r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5452
Expires: Tue, 06 Dec 2022 05:54:57 GMT
Date: Tue, 06 Dec 2022 04:24:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3718
Cache-Control: max-age=112152
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:24:05 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:33:17 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14581
Expires: Tue, 06 Dec 2022 08:27:06 GMT
Date: Tue, 06 Dec 2022 04:24:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 04:18:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 331
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Cko+3nCTn340udcJMGS32EtZ9ZIBppvscV6imv5qFMLwnDHElfqWd/aTS+oJRBDSjelYseznhRM=
x-amz-request-id: K07QER9EB9SBE4NT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 03:48:46 GMT
age: 2119
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 04:24:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 04:11:20 GMT
cache-control: public,max-age=3600
age: 766
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3704
Cache-Control: max-age=107070
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:24:06 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:08:36 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.186.39101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.186.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +ZjJyePb05L8qytS45HM6w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ii572TyahVQmIS5be3gSuRIgmEI=
gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
104.21.12.95200 OK 6.1 kB URL HTTP/1.1 gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3638)
Hash c6b54b6aa2fa5a442a60c6b6df3d074a
1d66cf0b8d13b0e277db1ba61f2be918e97e9b37
1af817d86fe48bbfb3deb84f9b4a6931e0a481e895b38ab212d67a7ca5f2f6ac
GET /Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rBIF9nqlLGiIne02wnBhpKdxThJ85E5iDP%2BtmtZExqb15GeP%2BR%2FgfiwFRXAHYXDJxW4D2DnglOoatMFXtMVZtnZ6O4a53NKez%2BeoxRfmj8XwCZ7Wiam9Er2G7Z38iLqj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77523ffa0a5efac8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/1.a4107d5847ce71ae19c1.js.download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/1.a4107d5847ce71ae19c1.js.download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash c230d2a9695cc33a1868b04222072864
badb74eb8d71d1b689d49e542b44904ac6280742
077c44ca8d5cd944c14c961f9672e57ade1395e761a26147cec7eedc10338b07
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/1.a4107d5847ce71ae19c1.js.download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SLCrV6rDT67ozg6qxMd%2FEefo0Ya%2FTJnc1BFYOEb7qhzeTpaItjfk0IR2KCnIkw9Co3RrQDxKIQLG37dxyNBcXd33IgTt0JueBJMv1zg2m2w8mu2xQzO6MU%2FokdN4Sfjv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240052bc2fac8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/styles-key.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/styles-key.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3068b7405b72a2f565344ef8804b0733
c540b6e4540858fcec7c5c0d42378f852571142c
60174ebd0ab932e2e147cb3e8656029d0ec3bcc92beae23837cb37bac8d7346e
GET /KeyBank%20Online_files/styles-key.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2696
Last-Modified: Tue, 06 Dec 2022 03:39:11 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gDFqG5iuagzMKCE6aFADFdn75ipqzy016trPyn4jQbAiWhKMrIiyUHxL8KPcjjK59a9fu3URCUeUeqXsFfjggjv%2BZLzzaJexSWKjh57V0nsMdZv4YVjZGN1Uw95sCxXC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524005cbe8fac8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/bundle.js(1).download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/bundle.js(1).download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 938508ffe00dc19902b8df0e383c22bf
bfb71f0b20677fa4b216bbdc8051612cc3491e78
53384457b61d6da944b49a67f9561c097cd8825f9e8651792f8c6d8a4578adfc
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/bundle.js(1).download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EQOoy5GGN0vKVyHd4tK5vR6KAHRCcvQeu9pfZfFfJn%2F8mJ1gLkfBj6fTzc6YBRE2RnQ1Zttn%2Fkm0aSaXiEboi%2BHL4yt9HhZEdNdyjjlALzOj6vlIYFfJnFgsvEIhVE0e"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240052aebb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/kds-base-key.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/kds-base-key.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash ef44246b8d8ad6ae8434da2b978f0e9f
0128933fedfe5ad88fd6a9054e4d54a3707c93f2
5ad99b17415f642d0c4fddde8870a1de748a5c3ecbd04efdd9ccbae0b1cd5a4f
GET /KeyBank%20Online_files/kds-base-key.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2695
Last-Modified: Tue, 06 Dec 2022 03:39:12 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HdbFk8EsBpv4PpqSrRuZ1SGIfTPn7h9NMLAzk6SKd7I7qcwUK4B3FOIEDXsZhH4vqmnlFt6Yazlhu5ohAfNEiRT%2B8isH394pZGWkTfvQ2xHTWKRApbeNtZcu0eQHailX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240066b4db505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/ibx-globals-key.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/ibx-globals-key.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d86c718fbc5b87160c2b4bf1f89d1228
5585319a811c65fd21c62536f760925e174650f7
9cc4464d6a031ca48de4c1ae503d20308ea5fe7b071fdb4fef27a6f40363c414
GET /KeyBank%20Online_files/ibx-globals-key.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2694
Last-Modified: Tue, 06 Dec 2022 03:39:13 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k9MNg3tel3nABlCEPEBmc%2FF0VdQBqPlJWIG62iXJo2MAN0KUeUkSlUyG%2FRsq0RF%2FEhIGU%2B0mFa1HO1iwCU7PaPMlE6LvveW0yWV4rtbXS6nSImhUCjV8cgYh3Tj9%2Bt11"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240067b58b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/styles.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/styles.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash bee25409ecf021bd8d1ee7b337453d1a
9e0700150cd9252c2f3df3b4a720084a005915dc
9aa58e90aec9d4c7fb725ba9fb094da5342ec3ad8f65fc7872ab7c31d979dc4a
GET /KeyBank%20Online_files/styles.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2694
Last-Modified: Tue, 06 Dec 2022 03:39:13 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DePau%2FFKl1vOvLTtl0Qbna2S5nX8SZrmEo6tGZuq0L4fj0nJ6Un8lmI0RDBO%2BKKjnnZzuEa454HE0tZW%2FKZy%2F6yq7R87BwlRTauUwM86dekpjrRlh4BpYhjO0juX%2BBJn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240068b5bb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/styles(1).css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/styles(1).css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d8782b871be969eaee8548ebd053f0fc
19eaece9e9e241438c9945e37e2da28355086971
c717422f3e5821a177e5f42c63f9b0c96bf8585ed474896e4f3dfd2d834e813c
GET /KeyBank%20Online_files/styles(1).css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2694
Last-Modified: Tue, 06 Dec 2022 03:39:13 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rqge%2FDQ3sxjMzJIHgUPZCNtmx012Qz0DDNBZ2WSBlBz4NGPThFptk0FhYCU%2BCgcgUpjUcUMHrjl2AjyN7n0EhituxhVdHPadNmq6Oxy0Bjv%2BpdkBGSXoEIJMLorFgmOT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240068b5db505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/styles.a4962029f638dde4888c.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/styles.a4962029f638dde4888c.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 6a1a00ed44c33612443ffd814f862927
72f998b343e7251a5163d9ffcd6370543e302cdf
b6c5dcd359eef6041376c31e8899dc779759e49208ca7fcd3d68bbadd514fac4
GET /KeyBank%20Online_files/styles.a4962029f638dde4888c.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2695
Last-Modified: Tue, 06 Dec 2022 03:39:12 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QItS3itT%2FvX7a1Q5h9O5xRrIoTTwv%2FPdUNf36WrQ3VNKqi3m%2FYhN8pVUZDOK1VRRFsD2%2BzyMghGwNLiL2xWyKDTKMIGK%2BnP3PCFLP2WY8g1O8q2e%2FpdIvzacjqaS1urj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240069b61b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/styles-key(1).css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/styles-key(1).css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2d49cbe06811876d7f4ff955814c26f8
d47fdc7b168e749cff8ac6b422fff1481541c816
4e47724509efdc490b66b297d64db177aca1b9c5bf1bb473c9b797aa09ec988d
GET /KeyBank%20Online_files/styles-key(1).css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2693
Last-Modified: Tue, 06 Dec 2022 03:39:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mz7Arrq6xb5%2Ba%2Fg8vrpFxCtYUft8wnuRwa0yjrArpbYFNC1NqBUqGD3SAoAy32GSdRYGULVeMv4DVylzIIXCa9KFhOxdUnxCleOUDK%2FS2JdsBL%2B74Q3YMvQWD9MMYEaT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524006ab63b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/integrations
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/integrations
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e31c1985ef6a8330bab8d8e44aafc9dd
3fc33f2849ba8c8978e43a815ea72ad4693a1f73
3d3370b1e91da0ceac249dc582d9679a6a33cd272c5fffde0c33725c14a9c28c
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/integrations HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LB%2BZSHK6DwZfXeJTsciTiG2Vg1KnWkQGgN9fAmP3D8AO%2FUOOtfDWysXYv0M6cxpijxZTdWCvY0RTRuj%2F%2BEVBvtyteuXkN6bkEXErYlyCma9MLBb0zINcYp5gcJsle4g%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240052ae2fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/7.a62d97ca86043da836ba.js.download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/7.a62d97ca86043da836ba.js.download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 24a39e6ad18223cc27e1457462260613
399356015506d4f790d8aecc4bb4d88b0a35e96a
df36028ebfd9886c2edace19bb58be3e62a827924993d2ab40e08aceedb0cdbd
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/7.a62d97ca86043da836ba.js.download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mgOzn%2FpBrMDs%2BHrgw9tSFUA38gKWcQHRzdsGlR%2B4baDcrDMO7rk02lq6TSPZVJT0bDM%2B%2F0SNi5lrmHGJQOCJIzgM7m0KUx07CF4I4c9CjDouLZqH%2FIl%2BUlYipBXfoURi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240052cb0b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/kloader.gif
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/kloader.gif
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5a38bdced9be2b142e6942316b5843f3
28796283e3aa9e59ad30dab0fde37cb42c9f1c7f
f4cec362a24a338343b1c818467a7b28b1e7fc13f94d8e7fa97e6626d1ac1d5a
GET /KeyBank%20Online_files/kloader.gif HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2692
Last-Modified: Tue, 06 Dec 2022 03:39:15 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2FimV%2Bgo%2BwsvJ%2ByV8sNjlexJDRxR7UonbmzMXKmCIPNuPhrXY9O5D%2BCfQNTi0f6FWKkFP7QhIo9G32QfTc8p6g7m0EYOtBaA8%2Fp44SRowGrMEkNi9Izjw7n5scN9xwz5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007abbab505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/key_black_logo.png
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/key_black_logo.png
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1041bb2835b9a250d17202c5fe624b2d
a6737dc58ec71175b01b8625342788c0600c1b5f
fd36f8be180f8d780212b87ba595c53a2e3658881441f714c2d6de40ea4437b6
GET /KeyBank%20Online_files/key_black_logo.png HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2693
Last-Modified: Tue, 06 Dec 2022 03:39:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y2uehXAuLs10BcG%2FAGNV01kUtRXrDQUDoB5G0%2BL6kIEeNj7Lk7bpCHHO2byRFXB%2Fru7%2F8qSKQny7KOH4pW%2Bfv0lHYpfyZ5LOl%2BKG%2FPstvZhGlO1hIssqhWHThsCZ3HhA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007adb0b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/key_white_logo.png
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/key_white_logo.png
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash beac2f40fdb6913412cd5a6a77417aa1
6c4cab5eb6fe30a445b51a88a1398372b4dd386c
283d4a94a3be62cd09e49d36b8cbac491fa567e73703f5b32fafb43d9dd1510a
GET /KeyBank%20Online_files/key_white_logo.png HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2692
Last-Modified: Tue, 06 Dec 2022 03:39:15 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9X0CQByP5c0nD2dMnIlcZ%2BvaqwW8n60Zd%2Bu8bPZZROE45L9lIq%2FyhwD4R0LIuYX6XbcJ499GNCrpoR1WlxPpArLH50SqlMqBpf5Q%2Fia%2B6kt7RNzNUOACrbL2GppaObom"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007ab37fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/key-logo.svg
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/key-logo.svg
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash cbdc4a8cafea45968d55143a81b06a24
dbd3a8011c6e3dcafe326cad2dea9c6f3512f38b
fe33d6829ee75b0668ab9af8c13b948974156ca63931681ab8e21cd5bf31c9d7
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/key-logo.svg HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2691
Last-Modified: Tue, 06 Dec 2022 03:39:16 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qMUTV3o3WIj2vzJnRi0nezPYCi4%2FY89Kqe0vNoEi%2FXVx2pNPjB6RK6%2BN8NZpIybzW8d793GzwmwqpQ7oLv23gJ4NJZou5SmoHb31V%2FXX4ZT7nD7yBwVUvaxDjOmKfP9x"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007abbfb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/otac-72-hours.svg
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/otac-72-hours.svg
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 048310cf26dfab8de1dc77897f4f4a01
196c0529f48b022f02ba778bd24515dfcec04dc0
269575283d9c0357f42cd1a7398a8f02534c359e1b1315df6a321ae2c5415572
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/otac-72-hours.svg HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2691
Last-Modified: Tue, 06 Dec 2022 03:39:16 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EPf096EXiSn0%2Fw9G3NVyjEJmlPZKh7COihQkrnrpsBJV2VicxVX%2B%2Fnom2PRBWz0nX97SIlsk0DEHAsufBCfMhhbOQjMOfNc7akyvGQk%2FUH4YqdG%2BQxT%2FSmsMUfc5r2%2F9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007adb3b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/images/kds.svg
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/images/kds.svg
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3d7e4e9415c805eb18de11f5f69478b3
7f47fae77812bc4d48fc6fa97da581f6e8fe84ad
caba6e451551c66000799c9a066e1dcb2fb2147d9656381176971033e8657a25
Analyzer Verdict Alert fortinet Phishing
GET /images/kds.svg HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2693
Last-Modified: Tue, 06 Dec 2022 03:39:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uAdOmfNRRO3cPCbplJ9jZpGm7TgqltmBKvNVnfGbPs9wDVbS5jQ5ZbEq1sBOu3vayJMotHSG4ScmgR0OKGYpZchSSZmfwWGKUG7TepSod38SM5IDHU1hro7vyp6zSOPH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007ddc0b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/ibxolb/olb/share/assets/images/kds.svg
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/ibxolb/olb/share/assets/images/kds.svg
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash a6884ad40824034575885a98d6eef867
086ea5b04ecddbba8391838f28291bcff6df2dfc
692944c43760132d73890f67418eae5656d5fb8429da44cd8c0b7ab5226f2f5a
Analyzer Verdict Alert fortinet Phishing
GET /ibxolb/olb/share/assets/images/kds.svg HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2693
Last-Modified: Tue, 06 Dec 2022 03:39:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YQDlz3hwQLcDjV7SJWjXSDOWbsVkvo%2F0SDR%2Bw7KXQc6hN2HwRXdXINshKk5VEKK5pGf%2FYS%2F5Lt4XoWUp5W%2BjaDfFyt3GLSuQsXxyYGGQA%2B8zQXqMXaONX%2BGdIr%2FQ%2F0B3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524007db3ffab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/AppMeasurement_Module_ActivityMap.min.js.download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/AppMeasurement_Module_ActivityMap.min.js.download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash bc4369a22956d726f9b45d7333d2802d
3d1353be3fb8a9df027c49051eafdeb9656af5ab
bb21471c62637e6b9474952b9cd8429974f1ae61c0025e1f8a698148f690ef49
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/AppMeasurement_Module_ActivityMap.min.js.download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ANaxHpUPXn9R81gWtvhYVnueu3SezcKrgYcycj70AN%2Bf3MZyAx%2FjTAvsO4sMzCgvbpo0B7y5cuk0jppohBoQzuzYBR1iatKMGd8SkPiYDv7Ux2NNsVBFDYWVXTVFVIDj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240052a85b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/RCcaa4e69ad2d64fb28ce705b92f818cb2-source.min.js.download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/RCcaa4e69ad2d64fb28ce705b92f818cb2-source.min.js.download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash eae97f200e64fd4fb3a3bdc43a25f380
eefe952ee96095d64dcfe71d5c9800b0992fd638
f8c56c3a66ca6c978ee2132c43083853d08fc2c0c92ceb16e069495946cbf331
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/RCcaa4e69ad2d64fb28ce705b92f818cb2-source.min.js.download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wjmjFNHgvWysgdBUuEsT8o1af2b9Hw4YXu%2BMjNh%2FE%2BqXzMpgL60xR5wAyhOPBx%2Fn9Sj70nAuUdPaeUov6iA4LLfCKTE4SJ1RO93xyjLS6XsO44BJvYk9rVgcEss88bBJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524005dbeafac8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14405
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:24:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14405
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:24:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14405
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:24:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14405
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:24:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5529617b0748f2d8c82ef99c1ac116a8
a862b74508113ae72b56b9b3de0c75ba559b9032
376a82ae4a5b80f59fb746be79bca569b03a74c345845c7bbf15189964b0bb96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11469
x-amzn-requestid: f60a3f0d-38f7-4f82-bdd5-9e31814ab1d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuZGAXIAMFwuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-5b4b99e779a0aaa71a311a1c;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: El70-nSITf6MuEV19s_OMrwTcWIKO-u4JsghVUSzolero071AVGvjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:38:28 GMT
age: 24339
etag: "a862b74508113ae72b56b9b3de0c75ba559b9032"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30d72693680b3ac91c0eee4d47a26196
cd923a5a3810bfe86be2eca4b97c739d76756d93
69ca9e172f6b0c5bf158022d533701b89282630deaa0ce7df27ed459c9bfe75e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8656
x-amzn-requestid: cfc71f7f-d1c6-47c9-8107-864701dbf3c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwkEHmIAMFUnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d0-6705510852d26ae24b3e5ea4;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zTGiKMan3uG3edx5AsFabNE4eG_dmzrIIOFCWcOxYN0UgSCGTNTtxw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:25 GMT
age: 21702
etag: "cd923a5a3810bfe86be2eca4b97c739d76756d93"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cO5j7BIPh3GSOUqKDYYY2qmG6__Hn2XB9lFhhYT_WpOXya-9TTGtgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:24 GMT
age: 21703
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcb8fe0c4ba323ab2483fa290c291051
6706e02d6b95edc3a33c951f07d04b0fb7415b77
6be68deb3a330955027ec16eaca2cdf4e2776620ffb7cb995922664b24400f02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8749
x-amzn-requestid: ee03c447-299b-45d5-b8c6-12d4d1dc436d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_spHdBIAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-0c9805c6112ec9ec6b9d1544;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tsL8hmcWaBeKYVG2b4g7ebl-sQ0Z5jZaexEfvldfzq9COcOdzqLhUA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:21 GMT
age: 23746
etag: "6706e02d6b95edc3a33c951f07d04b0fb7415b77"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GgMHlvU3WIDYMF9fmZAajw_Y3zmPm2zojn7FTqgqtBj7e4qeu8Uokg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:53 GMT
age: 22694
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f-KQCOuDl461V8MBPsSOj1ILCU91Q0pCSENaldkMHR2oZdrEUnHeaA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:03:16 GMT
age: 22851
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gunungjati.id/KeyBank%20Online_files/AppMeasurement.min.js.download
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/AppMeasurement.min.js.download
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 445f6e331e4a6e3fd5039b41b1934044
5ef46ab7490a5a0393ece43154e233f77d421f19
dd60beb0ade5f6e1aed21536ce9d754b9da93c6d47431b511a57ca7ac9d584fd
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/AppMeasurement.min.js.download HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wv7nU%2B5JDS1zwJCzlb%2BwEezIrkq3%2BoRVZoYYkrUWxky2MjT9YDneMMgEMxAVUva75kn9PeOPEWLJ3V7NrAeU3uaja%2BKqQmzi%2BEh%2F9iLUfNFwbiPBBzF3ilQMNUKrM1pB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77524005298db4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/ll_storage_html5.html
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/ll_storage_html5.html
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5fd0a16cbf1826bbe402175012e02724
dca60b31b4bdcb5d414d07ec01d75ab426b67d9d
0d1166b19f2d09657dae9a653a57ca276276a7eafb137f2a4c731c48681bb071
Analyzer Verdict Alert fortinet Phishing
GET /KeyBank%20Online_files/ll_storage_html5.html HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l4W0PThUeH8JiK4UlXdv8yFrYVcdYO8ECi20JPMdP4TDEBrKHCRuYtsRR7BaJ5Obzc2nTbGoPaIUwe%2FDgUjZfOcC%2F8Lmyp7%2Fv1sydx53uoR6jw3UP5LqwV2UMnGJQ5dR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240080dd7b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/KeyBank%20Online_files/css/cf.css
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/css/cf.css
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1950cef7264b8c1e8a34f61f4182b1a4
75edeeca38609a6434905a44075ca2834ad6c331
1d29be515406535b5cdb2b652e680b179dbe6afbc0898269a453debed9b71215
GET /KeyBank%20Online_files/css/cf.css HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/KeyBank%20Online_files/ll_storage_html5.html
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 2693
Last-Modified: Tue, 06 Dec 2022 03:39:14 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jFWnzgBhNqJ0WhJdpChr8BmxQBJ3UnseNGGvDZpSfce%2BFztCW2LV1a8O4f%2BsOdIFJLegdd89qldQsHGcdKWUxDgS04nWb23WfV%2Bq62sQgwZE5HNLjcjEps803OeDbImH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240091e42b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
gunungjati.id/share/assets/images/kds.svg
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/share/assets/images/kds.svg
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash aa6c9cefee723f853b427e54de16ff64
9b2074cf5d8901467a4c4ab7809d150e623a56aa
f272ff481ae30f1cdba04e1a471dd5085617c0f57c1493aebe92facfde2c3662
Analyzer Verdict Alert fortinet Phishing
GET /share/assets/images/kds.svg HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/Login.php?id=f0mbbja77h5?access_token=ij8co8gk4k6f
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Tue, 06 Dec 2022 04:24:07 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2FJQSfez1fwbgSEbX7tLu5MTQlD9T9B8ia%2FbAptuYsvhIOo1Q7w7Mkk4PAOnewThXidGYFat%2FuYIWwiKzIfbGgSpSBqEhJJ7eQPaAiC5Sd%2BkjGzH57u5%2Fxa%2FG44M7pAE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240082b49fab4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d91f808bca5cafd02cbd3d3029848b42
412dd8ad11f4a0201fe0423c9462ead5c7f06cac
e35ffd353788e6aec0d91c163ff6578c06792aab1f5ec943ff380d059d1a2ab0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 609
Cache-Control: max-age=98615
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:24:08 GMT
Etag: "638d9fbe-1d7"
Expires: Wed, 07 Dec 2022 07:47:43 GMT
Last-Modified: Mon, 05 Dec 2022 07:37:34 GMT
Server: ECS (amb/6BC7)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d91f808bca5cafd02cbd3d3029848b42
412dd8ad11f4a0201fe0423c9462ead5c7f06cac
e35ffd353788e6aec0d91c163ff6578c06792aab1f5ec943ff380d059d1a2ab0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1246
Cache-Control: max-age=99252
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:24:08 GMT
Etag: "638d9fbe-1d7"
Expires: Wed, 07 Dec 2022 07:58:20 GMT
Last-Modified: Mon, 05 Dec 2022 07:37:34 GMT
Server: ECS (amb/6B86)
X-Cache: HIT
Content-Length: 471
ibx.key.com/ibxolb/login/images/favicon-16x16.png
23.52.18.181200 OK 661 B URL HTTP/2 ibx.key.com/ibxolb/login/images/favicon-16x16.png
IP 23.52.18.181:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash ea4b275c774e8170ed54751d39a6adbf
c4fda6c23491accd170362ab21108d8ae31a647f
735143f90a8c225ffe4c0a853b25f2068510d81f8f6a82db79db00233ccc4b58
GET /ibxolb/login/images/favicon-16x16.png HTTP/1.1
Host: ibx.key.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gunungjati.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "63640efd-295"
last-modified: Thu, 03 Nov 2022 18:57:01 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
x-xss-protection: 1; mode=block
x-envoy-upstream-service-time: 13
content-security-policy: frame-ancestors *.key.com *.keybank.com
strict-transport-security: max-age=16070400; includeSubDomains
server-timing: dtSInfo;desc="0", dtRpid;desc="-1447210183"
content-length: 661
cache-control: max-age=300
expires: Tue, 06 Dec 2022 04:29:08 GMT
date: Tue, 06 Dec 2022 04:24:08 GMT
X-Firefox-Spdy: h2
ibx.key.com/ibxolb/login/images/apple-touch-icon.png
23.52.18.181200 OK 4.9 kB URL HTTP/2 ibx.key.com/ibxolb/login/images/apple-touch-icon.png
IP 23.52.18.181:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash fee1734f5f10bbd1c030e8cd2e1a8896
18d49e15c6adbf73acf60dc258d3630fb7f5090b
f84def209aa5859896a65dc88fabeb52f93d837b5271d8ffe0d557c92b706a07
GET /ibxolb/login/images/apple-touch-icon.png HTTP/1.1
Host: ibx.key.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gunungjati.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
etag: "63640efd-1322"
last-modified: Thu, 03 Nov 2022 18:57:01 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
x-xss-protection: 1; mode=block
x-envoy-upstream-service-time: 1
content-security-policy: frame-ancestors *.key.com *.keybank.com
strict-transport-security: max-age=16070400; includeSubDomains
server-timing: dtSInfo;desc="0", dtRpid;desc="2097639865"
content-length: 4898
cache-control: max-age=300
expires: Tue, 06 Dec 2022 04:29:08 GMT
date: Tue, 06 Dec 2022 04:24:08 GMT
X-Firefox-Spdy: h2
gunungjati.id/KeyBank%20Online_files/Login.php?id=fkb6je615bae?access_token=bj34jllj876e
104.21.12.95200 OK 1.2 kB URL HTTP/1.1 gunungjati.id/KeyBank%20Online_files/Login.php?id=fkb6je615bae?access_token=bj34jllj876e
IP 104.21.12.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash b26dd7f034f1afdac531fbc4c8311bf7
4bdc7985c035f71f7e1082a1b5097a9008ac320e
b7213ce37ba5594ca6b720038bcce754f3e2b91b70b126e293b6e032da438712
GET /KeyBank%20Online_files/Login.php?id=fkb6je615bae?access_token=bj34jllj876e HTTP/1.1
Host: gunungjati.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gunungjati.id/KeyBank%20Online_files/ll_storage_html5.html
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:24:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.4.32
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ozMW%2FyeSrWa1P5gM%2B96y%2FODutL3AUY2AWLUdm%2BOaJtG1JVVXW%2Bzp1e7WbSyC%2FhUbESRZwTFgqgcEVhUCmWXcHWjXHP5J7wezkAsgfoafbwrfN8fDbz2XsnTcO6gwx37"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775240287c3db515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60