
b426d43bef89fa91dada624d5334111b77f284f1c4a49af081814e00106410a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2329
Cache-Control: max-age=128055
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 10:23:40 GMT
Etag: "6377f6ca-1d7"
Expires: Sun, 20 Nov 2022 21:57:55 GMT
Last-Modified: Fri, 18 Nov 2022 21:19:06 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
kursusbaikiphone.com/favicon.ico
113.23.169.115404 Not Found 708 B URL HTTP/2 kursusbaikiphone.com/favicon.ico
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /favicon.ico HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; pixelcat_id=ba06301a16
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Sat, 19 Nov 2022 10:23:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New-1-1.png
113.23.169.115200 OK 242 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New-1-1.png
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type PNG image data, 1052 x 572, 8-bit colormap, non-interlaced\012- data
Size 242 kB (241512 bytes)
Hash ebb8843d09c3d18841b2cd7bf0e41372
4a6260884244c508aab4b9afa7769101d9031138
9d314951bfdd8d7b410df9b318487fb96161aae0f406e10be20e1a1caafcf317
GET /wp-content/uploads/2022/09/Untitled-1-New-1-1.png HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 13:26:05 GMT
accept-ranges: bytes
content-length: 241512
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/03/PMATRA1.mp4
113.23.169.115206 Partial Content 3.8 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/03/PMATRA1.mp4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Hash 9a2540aa64dc48c7d7cf9a3d58a557d3
3b3432f0bea651f756ec11cbfa8b8ed933cd10b3
f314a160f0f486804005372591f94d311700dc5e2844d26c3286022694861c1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/03/PMATRA1.mp4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=2621440-
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; pixelcat_id=ba06301a16
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
content-range: bytes 2621440-2625234/2625235
content-length: 3795
date: Sat, 19 Nov 2022 10:23:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=668695980764211&ev=PageView&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419212&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=41c5982910&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=668695980764211&ev=PageView&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419212&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=41c5982910&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=668695980764211&ev=PageView&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419212&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=41c5982910&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 19 Nov 2022 10:23:41 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=668695980764211&ev=ViewContent&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419216&cd[content_name]=Utama&cd[content_type]=product&cd[content_ids]=2&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=37d1efd13e&rqm=GET
31.13.72.36200 OK 86 kB URL HTTP/2 www.facebook.com/tr/?id=668695980764211&ev=ViewContent&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419216&cd[content_name]=Utama&cd[content_type]=product&cd[content_ids]=2&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=37d1efd13e&rqm=GET
IP 31.13.72.36:0
File type gzip compressed data, from Unix\012- data
Hash ab579ba43fc692a1518673cbe96e391a
b0ec46c4bb476cdcacd43798960411acc16db5b0
222de5fa140d16002ec688d9c261dfd2193e04c41d31edbb887adb0f3da8f06d
GET /tr/?id=668695980764211&ev=ViewContent&dl=https%3A%2F%2Fkursusbaikiphone.com%2F&rl=&if=false&ts=1668853419216&cd[content_name]=Utama&cd[content_type]=product&cd[content_ids]=2&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1668853419211.49216177&it=1668853418505&coo=false&eid=37d1efd13e&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 19 Nov 2022 10:23:41 GMT
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New-2.png
113.23.169.115200 OK 592 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New-2.png
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type PNG image data, 1047 x 585, 8-bit/color RGB, non-interlaced\012- data
Size 592 kB (591552 bytes)
Hash ddc87d780c93a6c357b89c3811c64c30
ad9af7c715d0bb8a748c973b9542776346ebd85b
1b2c88a5ff76dc505919ad5f6bf6d117e5f12b63a2cb799b040de7eb906ec55d
GET /wp-content/uploads/2022/09/Untitled-1-New-2.png HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 13:30:14 GMT
accept-ranges: bytes
content-length: 591552
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New.png
113.23.169.115200 OK 680 kB URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/09/Untitled-1-New.png
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
File type PNG image data, 1045 x 583, 8-bit/color RGB, non-interlaced\012- data
Size 680 kB (679693 bytes)
Hash 723f1076ac835f6fdf34bb3e826b533a
575d7b65766290c5783f29fc4b06dcd46457d274
32a57cf2b6a5532a9e7229c60fb4ac35839a3129f1564998fffd14c7705c59f8
GET /wp-content/uploads/2022/09/Untitled-1-New.png HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 26 Nov 2022 10:23:34 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 13:30:47 GMT
accept-ranges: bytes
content-length: 679693
date: Sat, 19 Nov 2022 10:23:34 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
stats.wp.com/s-202246.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202246.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 10:23:36 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-2494"
content-encoding: br
expires: Mon, 13 Nov 2023 23:50:14 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
stats.wp.com/e-202246.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202246.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 10:23:36 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Sun, 05 Nov 2023 21:02:58 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/03/PMATRA1.mp4
113.23.169.115206 Partial Content 0 B URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/03/PMATRA1.mp4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/03/PMATRA1.mp4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
content-range: bytes 0-2625234/2625235
content-length: 2625235
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook_2.mp4
113.23.169.115206 Partial Content 0 B URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook_2.mp4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook_2.mp4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
content-range: bytes 0-1174901/1174902
content-length: 1174902
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kursusbaikiphone.com/wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook.mp4
113.23.169.115206 Partial Content 0 B URL HTTP/2 kursusbaikiphone.com/wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook.mp4
IP 113.23.169.115:0
ASN #38182 Extreme Broadband - Total Broadband Experience
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/03/20-PMA-Training-Kursus-Membaiki-Handphone-Telefon-Smartphone-Facebook.mp4 HTTP/1.1
Host: kursusbaikiphone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://kursusbaikiphone.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 04 Sep 2022 04:23:21 GMT
content-range: bytes 0-1173335/1173336
content-length: 1173336
date: Sat, 19 Nov 2022 10:23:36 GMT
server: LiteSpeed
X-Firefox-Spdy: h2