r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9005
Expires: Sat, 21 Jan 2023 06:14:38 GMT
Date: Sat, 21 Jan 2023 03:44:33 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19827
Expires: Sat, 21 Jan 2023 09:15:00 GMT
Date: Sat, 21 Jan 2023 03:44:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 02:49:35 GMT
content-type: application/json
age: 3298
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6957
Expires: Sat, 21 Jan 2023 05:40:30 GMT
Date: Sat, 21 Jan 2023 03:44:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 45z83rJhIOLrO4ctzAuESMkaBRNZNhMJU+pcezA7iA4IQzszMF9iPKc0C5EutrsBM2FfT9NYSp8=
x-amz-request-id: 63R69N6A0SSG2Y1Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 02:46:37 GMT
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
age: 3476
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
aspphami-dki.or.id/category/pelatihan-fumigasi
103.112.245.8301 Moved Permanently 262 B URL HTTP/1.1 aspphami-dki.or.id/category/pelatihan-fumigasi
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 38785747d59591dba97a79d669ae2a10
076858d19b32e387a6f557a64949ba48520f9831
2200c0bbf72117ba28d5f173f4d0a71b0457def310e58041904ff379158e3471
Analyzer Verdict Alert fortinet Malware
GET /category/pelatihan-fumigasi HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 21 Jan 2023 03:44:32 GMT
Server: Apache
Location: https://aspphami-dki.or.id/category/pelatihan-fumigasi
Content-Length: 262
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:33 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 02:48:58 GMT
age: 3335
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2391
Cache-Control: max-age=108133
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:33 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 09:46:46 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.136.21101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.136.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CEW83FS29NkacAM/SXd2DQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rWoRuM6+Vs0uxe1YtdCUSqksEh4=
aspphami-dki.or.id/category/pelatihan-fumigasi
103.112.245.8301 Moved Permanently 1 B URL HTTP/2 aspphami-dki.or.id/category/pelatihan-fumigasi
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Malware
GET /category/pelatihan-fumigasi HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
x-redirect-by: WordPress
location: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Sat, 21 Jan 2023 03:44:32 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 21 Jan 2023 05:33:31 GMT
Date: Sat, 21 Jan 2023 03:44:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 21 Jan 2023 05:33:31 GMT
Date: Sat, 21 Jan 2023 03:44:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 21 Jan 2023 05:33:31 GMT
Date: Sat, 21 Jan 2023 03:44:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 21 Jan 2023 05:33:31 GMT
Date: Sat, 21 Jan 2023 03:44:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa786854fde0d99189b458067b9d9418
ddf0fb650816b969d53d6e32ae31074bcb7e944e
a3d08b87658f756aa2f9e3072e87d52db30884aa6b6ab0cd8b278d0c870db2b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7000
x-amzn-requestid: 05354e13-330d-40fc-9a96-ac345cfc80f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BN9HBgoAMF9Iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648bf-146e89a423565a04139b19cb;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JPr1Q54hGh5TxVRUTIHXPEviHADCGwqbU5WDd7B4JubG6ZiRG1Yr4Q==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:28:09 GMT
age: 72986
etag: "ddf0fb650816b969d53d6e32ae31074bcb7e944e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62d64384cabb3ee773d9baa88c9fa9f5
3457882213a7c2d2ec863d75cf629ae4fe320092
7adc5cd3cc8a30b5c45c2995b27daf66fcf95280a4f5feaa46e559da464c75be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7616632f-cfb4-4f45-819d-1970213c1ca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9669
x-amzn-requestid: d57517dd-07b7-4477-996d-5cb159f1e608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: euIvoHVNIAMFVWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c254ca-2737608463cd6cd160497e42;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: q29sVPPuKPCG6Q6jhlrnm79kQvNCAC2u36O1eNorlq8sGf7WoZYRRw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 23:33:45 GMT
age: 15050
etag: "3457882213a7c2d2ec863d75cf629ae4fe320092"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: reROJ7ha0LKGWpSMN0ioNVaIrIEhJUn_cfprHVZlfyY7jBoFyKh0rw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 13:48:55 GMT
age: 50140
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654005dd-cd6a-4a04-b168-4c2239479f83.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654005dd-cd6a-4a04-b168-4c2239479f83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee9f8965bd2eae2b0ab84d997e664afa
3a2f924c246c2db895b212f090bb375bc3b0b092
c54abbee41ddb46ea14e510d3415a85af33571decd8bc8685010857c25413b08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654005dd-cd6a-4a04-b168-4c2239479f83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8849
x-amzn-requestid: b9c4f018-2ad0-4543-a025-be2411d88b96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etku7EB3IAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21b2c-458b9242251b6bc732cd76b2;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:02:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6islbbVfQZ6U66hNq_ZrLSFVKNqlFnLukjr3StdFxgCZbHW-tQSQxg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:39:27 GMT
age: 21908
etag: "3a2f924c246c2db895b212f090bb375bc3b0b092"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 01:38:03 GMT
age: 7592
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41ea0ab0-72b5-48ab-bfa9-a8e3f3f697f2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41ea0ab0-72b5-48ab-bfa9-a8e3f3f697f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6998f6989fd7450ea8d40f3411d55191
940672209276359a6466efc57dc1e6702e5d4cd6
359a2354f4b3f267c0ec57b8b1252a33bcf706c3cd79691881a2a2f3c3f490b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41ea0ab0-72b5-48ab-bfa9-a8e3f3f697f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12777
x-amzn-requestid: 2cd1d44c-a8f2-4086-a1e6-ba3c673bd042
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnDEXEIAMFsPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-15994f282b9440572e9fb46e;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dVWflMkN5jCfbHxGp6N52xNS_xPr-t7x94vPSszYQlaF0gdCkf2buA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 06:33:49 GMT
age: 76246
etag: "940672209276359a6466efc57dc1e6702e5d4cd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bccd1fe14275d3bb56418297e502cd10
cdf19d2a4099ada369589fc7aa7021f9b30302aa
801e8b57b77806d98fe23b8421a8fdba9f1138827cc320cb5dcc986161aa7ca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=310%2C165&ssl=1
192.0.77.2200 OK 7.4 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 098561d383f72e4445b78df684113d95
755a8d5e5d9fe2f8d13894bd4ad79ca29290a43c
3c6275138a514c77c7304e93e289e8979341dfef9462c16cf9419928eced13ee
GET /aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:36 GMT
content-type: image/webp
content-length: 7360
last-modified: Wed, 18 Jan 2023 03:07:33 GMT
expires: Fri, 17 Jan 2025 15:07:33 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2022/07/WhatsApp-Image-2022-07-07-at-09.33.48.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "f72a3e480bbe620b"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-156598198-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-156598198-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 5eb0b2ca1a1e7ecf0c5a17ab5be50c88
97aeb3a72b1a6ef92a9fbdb54ef3a27c4e89049b
18f7a6a422bfa4483846060c81ad8910cec0ed5bb7b75154f6049bab01866950
GET /gtag/js?id=UA-156598198-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 21 Jan 2023 03:44:36 GMT
expires: Sat, 21 Jan 2023 03:44:36 GMT
cache-control: private, max-age=900
last-modified: Sat, 21 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44065
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/category/pelatihan-fumigasi/
103.112.245.8200 OK 15 kB URL HTTP/2 aspphami-dki.or.id/category/pelatihan-fumigasi/
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 3a34acb61397bd65545be7fde54a88aa
26d8831912b3055979c9f1cbbe6ba0de588ea972
54258e71c749ecb6b8fec371707afdc22c5c7336e38e2e3c4149a2cf1ae53e50
Analyzer Verdict Alert fortinet Malware
GET /category/pelatihan-fumigasi/ HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
link: <https://aspphami-dki.or.id/wp-json/>; rel="https://api.w.org/", <https://aspphami-dki.or.id/wp-json/wp/v2/categories/141>; rel="alternate"; type="application/json"
vary: Accept-Encoding
content-encoding: br
content-length: 15064
content-type: text/html; charset=UTF-8
date: Sat, 21 Jan 2023 03:44:33 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
142.250.74.74200 OK 776 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Sans%3Aregular%2C700
IP 142.250.74.74:0
Hash 7c3c0f9b45ec554ddaade89fbd8dd05a
dc26f2251660068f469eee2a1428a82d0a26cae7
2f29bec803d5695dd6dc1e67096b9b160992c97277f1c2013d38a4c94b0b73ea
GET /css?family=Droid+Sans%3Aregular%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 03:44:36 GMT
date: Sat, 21 Jan 2023 03:44:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
103.112.245.8200 OK 982 B URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (4186), with no line terminators
Hash a43bf1705482324d06adb5d2b644a1a2
599069728988582dee8e5ec6a4a4b37c931adb96
78ae77841e94a99977ad8f5d7e7d6757ddf5b6e4da5b66ee6029ec39be4e2204
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 Dec 2019 03:16:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 982
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
103.112.245.8200 OK 870 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 6e1861555b0cc8895850f17c5b68b361
9f6efdec40c3b2ed701b188d2373947617c93430
b7f19ee462c0657acde75e1e2230913b5baa2b101a1a3c49b48d08b1a8a6bcd2
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 870
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
103.112.245.8200 OK 5.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/instanow/assets/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (446), with CRLF line terminators
Hash 9e633602430a663f8926961867113857
b6cf5032ef6298fc65f80dd12b400f8df0a0209c
bc88243f60f54ce421990014ea88164f08706ccc921a2f52a0c7f5fb622a090c
GET /wp-content/plugins/instanow/assets/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Dec 2016 02:31:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5013
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
103.112.245.8200 OK 789 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 2e74e7d05f5c8bdbf544b9b73fe6c887
9c200d7eab4781440a5e644344db58d2d2848f76
6f69ba3b2c3665833fc4675b4aca695ace2ec28bc952522133488d087a462948
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 789
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1d6e4a77fd29a54c63cacf31066fe58e
270a454d2b87b294ddbdb6594d491c7dda637363
46879cca8816e1802c35e96fb5d7d28519994fd9ae41a7b94299057e3f8c7f79
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2397
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
103.112.245.8200 OK 3.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/css/global.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 4a059b9209f7a198387e0a8dc32ffb97
cc11280a0b39cbdaaf823ef484ae132fc402ed42
70d70d0c99dc35188661c8d1c2a4809b7a5ebe63b99f99b864843ca3ee18d4d0
GET /wp-content/plugins/photo-gallery/booster/assets/css/global.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3211
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
103.112.245.8200 OK 1.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/sumoselect.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (7609)
Hash 33ae2e7fc9cebb668a16d69092d392d8
ad12ad8658c221f932d53063c6028bf2eeaaae83
a1ec326b7faed25b94c819aff4fe7cc60cffa81147e3faf7f3d957d411bb0486
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1900
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 34a6ffa8918b00f3f6d21bd90db799f4
6573697e6488b07ba3551ca7fea9b89220494b3a
dff7862c0cfa5ae27f6e8daef94bf0cd05000b667dbabd62a673ec0354e4873b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
142.250.74.132200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 942e8eb47732ffd74066986cbbc508fc
7f9062fc97188998861be64c6b2091511d59a9d4
47b3f08b9c7d8e0a22af72f4958a62960180651c4847095011f16f68ad40db43
GET /recaptcha/api.js?render=6LcuRsoUAAAAAAZb1P0rkX-DlJE2X2mIJJsKV5kj HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 21 Jan 2023 03:44:37 GMT
date: Sat, 21 Jan 2023 03:44:37 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
199.232.198.2200 OK 907 kB URL HTTP/2 media1.giphy.com/media/cMEJTMtj9j1QITc4nx/giphy.gif
IP 199.232.198.2:0
File type GIF image data, version 89a, 480 x 270\012- data
Size 907 kB (906802 bytes)
Hash 7e82a0d678f579e0ac6b48f0214971dd
9a5fab39b50c6f8ee6cde9824c601326811fe5bd
b9b0c1c6528a199af3da52c4ddca0a71639bc77a9f2e085bfb38447833878a45
GET /media/cMEJTMtj9j1QITc4nx/giphy.gif HTTP/1.1
Host: media1.giphy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 02 Dec 2019 14:21:42 GMT
etag: "7e82a0d678f579e0ac6b48f0214971dd"
content-type: image/gif
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sat, 21 Jan 2023 03:44:37 GMT
age: 344893
x-served-by: cache-iad-kcgs7200034-IAD, cache-bma1651-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1674272677.024801,VS0,VE1
strict-transport-security: max-age=15465600
cache-control: max-age=86400
content-length: 906802
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/css/dist/block-library/style.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 10912
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9046bdd3634f2cfb8ace7c326c4af05f
d92d1610bbcc211f0648ec87b5aee6a562f606db
eea88fe2aaabd085058e3cf139e8780e1ddeff62e4fb94d6eeabe512a309d8ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (42839), with no line terminators
Hash 72f91a39c592f153826943c0c812f844
7ab17a04ea2c455f85db2e016ebc57ba706074c8
726d33d3d04e52f2eba62692c6e4f38e93d54f4e53e365b586c26f1adbd0f8a3
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3812
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
103.112.245.8200 OK 6.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/css/styles.min.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (45071), with no line terminators
Hash b49a55a386006a5b4f82d6d38dfeaf1c
e00c77f12015e197d9e45bb9de9c693400dc1a94
36f532fd3f6ee61ff393a264bdd97306f82c08e64b9087a99fec2afdde0c1db9
GET /wp-content/plugins/photo-gallery/css/styles.min.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6773
content-type: text/css
date: Sat, 21 Jan 2023 03:44:35 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
103.112.245.8200 OK 315 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/photon/photon.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (685), with no line terminators
Hash 90b6ed98e867cd14bff93b31e7f0af82
cc2162190788e5d8579eb5844f8ef1f12fe2a69a
8ccc3f277c5d05f7e8aa933156fcf66282133edd7e47d3774d68366bfd4a2a99
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/photon/photon.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 315
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
103.112.245.8200 OK 2.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/global.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 62fd26ba0f3afd2f29fd8598809c007f
f4143b66e46d558cdb3ece8abbe45774969078c8
0275052289528e4521ca57360ac80c02e85fd50fb9492c21dfce1c8a8407c5a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/global.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2294
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
103.112.245.8200 OK 4.3 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
Hash 97c883c677574fa42cadf2fb5dc9ec8e
59d87b563be66e52a60de3f546e71fd13a268867
8011dda8c4364bc94801cd6fb8d01e26c399ba9455e7bdf7397bbe3653ccdb07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/booster/assets/js/circle-progress.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4254
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
103.112.245.8200 OK 4.0 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery-migrate.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Jan 2021 04:34:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3998
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
103.112.245.8200 OK 518 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 021741aa747d0db9d753f32961540b95
eb447414c4f94fbea94bfb31d5e9c8f3288956c1
a2ac6f3cfa2026b19afb6862bc5802968c2b3a49c29cf5024469208524ac7962
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/9.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 518
content-type: image/gif
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
103.112.245.8200 OK 502 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 66df1809892b38c8a174c0519603a123
1b338320ff6f8a3cc6d29e25c050ac83c008b469
4b0dbfb22a8a76f9e2c22e90c3c4421cde7162ae85cdd31d8158380eace939b4
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/1.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 502
content-type: image/gif
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 333edf623cd4e8fc45019e8bcb808dfc
92971051833dda021e183d034929a3183ad00815
a43bcc3e490158ad2afefe405d315169d3ea6688ce7a054de33c9cd786c0925e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/8.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
103.112.245.8200 OK 399 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 895ac18afe3f1131c4c20aa6c8f30b79
ade54f548b21ffaaac4d31acd0ee1bbf044757bc
e27bf21a7727b4ed8780b743a7ef0021b5c378ae3c6f1e5d920cbcb8f13aeb7f
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcyear.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 399
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
103.112.245.8200 OK 617 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ff2099d576b1be945c004603978a74e6
3c931f15a21f981cb075faef1521db0ac8f6681a
d0e2093c728340a03f4b352b75ddb1dd92ea1b4029e6d317a5608c3abd61518a
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvcvisit.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 617
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
103.112.245.8200 OK 432 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d0a4de6c6ec8b1e0af3a869e6326b92
b9887a6963d5374f192e4c7ba57d1bf47f793e8e
d3282d528c0ad954cc592f0f2101db95c2df821b7d963c225b51c2666c55e029
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctoday.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 432
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
103.112.245.8200 OK 529 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 44f111e1c5932ca8e8146974739d1ed3
5602a46739f5450ee5ca0110c3fa12ec46affa08
c3854d2adc094760108453dbec7c3fcb2b315e5cc46da9bfbab2901882c358a5
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotalhits.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 529
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
103.112.245.8200 OK 196 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/css/default.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 573c3f5acc1e799e59c6a9895cf2d84f
f6bf177d896025c716535154f239ef2f7acc8802
47c06ad2fbb3b5d7c389c5b2439b8f35a718d0ad5e251603b84fff8410701302
GET /wp-content/plugins/mechanic-visitor-counter/styles/css/default.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 196
content-type: text/css
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
103.112.245.8200 OK 1.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash 6bb522141185cacc5528778100681577
77cc2f1066c18b91fabb17d0c38fa6d06b923853
155871907ba4d22e117d839d7130e9ce47717ada12e094f9b24627ed41a23469
GET /wp-content/themes/sahifa/css/ilightbox/dark-skin/skin.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Oct 2013 13:21:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1196
content-type: text/css
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
103.112.245.8200 OK 440 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/modules/recaptcha/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (999), with no line terminators
Hash 7e0636eac344bd243faab84faf0c2e75
37644038940d000ba9496f5356cab0d71a760efc
bce5b2a964a77c6304d49f6dee21d34ab96d6856239fdc08a0bac6cf998380d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 440
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
103.112.245.8200 OK 2.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 14c0c8f6e08d1adef360e265482a157f
a27ef5bacbac54593bd9ba068862a4f6def26780
6a8feab74d7a9f9b0022d7bff80eaaf9c17b8fdfcadfc3ba347d10e8ce7618d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2020
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
103.112.245.8200 OK 2.4 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6475), with no line terminators
Hash fd9569e5d4d99499e7712f61cd673089
96c465e0479831743968bdd243bd3bcbfaaa6e44
ea064fac3384ce935085b6a08a0b5379be3b747b3ce9ea87b6c9d41d1cd93f02
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2362
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
103.112.245.8200 OK 2.2 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (6875), with no line terminators
Hash f2bd7e399895d013c4e93845c0be19b9
a1fe0841205b550a4d41ae88bb92cc2e6bf9b76b
16db98ffe8ef5a8110299b5751ec58f377e6e420622d39f507f3c1f6c92a3fd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 04:21:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2220
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
103.112.245.8200 OK 3.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 40b936bde2f3a58b2499ab9a1c7ccdfd
2bc9295868aa1c9947cd31af26fdb340b020952c
9ed392f0abb8511f0bbb4b7c6ca5e44b3ba4ef5384a92cd5fb4dbfc58aec909a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3834
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
103.112.245.8200 OK 2.9 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/contact-form-7/includes/swv/js/index.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7798717735ba8ccb8b11a9650e81f6e6
84c6a9d5d32905b98960d9dc9d111e48d486d311
fd6d9e22b1d26c2e6974198e43fd5aeb1ac03bab50c5bfcc7e12f07c74ec98fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Dec 2022 17:48:07 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2909
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
103.112.245.8200 OK 7.6 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (1518)
Hash 29fa40a22a17ec4ad3662699ca8a9e35
49eb53ec8441e7825ebf15bcde0cbd398b500054
c1f54649d3329ed21e8ddf95b0524654ec046704570abdec442268714c567455
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7553
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
103.112.245.8200 OK 3.4 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/search.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with CRLF line terminators
Hash c833e5d89f100bde8eff1946939061cb
220065fd9ca877811822887ddf476417ace3bc2c
e894dad546a9605e4a6a644e47b87ef7c0439a6a1695cba4672fa29342d50411
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/search.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Jan 2015 17:13:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3394
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
103.112.245.8200 OK 8.8 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type HTML document, ASCII text, with very long lines (25075)
Hash 21504d4151d84f4a776fca56a5caa442
a41463e5b623972952077f1cf602374e67621520
3eaa4b5f64cee76d631e4b0990294a8bc5af448139628485c4fde96f50f61b13
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8763
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
103.112.245.8200 OK 4.6 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/wp-emoji-release.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
103.112.245.8200 OK 11 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (32561)
Hash 57815a83614a2848f4882e6e9e6e5aa3
ef2a56c0dc73bb65cd055a97e3a684d7778aa334
f41bc0a2cf64594c4320a4444959b41a63827e2dee943c2fc08d6f58fcdc4612
GET /wp-content/plugins/wp-whatsapp-chat/build/frontend/css/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 04:21:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11306
content-type: text/css
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
103.112.245.8200 OK 12 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (32001)
Hash 3d483cdd677f67a09bd1508ee6d5d64f
2b35746e32b7cf2069f44e793b2303bed89b2f84
1cb39659ec11d6300d173c5a50150364c69fd1eca4d3641d1f5ba770e0a81d02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12374
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
103.112.245.8200 OK 6.9 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 4a34d3eeefdfb2b1a548f75ecb99db19
a8f92fe0c33c92570728caf600747febfe2c606f
17c9f16c33e87b7d28f051b238b2142c3cde1de2660e1cbe0942c4f4c524e9c4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Jul 2022 02:55:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6896
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
103.112.245.8200 OK 7.1 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (24374), with no line terminators
Hash bcb3e6b0ef3c83d1a8e4ba9d7c9c5c40
de7686b62e21759c21e5a7c6c96731a55ca5b944
15acca9f4358ba1d2e6aa3cc99ca6cd721fa891bb4ab550359cf748fee500828
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/_inc/build/carousel/jetpack-carousel.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7093
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
103.112.245.8200 OK 16 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/jetpack/css/jetpack.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash cb96571a8a4b67fb4bf268234f5bf318
fec4550ca7eda671380162fc5615c0ab4fbee476
277aea95c9efacab03cae9176d7802e347048a4b6bbf6792dbb5352ba9e12413
GET /wp-content/plugins/jetpack/css/jetpack.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Jan 2023 17:53:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 15694
content-type: text/css
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
103.112.245.8200 OK 574 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8fed768e65e7e7c4d6cc343cc5fd8d1b
6c909d5d0c4fc7a4c9f13db439abb787e227fb0b
6ac8563bea8e15601f5e4fc011d56c9fd46a9301d7168229bc70a88cec2f3bdd
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvconline.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 574
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
103.112.245.8200 OK 30 kB URL HTTP/2 aspphami-dki.or.id/wp-includes/js/jquery/jquery.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 Aug 2021 04:12:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 30310
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
103.112.245.8200 OK 31 kB URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/photo-gallery/js/scripts.min.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65536), with no line terminators
Hash f3bcf6f7a6c750ed17a8b733c272506e
de7ff1248c22dba492fe809466fb76053ad02be2
7cc165aaa8723a7ef2a09088b4bb30e629ad17b0043cfa7b20dcdc9a8ce94681
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 17:48:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 31324
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
103.112.245.8200 OK 22 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/js/ilightbox.packed.js
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (65336)
Hash 64dc0c639c8f6d238e5291015ac36930
bddcbdd2865e18793691aebe6c4aadc70f22fdb3
09d327353291ce47759b6538d610b0d5cc7cf0e0e844dfb4b88c347d52623a1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/js/ilightbox.packed.js HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 Nov 2015 16:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 22100
content-type: application/javascript
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/style.css
103.112.245.8200 OK 34 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/style.css
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type ASCII text, with very long lines (28229), with CRLF line terminators
Hash bc9071737e3177bfe0789e5e6c158dd5
6da5372fd8d03077f8dfa5e85bb5f666144a293b
46bce56f07cd5ea1aff045732076780edd9305e0b455d5dd26fc50f8f76968d2
GET /wp-content/themes/sahifa/style.css HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jun 2016 15:05:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 34096
content-type: text/css
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
103.112.245.8200 OK 525 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 86c88c2ae0f2078c796de58f4774c24b
e83cbc82353c42126c10b09399870d227e66e55b
16276db5107db00d233ab72be0659d90c529d3d79e4ee37592d0a2247d35340e
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/3.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 525
content-type: image/gif
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
103.112.245.8200 OK 582 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fd5802ba72617db62905092af2a3bc17
feb55d519fc4038c794ec86f38529f516b1638fc
faebc963dfc07b96f7668f2cc4344020546924e2c9668f787d17f6954f5e9c90
GET /wp-content/plugins/mechanic-visitor-counter/counter/mvctotal.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 582
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
103.112.245.8200 OK 524 B URL HTTP/2 aspphami-dki.or.id/wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type GIF image data, version 87a, 20 x 27\012- data
Hash 08c025d62551b0cf35d2c64cc5753b10
57cd72e034313cc1f938ae8a6aeb4c6bb562de82
ebbfebd338bf0ceb669e711b4087120f4582b473429267cfdd1d63700fc81946
GET /wp-content/plugins/mechanic-visitor-counter/styles/image/chevy/6.gif HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 02 Jan 2021 17:48:34 GMT
accept-ranges: bytes
content-length: 524
content-type: image/gif
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1
192.0.77.2200 OK 10 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 160x125, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d42da77089b5664a7fcff90df6fbd326
7822a2ccbfe9fe9945c94421085f3936c0f16b22
5b824f80720881186a5051cf4220bfd3f10aaf2e2ba6cf8ab6e838bda53d4f8a
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg?resize=160%2C125&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:38 GMT
content-type: image/webp
content-length: 10146
last-modified: Tue, 17 Jan 2023 03:56:25 GMT
expires: Thu, 16 Jan 2025 15:56:25 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "86d77096c014a3d0"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 8.2 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c818598ff2b11fd707c7ed2de299383c
bbca49dcfd8a5d3581112f5c44f512cd05f5016e
b3409e61770cbe93e05f7d2484a0fa4adc54b5e7cceb9acc99f2603d5017594c
GET /aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:38 GMT
content-type: image/webp
content-length: 8196
last-modified: Wed, 18 Jan 2023 03:07:33 GMT
expires: Fri, 17 Jan 2025 15:07:33 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2021/09/MG_7586.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9caa35353bd8d4d2"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
103.112.245.8200 OK 716 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/AA.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, baseline, precision 8, 1140x360, components 4\012- data
Size 716 kB (715788 bytes)
Hash 650a68fc60b7ce839f4cc613f2c01107
90b996f24ac6788c026782b22bdaecfc34d09307
b0f57c7041677a72960ed873d910a79f633c4b6bbc014fdb87fcb6328265c78f
GET /wp-content/uploads/2020/11/AA.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:38:44 GMT
accept-ranges: bytes
content-length: 715788
content-type: image/jpeg
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
103.112.245.8200 OK 21 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/patterns/body-bg7.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 264 x 264, 8-bit colormap, non-interlaced\012- data
Hash b40e39a8e3747e74f4dfcf6d88ecc535
17e825efe06f1d04a8a3c398329d51b0ddf14b53
7a6ac6e588a725241e6f43feaad46fb36de9682576f5f29c570edc3ec5247477
GET /wp-content/themes/sahifa/images/patterns/body-bg7.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jan 2015 19:28:34 GMT
accept-ranges: bytes
content-length: 21146
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
103.112.245.8200 OK 93 B URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/stripe.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 12 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 51386a2f66885faebd7ce34fceee3c7f
d428fb21cb1c35bb8d1a579df9aa7034c62f8e61
23c79bb552706be2ca97bdb259921e3269a5263326b147676c2f7909a45b58c9
GET /wp-content/themes/sahifa/images/stripe.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Sep 2012 13:24:44 GMT
accept-ranges: bytes
content-length: 93
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
103.112.245.8200 OK 1.0 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/images/home.png
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type PNG image data, 30 x 78, 8-bit colormap, non-interlaced\012- data
Hash 2ca35c0c6c0a17872bc7c6ef7fb1d6e5
6504abb26cf52c2250ea8e9c5645bb9439cefba9
6039cdb2c8028b73ddb9d711e7eb22834a8e11ba865283a7ed2fd2c75a401040
GET /wp-content/themes/sahifa/images/home.png HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 31 Jan 2015 13:15:38 GMT
accept-ranges: bytes
content-length: 1022
content-type: image/png
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
142.250.74.74200 OK 72 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap
IP 142.250.74.74:0
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /css?family=Open+Sans%3A300%2C400%2C500%2C600%2C700%2C800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 03:44:36 GMT
date: Sat, 21 Jan 2023 03:44:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
103.112.245.8200 OK 257 kB URL HTTP/2 aspphami-dki.or.id/wp-content/uploads/2020/11/Artboard-3hdpi.jpg
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1350, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1350], baseline, precision 8, 1350x1350, components 3\012- data
Size 257 kB (257360 bytes)
Hash fe694df042f2c4016f3081e36bf90483
8a930a3b5f974c9b55bd72b8557e607faa27e6c2
dffac83649a1dbf3c8e646fd28e86fd63b2f1810ad8de4c6085818ba338ef4d5
GET /wp-content/uploads/2020/11/Artboard-3hdpi.jpg HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/category/pelatihan-fumigasi/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Nov 2020 09:55:15 GMT
accept-ranges: bytes
content-length: 257360
content-type: image/jpeg
date: Sat, 21 Jan 2023 03:44:36 GMT
server: Apache
X-Firefox-Spdy: h2
aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
103.112.245.8200 OK 20 kB URL HTTP/2 aspphami-dki.or.id/wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff
IP 103.112.245.8:0
ASN #136107 PT. Tujuh Ion Indonesia
File type Web Open Font Format, CFF, length 19996, version 1.300\012- data
Hash 07db5c04835629ee7284a0481197443d
9f56f7e1b14b89828393aef3ff581a4a22320af0
e8c2e4d6ab0ad2f055a6cc3c777d31531e665758db5ca815f2613afad72f7088
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/sahifa/fonts/BebasNeue/BebasNeue-webfont.woff HTTP/1.1
Host: aspphami-dki.or.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aspphami-dki.or.id/wp-content/themes/sahifa/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Feb 2015 20:13:40 GMT
accept-ranges: bytes
content-length: 19996
vary: Accept-Encoding
content-type: font/woff
date: Sat, 21 Jan 2023 03:44:37 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 987da7c7dd69f6f24c4ee56f2624da00
191d2b68e49b0d05619116c073280a71514fe005
46c51c5b9f40f44dc0989d595caf8a2de02cc02acf78b3803d8a371997eb8208
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:38 GMT
content-type: image/webp
content-length: 12872
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7e684abb6536ebf7"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 21 Jan 2023 02:41:07 GMT
expires: Sat, 21 Jan 2023 04:41:07 GMT
cache-control: public, max-age=7200
age: 3811
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 756 B URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 118f4aa5df75ca98c7e06b07ee64646f
3211457f6addab16236baab27a0e3a78b522482d
fd654663c0e4302ff28a11f8c4465942b9dec7279aa4f2a2c72ec8aa9be3229f
GET /aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:38 GMT
content-type: image/webp
content-length: 756
last-modified: Tue, 17 Jan 2023 03:56:27 GMT
expires: Thu, 16 Jan 2025 15:56:27 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2014/03/cropped-LOGO-ASPPHAMIkecil.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4720fe0cd3a975c0"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.98200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (4879)
Hash 6a9251dfdb33b60330fd4b152af68b0e
1bce6b8a6215f14f3e0f55ad9b5bca1660b8d408
87b5c73e32f48ec81435fb502e9aa47c6b9225ac5067a83af3ad2ff035d660bd
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 21 Jan 2023 03:44:38 GMT
expires: Sat, 21 Jan 2023 03:44:38 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14750524024246160626
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49606
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (636)
Size 164 kB (163892 bytes)
Hash f2995e9cc3eedf3359420fb8d714b2ca
bdc68875ff161b35dbe9d8d85241e41c862ec8e3
fbe663b4f0f239aca19a5a2720c2b494ac58a53e0d68288155eb772ae04935c1
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aspphami-dki.or.id
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 15:41:18 GMT
expires: Wed, 17 Jan 2024 15:41:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
age: 302600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230118/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 20 Jan 2023 20:36:16 GMT
expires: Fri, 03 Feb 2023 20:36:16 GMT
cache-control: public, max-age=1209600
age: 25702
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 21:48:03 GMT
expires: Fri, 19 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 107795
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c232c19f3fc429b50b4b21d042ea2d1
232ff9e14ff2bd70e2c058c139e3694cc8c45f25
dfdf4248506d908ca817562e74c64bdb1a192c61c6d1f2f2f66db045bc1e3575
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9046bdd3634f2cfb8ace7c326c4af05f
d92d1610bbcc211f0648ec87b5aee6a562f606db
eea88fe2aaabd085058e3cf139e8780e1ddeff62e4fb94d6eeabe512a309d8ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 21 Jan 2023 03:44:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=aspphami-dki.or.id
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=aspphami-dki.or.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 21 Jan 2023 03:44:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c232c19f3fc429b50b4b21d042ea2d1
232ff9e14ff2bd70e2c058c139e3694cc8c45f25
dfdf4248506d908ca817562e74c64bdb1a192c61c6d1f2f2f66db045bc1e3575
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d3e5c3b089b8604c1bc1a6ac2ccb1688
bacbf48ce86aeb575783bb74ea09559fcaa37816
b1aa341569a6a888ae426572441696d430537d422e39513fdca5a4883d5402b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
216.58.207.226200 OK 257 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640
IP 216.58.207.226:0
File type ASCII text, with very long lines (403), with no line terminators
Hash abe62d82e00cc12ed22a6bbc2f9790e0
683cdaa75c0bc34764f52848c6af463c13de3b63
d41d4b5d7236de86bf5ce1e736515b20206a23eaff365f857a02f2e6c90ea8dc
GET /gampad/cookie.js?domain=aspphami-dki.or.id&callback=_gfp_s_&client=ca-pub-2763859954809640 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 21 Jan 2023 03:44:39 GMT
server: cafe
cache-control: private
content-length: 257
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d3e5c3b089b8604c1bc1a6ac2ccb1688
bacbf48ce86aeb575783bb74ea09559fcaa37816
b1aa341569a6a888ae426572441696d430537d422e39513fdca5a4883d5402b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd2e2265c884eb9c7d560fe2294c1154
ee9a3c7c23134a6dae6e3eadd20f91ebf1798a7b
bb1c07ac2e0901ce5f3bc468681dd475477f26df545d91730915eaa4f580b4e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 03:44:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.129200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.129:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 21 Jan 2023 03:44:39 GMT
expires: Sat, 21 Jan 2023 03:44:39 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.129200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.129:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 12:37:02 GMT
expires: Tue, 16 Jan 2024 12:37:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 400057
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/03/IMG_0399.jpg?resize=310%2C165&ssl=1
192.0.77.2200 OK 7.5 kB URL HTTP/2 i0.wp.com/aspphami-dki.or.id/wp-content/uploads/2020/03/IMG_0399.jpg?resize=310%2C165&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x165, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 82884246e775084499215d803dedf00e
bb9ea81e23ddebbf7d966f571098ceb04647da5d
36dc01a6916b2509f3df2f660f85217819bedc385c417b42d81ecb4d5f33cca5
GET /aspphami-dki.or.id/wp-content/uploads/2020/03/IMG_0399.jpg?resize=310%2C165&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aspphami-dki.or.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 03:44:40 GMT
content-type: image/webp
content-length: 7518
last-modified: Sat, 21 Jan 2023 03:44:40 GMT
expires: Mon, 20 Jan 2025 15:44:40 GMT
cache-control: public, max-age=63115200
link: <https://aspphami-dki.or.id/wp-content/uploads/2020/03/IMG_0399.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3369db85581dd818"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2