Report - 375sh.ktt55.my.id/

Report Overview

Submitted URL
375sh.ktt55.my.id/
IP
104.21.17.78
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-29 15:52:32
Access
public
Website Title
GRUP VIRAL
Final URL
375sh.ktt55.my.id/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-03-28	433 B	29 kB	104.17.25.14
i.ibb.co	13485	2010-07-20	2018-11-25	2024-03-28	6.5 kB	5.9 MB	162.19.58.158
cdn.statically.io	10364	2019-05-05	2019-05-15	2024-03-28	918 B	2.0 kB	151.101.193.91
rawcdn.githack.com	72170	2013-10-12	2016-07-04	2024-03-28	1.0 kB	2.9 kB	104.21.234.230
bagasarya.xyz	unknown	2022-06-30	2022-07-01	2024-03-25	430 B	9.2 kB	104.21.81.99
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-03-28	1.0 kB	1.6 kB	185.199.109.133
i.postimg.cc	23840	2016-06-11	2018-04-11	2024-03-28	447 B	49 kB	162.19.88.68
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-03-29	471 B	11 kB	142.250.74.106
375sh.ktt55.my.id	unknown	2023-09-21	2024-03-11	2024-03-13	1.4 kB	29 kB	172.67.175.76
site-assets.fontawesome.com	299062	2012-10-18	2022-02-10	2024-03-27	2.1 kB	1.2 MB	104.18.40.68
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-03-29	1.6 kB	50 kB	216.58.207.227
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-03-28	511 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-03-29	medium	375sh.ktt55.my.id/	WhatsApp
2024-03-29	medium	375sh.ktt55.my.id/	WhatsApp
2024-03-29	medium	375sh.ktt55.my.id/	WhatsApp

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-03-29	medium	ktt55.my.id	Sinkholed
2024-03-29	medium	ktt55.my.id	Sinkholed
2024-03-29	medium	ktt55.my.id	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js	90 kB	2023-03-07	2024-04-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:27 Last Seen2024-04-28 23:43:44 Times Seen23119 Hash 00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74 Loading...

	375sh.ktt55.my.id/	6.3 kB	2023-03-13	2024-04-17
Pretty URL 375sh.ktt55.my.id/ IP 172.67.175.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 15:46:16 Last Seen2024-04-17 07:00:01 Times Seen177 Hash bd989e27c620517eb350bc99767fed54 e631717495b6dbcb21cdebb556ecc5494aec15e3 243f132e36711282e5284d5dad2d8213450f17476c786e18b4e8ada41d97b6a8 Loading...

HTTP Transactions (36)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27990 bytes)
Hash
00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74

HTTP Headers

GET /ajax/libs/jquery/3.6.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 27990
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "63091225-6d56"
last-modified: Fri, 26 Aug 2022 18:34:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 647584
expires: Wed, 19 Mar 2025 15:52:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0kIX6OD%2F8SiGbl4wAqLHcQiLy3rlGbnTPkxHBIFbsFghtZmHnQktLco%2BXanD0VXESMAp8%2BVYnYJRb4AyfONF8x%2F5Gg%2Fxe%2BiUpGYHBC4Z%2BMXefzf6SRPIVDlP6h1GBBeIwfDf8M0p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86c1066bca8b56b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.ibb.co/vkK42QT/10.png

162.19.58.158

200 OK

222 kB

URL GET HTTP/2
i.ibb.co/vkK42QT/10.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 365 x 365, 8-bit/color RGBA, non-interlaced
Size
222 kB (222012 bytes)
Hash
f81d0b62ff11d14d0cebd7c420c43720
9e99d32511918827340795babf315b370f8ad6f0
e9bc8086e1fc722865d1dee5a443af63cbf1662923d4660b05b15c2680be4b69

HTTP Headers

GET /vkK42QT/10.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 222012
last-modified: Mon, 19 Sep 2022 19:53:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/jJrwz1G/3.png

162.19.58.158

200 OK

259 kB

URL GET HTTP/2
i.ibb.co/jJrwz1G/3.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced
Size
259 kB (259039 bytes)
Hash
987ea7333ea2aae715f76bde755a739c
732c2af49873a7f6a904280ccb91087c51371225
67c247d6ec0a56b23c81d85dec702f04e562eb549a83c1ef0b2b9798bcd92936

HTTP Headers

GET /jJrwz1G/3.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 259039
last-modified: Mon, 19 Sep 2022 19:49:26 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/ykC96tW/6.png

162.19.58.158

200 OK

337 kB

URL GET HTTP/2
i.ibb.co/ykC96tW/6.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 420 x 420, 8-bit/color RGBA, non-interlaced
Size
337 kB (337138 bytes)
Hash
1ebeeec7bf8ebd12e23de6406e9f9e7f
fa497ba6eb3975ac333578dc6b58e84e5f33127f
dfd8e09d8d51758183028386ae9d9d9fcf051a318cba2b9c91215ea4c4de8f28

HTTP Headers

GET /ykC96tW/6.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 337138
last-modified: Mon, 19 Sep 2022 19:50:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/5htr7B9/14.png

162.19.58.158

200 OK

283 kB

URL GET HTTP/2
i.ibb.co/5htr7B9/14.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 397 x 397, 8-bit/color RGBA, non-interlaced
Size
283 kB (282866 bytes)
Hash
7c873d660fe16cf2cc4f7ee112d8fc2e
8fd2b09b73b3fe79351a1f8a53b84f3c65392983
4e1a43080d535257223924f8318cd50e895c7644061ee12dbaba8c922b94bd25

HTTP Headers

GET /5htr7B9/14.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 282866
last-modified: Mon, 19 Sep 2022 19:50:11 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/sWBtSx6/2.png

162.19.58.158

200 OK

312 kB

URL GET HTTP/2
i.ibb.co/sWBtSx6/2.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced
Size
312 kB (311908 bytes)
Hash
3805a0154379d00f07bb73ca537ba07f
45e78f532d899bff450bb1e73b2add692f276c70
415274d87df0f7ae27a298df4710165ff4355e955c39bbe13329df5f114d8133

HTTP Headers

GET /sWBtSx6/2.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 311908
last-modified: Mon, 19 Sep 2022 19:48:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/9vt21sJ/9.png

162.19.58.158

200 OK

314 kB

URL GET HTTP/2
i.ibb.co/9vt21sJ/9.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 421 x 421, 8-bit/color RGBA, non-interlaced
Size
314 kB (313523 bytes)
Hash
56bf1cd16bfecb69ebb46d3e8f3f69e1
f3c6cd67b7e53d6fca49b43b55fd2ecf425d4e78
fd637518329c8cf48c112b9a5f38d58ce11f17cc73f8f6b895b0b09fbf06025f

HTTP Headers

GET /9vt21sJ/9.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 313523
last-modified: Mon, 19 Sep 2022 19:53:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/py8bKhJ/11.png

162.19.58.158

200 OK

297 kB

URL GET HTTP/2
i.ibb.co/py8bKhJ/11.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 356 x 356, 8-bit/color RGBA, non-interlaced
Size
297 kB (297415 bytes)
Hash
4813563dff2d354ee67156479cc13449
4488d924f5b8edd22fb4aead3450d997e3e9a42a
1a7fe9cd8795cfba21f5ad9e20813d34444d8e15b715e9bae423840f0c31ca12

HTTP Headers

GET /py8bKhJ/11.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 297415
last-modified: Mon, 19 Sep 2022 19:53:54 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/M8T1CF3/5.png

162.19.58.158

200 OK

375 kB

URL GET HTTP/2
i.ibb.co/M8T1CF3/5.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 558 x 558, 8-bit/color RGBA, non-interlaced
Size
375 kB (375161 bytes)
Hash
eee9ffe9b5b47f9a6b18f108f8ed4bef
88eb11d091b6c9364dd597f110b753af745c62e2
5119f47a93b098f04fb55d3eaf09338a83306d4fd57e21bf24143ae1ab6ebb5c

HTTP Headers

GET /M8T1CF3/5.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 375161
last-modified: Mon, 19 Sep 2022 19:50:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/xzG24XV/12.png

162.19.58.158

200 OK

342 kB

URL GET HTTP/2
i.ibb.co/xzG24XV/12.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Size
342 kB (341894 bytes)
Hash
5cbb90297ecd3f9dacd23d845d365f67
01eb97a585c237fa5ce7de06010563dec383e985
45132e2ca2c583b79b6b91621a3f387446adbbf5c92712e84751af6b651c5887

HTTP Headers

GET /xzG24XV/12.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 341894
last-modified: Mon, 19 Sep 2022 19:54:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/yp6hKy5/13.png

162.19.58.158

200 OK

364 kB

URL GET HTTP/2
i.ibb.co/yp6hKy5/13.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 399 x 399, 8-bit/color RGBA, non-interlaced
Size
364 kB (363505 bytes)
Hash
efb38b54f1674f0d28d3c0cbbf0561ee
36f184ecfccae9ce8bce40d41289cdf3719a6090
f6dd35e7e3b3dc5031bdf3ca9944d893ac5bb505abbbc71228fd0e36b0fa748c

HTTP Headers

GET /yp6hKy5/13.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 363505
last-modified: Mon, 19 Sep 2022 19:51:52 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/zJ1ZrGH/1.png

162.19.58.158

200 OK

439 kB

URL GET HTTP/2
i.ibb.co/zJ1ZrGH/1.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 522 x 522, 8-bit/color RGBA, non-interlaced
Size
439 kB (438742 bytes)
Hash
4ee73beb981cbf17e7263a8888834fa4
f66e88c38e75c463f66ac804d63970a2a8b9f131
e10fcaf2876e45bfd4ddf10e888bf8d585ec2e0a900bce0a414df939e1ef1976

HTTP Headers

GET /zJ1ZrGH/1.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 438742
last-modified: Mon, 19 Sep 2022 19:45:56 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.statically.io/gh/AlexHostX/all.asset/main/alex-facebook.css

151.101.193.91

404 Not Found

391 B

URL GET HTTP/2
cdn.statically.io/gh/AlexHostX/all.asset/main/alex-facebook.css
IP
151.101.193.91:443
ASN
#54113 FASTLY

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGlobalSign nv-sa
Subjectstatically.io
Fingerprint28:2B:F4:9C:61:EB:4D:6B:10:9F:7B:C4:22:0E:C4:51:7A:DB:60:A4
ValiditySat, 26 Aug 2023 17:58:11 GMT - Thu, 26 Sep 2024 17:58:10 GMT

File type
HTML document, ASCII text
Size
391 B (391 bytes)
Hash
3ff5f3a7300ff541988649e1721d42f2
0844532f5097cdde9678e2edeedbadfe48614121
6172693305882d23af3cfd59637a7d2674a1cf96ee6794e4c8b82c13639c685f

HTTP Headers

GET /gh/AlexHostX/all.asset/main/alex-facebook.css HTTP/1.1
Host: cdn.statically.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-encoding: br
access-control-allow-origin: *
access-control-expose-headers: *
age: 5
cache-control: public, max-age=5
content-type: text/html; charset=utf-8
date: Fri, 29 Mar 2024 15:52:06 GMT
etag: W/"2e-5hyaDJAy4gt0fGSdrjML/CGWPaM"
server: statically
strict-transport-security: max-age=31536000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT, MISS
x-content-type-options: nosniff
x-served-by: cache-sjc10030-SJC, cache-hel1410023-HEL
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 391
X-Firefox-Spdy: h2

i.ibb.co/yFSbcgK/4.png

162.19.58.158

200 OK

629 kB

URL GET HTTP/2
i.ibb.co/yFSbcgK/4.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 527 x 527, 8-bit/color RGBA, non-interlaced
Size
629 kB (628832 bytes)
Hash
48a4fa43c7bf6c7d58b292feed5ac8f1
45649043af4553112fe39de7f6ad70b32fb43acc
6f2393b8888df2c0070fb8de553f805db13cc56a0c4c72cb947721b3237a56a2

HTTP Headers

GET /yFSbcgK/4.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 628832
last-modified: Mon, 19 Sep 2022 19:49:48 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/X3D47TD/8.png

162.19.58.158

200 OK

540 kB

URL GET HTTP/2
i.ibb.co/X3D47TD/8.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 521 x 521, 8-bit/color RGBA, non-interlaced
Size
540 kB (540020 bytes)
Hash
edcdfeb1c1da0af39c1098cbae43dbc4
79298b1f87ea6eecc7aa05daf24d968cfd3033d6
44fbcf82b8427f7faef1fc28128997163e35226615a13dc9cc907437519d045e

HTTP Headers

GET /X3D47TD/8.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 540020
last-modified: Mon, 19 Sep 2022 19:52:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/9Vj0scJ/Screenshot-1-modified-min.png

162.19.58.158

200 OK

552 kB

URL GET HTTP/2
i.ibb.co/9Vj0scJ/Screenshot-1-modified-min.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 553 x 640, 8-bit/color RGB, non-interlaced
Size
552 kB (552112 bytes)
Hash
217367c9b7a7f09d374fb18f8ecd8525
409b98c0ce231349611886d43c395afd3b851a6b
856dc8b0909cf30d1bd017f955a7f9d6319a7dd556d800eb6811b5ba6c2e8cf6

HTTP Headers

GET /9Vj0scJ/Screenshot-1-modified-min.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 552112
last-modified: Mon, 19 Sep 2022 20:09:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/JqkfLPL/7.png

162.19.58.158

200 OK

668 kB

URL GET HTTP/2
i.ibb.co/JqkfLPL/7.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 515 x 515, 8-bit/color RGBA, non-interlaced
Size
668 kB (667536 bytes)
Hash
a214fec4ae435df53473adddaa62a4c9
4a0af5df19813b90edbcd6050220525defffdd2d
24f14cfbe48d6f2f585c4513970593d13e831fad156733ed457c755f6cb4cd6c

HTTP Headers

GET /JqkfLPL/7.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: image/png
content-length: 667536
last-modified: Mon, 19 Sep 2022 19:52:23 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap

142.250.74.106

200 OK

10 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
gzip compressed data, max compression
Size
10 kB (10210 bytes)
Hash
f61f3cebb3599ae53d98f0e90dfe4228
c060f9992333d03e8b3d856e3d74442d52342a39
1acea714a7930ccffe4e0b71bbda1f70c5df4d83a5910fff4d4521e53763aef8

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 15:52:05 GMT
date: Fri, 29 Mar 2024 15:52:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rawcdn.githack.com/AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png

104.21.234.230

301 Moved Permanently

694 B

URL GET HTTP/3
rawcdn.githack.com/AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png
IP
104.21.234.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
data
Size
694 B (694 bytes)
Hash
a3223a30ae498dbb160bca61ea1ef578
927cb04230fdc4997d03401ee2e626249664c855
2893169e819a3bf5886853c55b562d02c3946cd5d5136c6516a584c3bbc06cdc

HTTP Headers

GET /AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Fri, 29 Mar 2024 15:52:06 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 30885
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fd%2FQ9tXfuozhgwtO%2F6xzq2tAHk1wpkzBEpJZtZkGUkxO1vBsVzTF9oGoIR8YMKxDXF2zd2Sj9RbohRMwv1xKWKnjlgRSnOn5irGRilnX%2F%2Bi2UmK4yNVeqccEhqOzhV7P9e5Xo30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c10672d8929556-LHR
alt-svc: h3=":443"; ma=86400

rawcdn.githack.com/AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png

104.21.234.230

301 Moved Permanently

694 B

URL GET HTTP/2
rawcdn.githack.com/AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png
IP
104.21.234.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectgithack.com
FingerprintA4:13:2F:80:0A:C6:7C:8B:08:12:12:22:60:76:15:7D:40:80:70:54
ValidityFri, 01 Mar 2024 13:12:36 GMT - Thu, 30 May 2024 13:12:35 GMT

File type
data
Size
694 B (694 bytes)
Hash
a3223a30ae498dbb160bca61ea1ef578
927cb04230fdc4997d03401ee2e626249664c855
2893169e819a3bf5886853c55b562d02c3946cd5d5136c6516a584c3bbc06cdc

HTTP Headers

GET /AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: text/html
location: https://raw.githubusercontent.com/AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png
cache-control: max-age=86400, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 57914
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wHeXtotNGIilaigIoWmXJ5gvt45cHnTWjMIcZgUhHELWbzKkVI24E3vPMVxn2wJfeQshDbqkp4KT%2BEuib3CCcA7wr96lAOtp96Y1Kb03z8%2Blb2%2B99tU6N89eH6CRqsiKixT0uSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c1066bcb4b7735-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bagasarya.xyz/img/info/navbar.png

104.21.81.99

200 OK

8.5 kB

URL GET HTTP/2
bagasarya.xyz/img/info/navbar.png
IP
104.21.81.99:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectbagasarya.xyz
Fingerprint59:49:3D:66:65:A0:62:ED:42:29:ED:97:BC:24:16:4B:A0:51:CE:59
ValidityWed, 27 Mar 2024 05:35:07 GMT - Tue, 25 Jun 2024 05:35:06 GMT

File type
PNG image data, 904 x 339, 8-bit colormap, non-interlaced
Size
8.5 kB (8459 bytes)
Hash
f29c416a7c6f18ba0c0deb4980763c9d
56c7bfbf2c9a7a2be2e2214b0586c11af8e852bf
7f37cb926c06378327ad2a753c7119291b2ead796a6f588a8374de651ec72a8c

HTTP Headers

GET /img/info/navbar.png HTTP/1.1
Host: bagasarya.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:06 GMT
content-type: image/png
content-length: 8459
cache-control: public, max-age=604800
expires: Thu, 04 Apr 2024 12:25:28 GMT
last-modified: Mon, 06 Mar 2023 02:41:35 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 98798
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tfN76YlUQSYv%2FbbCuzUvJemovQlJEC4hFybExMGPn9xTL1toomGP3cEMRRQlW%2ByO1NOGLf%2FGGLUdsRo8D5R155QBBszmrPyHpBZKGoHxSZIAKk624UErtpmZ3bsZ9K0m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c10673aa9856af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

375sh.ktt55.my.id/coreAlex/asaykjwdawldkha.css

172.67.175.76

200 OK

2.5 kB

URL GET HTTP/3
375sh.ktt55.my.id/coreAlex/asaykjwdawldkha.css
IP
172.67.175.76:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (8039), with no line terminators
Size
2.5 kB (2464 bytes)
Hash
585ca44aeed524241d44b30d87c73ed9
71e00ef4e80222a180dc21267dd64626b0781bfa
bfed8e37df29437d8007a8fc7aaf5b29159b9844aa4233e4ca5d83c53bb7565e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /coreAlex/asaykjwdawldkha.css HTTP/1.1
Host: 375sh.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 15:52:06 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 15:52:06 GMT
last-modified: Mon, 19 Sep 2022 20:25:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p7pRZX%2FWlenWZLyW%2B8w8GiNWD70MiMFl%2Fmn6M9UCmS4BsxUl%2F4Av7n3r7snyv%2F1hZKnTETsP34no2E1AyeKqZEYWloXNjr05kWZ6KlFPN06kxoaFK0dirY5sHEk9bbjOuXj%2FQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c1066b2e5ab4ed-OSL
content-encoding: br

site-assets.fontawesome.com/releases/v6.2.0/css/all.css

104.18.40.68

200 OK

95 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v6.2.0/css/all.css
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
95 kB (94764 bytes)
Hash
1d54397a7fb9bd6b2775a6d9c6742fd3
cc0ba0e465c0519b9d704dea3a2e5e5a1c29afd8
b2935841849d0f146bcaa427c5e3dfe03056e35dca33d4428042b82fba08d6ba

HTTP Headers

GET /releases/v6.2.0/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: text/css
x-amz-id-2: Hh1Lwf58UqIjBWe3IcXC34CS8Wx81nrIhyKahavOKCzNCtZ7rUFMXX4NQS96njT4/ZnJmPeEdCvRCT7v5y9ejg==
x-amz-request-id: ZM6SP82N1JFM0T5S
last-modified: Tue, 30 Aug 2022 16:39:54 GMT
etag: W/"8778597c9649abf1e2a16417de22d486"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 11102142
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c1066becb6568d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-regular-400.woff2

104.18.40.68

200 OK

392 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-regular-400.woff2
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 391720, version 770.256
Size
392 kB (391720 bytes)
Hash
4a93626e358a95938a949352bb2a59f9
e87664dde6495f120f14e4cfe392b6af17d33331
096a382650b21de3c73d99257b3c58e36f916f2dbbe2a1c6c29d62cb40005821

HTTP Headers

GET /releases/v6.2.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:07 GMT
content-type: font/woff2
content-length: 391720
x-amz-id-2: h0e0QI3q00jSRVH6H/Fua5ogyhfiRrwprUHYbe5T1r0BtbkLwNuPSn+0gAIXpOEBjYdzGgOTgeY=
x-amz-request-id: J5M07JECASPJCK3Q
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 30 Aug 2022 16:43:41 GMT
etag: "4a93626e358a95938a949352bb2a59f9"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 86c10673bb911c02-OSL
X-Firefox-Spdy: h2

raw.githubusercontent.com/AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png

185.199.109.133

404 Not Found

14 B

URL GET HTTP/2
raw.githubusercontent.com/AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
3be7b8b182ccd96e48989b4e57311193
78fb38f212fa49029aff24c669a39648d9b4e68b
d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed

HTTP Headers

GET /AlexHostX/graph/a8dab531448aefaf0486e16bed4aa03c2f6d9963/grp/vcralx.png HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://375sh.ktt55.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: 8D0E:0EC5:3A95C6B:3D1FA29:6606E3A6
accept-ranges: bytes
date: Fri, 29 Mar 2024 15:52:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1711727527.952187,VS0,VE113
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 747b4731da6fcf5b98b3cf58dd114c3fcbcead01
expires: Fri, 29 Mar 2024 15:57:07 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2

raw.githubusercontent.com/AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png

185.199.109.133

404 Not Found

14 B

URL GET HTTP/2
raw.githubusercontent.com/AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
14 B (14 bytes)
Hash
3be7b8b182ccd96e48989b4e57311193
78fb38f212fa49029aff24c669a39648d9b4e68b
d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed

HTTP Headers

GET /AlexHostX/graph/94dc14483893505ac45fb857a468943b53b7810e/grp/alxgrp.png HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://375sh.ktt55.my.id/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: 255E:0DF0:2D6B5F0:2F6540A:6606E3A6
accept-ranges: bytes
date: Fri, 29 Mar 2024 15:52:07 GMT
via: 1.1 varnish
x-served-by: cache-hel1410020-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1711727527.953799,VS0,VE132
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 93568c9d04f227bb35121b87c438d1f65edaf80f
expires: Fri, 29 Mar 2024 15:57:07 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:50 GMT
expires: Fri, 28 Mar 2025 17:37:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 80057
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:32:46 GMT
expires: Fri, 28 Mar 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 134361
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i.postimg.cc/1zy57d8w/logo-wa-whatsapp-300x300.png

162.19.88.68

200 OK

49 kB

URL GET HTTP/2
i.postimg.cc/1zy57d8w/logo-wa-whatsapp-300x300.png
IP
162.19.88.68:443
ASN
#16276 OVH SAS

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
49 kB (48731 bytes)
Hash
173340596c79277a715e630c7b024f99
d843e3d67e88c81f5e332d48c22de20b61169f29
b4147576d07540aabe0913f67dcf9f1dbe2db0898ac54a57a4d178ea232c8b2f

HTTP Headers

GET /1zy57d8w/logo-wa-whatsapp-300x300.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 15:52:07 GMT
content-type: image/png
content-length: 48731
last-modified: Tue, 25 Oct 2022 11:18:20 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.statically.io/gh/AlexHostX/logAlex/main/wa-img.png

151.101.193.91

404 Not Found

400 B

URL GET HTTP/3
cdn.statically.io/gh/AlexHostX/logAlex/main/wa-img.png
IP
151.101.193.91:443
ASN
#54113 FASTLY

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGlobalSign nv-sa
Subjectstatically.io
Fingerprint28:2B:F4:9C:61:EB:4D:6B:10:9F:7B:C4:22:0E:C4:51:7A:DB:60:A4
ValiditySat, 26 Aug 2023 17:58:11 GMT - Thu, 26 Sep 2024 17:58:10 GMT

File type
HTML document, ASCII text
Size
400 B (400 bytes)
Hash
3ff5f3a7300ff541988649e1721d42f2
0844532f5097cdde9678e2edeedbadfe48614121
6172693305882d23af3cfd59637a7d2674a1cf96ee6794e4c8b82c13639c685f

HTTP Headers

GET /gh/AlexHostX/logAlex/main/wa-img.png HTTP/1.1
Host: cdn.statically.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
content-length: 400
content-encoding: br
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=300
content-type: text/html
date: Fri, 29 Mar 2024 15:52:07 GMT
etag: W/"fdc74270dce13a17fc1eedae6ef5b0e48e212bc4d400ef027e6de02f0073ee67"
server: statically
strict-transport-security: max-age=31536000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept-Encoding
x-cache: MISS
x-content-type-options: nosniff
x-served-by: cache-hel1410028-HEL
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-solid-900.woff2

104.18.40.68

200 OK

318 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-solid-900.woff2
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 318036, version 770.256
Size
318 kB (318036 bytes)
Hash
750e40b51d2b5c96c9a1901d9a0f7a45
d76fa973391599233bd5da26ed3ca5edb17b26a1
c5d9c49183cdd250b5282ddf8e8e9272b26fb15348ac8aea037ec45dfbdc53aa

HTTP Headers

GET /releases/v6.2.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:07 GMT
content-type: font/woff2
content-length: 318036
x-amz-id-2: erthxJ6T+4FtieSEf4IeDHiZqlSLKCqCvso495D7FRJ9om5dK5FYc1vcJeaVAEqFPRFaD3lfkVQ=
x-amz-request-id: RK1N3SBM2KRTZWG1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 30 Aug 2022 16:43:41 GMT
etag: "750e40b51d2b5c96c9a1901d9a0f7a45"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 86c10673ab861c02-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:46:08 GMT
expires: Fri, 28 Mar 2025 17:46:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 79560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-duotone-900.woff2

104.18.40.68

200 OK

432 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v6.2.0/webfonts/fa-duotone-900.woff2
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 431852, version 770.256
Size
432 kB (431852 bytes)
Hash
a5068b6a6f59e121a6029520952c1166
57b3750ed5ee5c38d3ea40ba681781dad4185a79
06323e048f41aef56c7753ecbb5a7a3c91113ea1a2514905c30e049cfcf06be3

HTTP Headers

GET /releases/v6.2.0/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://375sh.ktt55.my.id
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:11 GMT
content-type: font/woff2
content-length: 431852
x-amz-id-2: o5XrcrGa4nr9dTl9PPldJcH2eHumRihc7Gi1FKMT+cNLV8LSazbRUhyXvUES5Pvhoyexe3ehp0U=
x-amz-request-id: 9RNAC5HCBT718DEB
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 30 Aug 2022 16:43:41 GMT
etag: "a5068b6a6f59e121a6029520952c1166"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 86c1068f3e921c02-OSL
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-29-22-13-57.chain; p384ecdsa=GfEkdSbpcd3So7dLAkWAw-_oiVYARQC7qKFOjvj1ryE7VI8ZxMTwtyw87mILhV09O-SJoI6Y4iN7T6CMlbqnqYDVYblquEgHvzybT1oMt6FeQpcZlcYZVGfd26VDo7f3
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Fri, 29 Mar 2024 15:51:13 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 70
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

375sh.ktt55.my.id/bagas/bagas.css

172.67.175.76

200 OK

5.2 kB

URL GET HTTP/3
375sh.ktt55.my.id/bagas/bagas.css
IP
172.67.175.76:443
ASN
#13335 CLOUDFLARENET

Requested by
https://375sh.ktt55.my.id/
Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type
ASCII text, with very long lines (5644), with no line terminators
Size
5.2 kB (5185 bytes)
Hash
6c6eede9c902bf0866eeddd6e031b122
25ae33158196270672483a1e0dbda68509485a5f
80b152572eaf6ad6ebc58b3983d99fede9df16c73de5d0e9bf4a8857bcce7201

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bagas/bagas.css HTTP/1.1
Host: 375sh.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://375sh.ktt55.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 15:52:06 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 15:52:06 GMT
last-modified: Thu, 13 Oct 2022 10:52:10 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yWOT9WnABxDlH1g15oXeRJoLwGc2VcIPHCr1AU1d7xnzafHlCl0VdfK0z2VrOr03lh1qvGZ1KU9b5tX7IkumWoGPzfj63ul9srWauFfWj4C%2FjHFdBiyYEemyfMQrkIIXz22QtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c1066b2e5cb4ed-OSL
content-encoding: br

375sh.ktt55.my.id/

172.67.175.76

200 OK

19 kB

URL User Request GET HTTP/2
375sh.ktt55.my.id/
IP
172.67.175.76:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectktt55.my.id
Fingerprint8A:ED:C5:91:EA:3A:47:4E:D2:1C:E4:11:78:2D:71:BC:1D:AA:DF:DE
ValiditySat, 16 Mar 2024 07:53:55 GMT - Fri, 14 Jun 2024 07:53:54 GMT

File type

Size
19 kB (18940 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 375sh.ktt55.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 15:52:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ts0ObWREwP9r7oamMbAHz6o1PmkBxc4pNjHBNKP55UdmPkzKaG%2F1gwas%2Fd6Og8a2geLHwakKd1j1vR8EoPEzS2DZza5%2FBQADC7OgPEu29VU4WNTIrQQ8xVM4HZ1kqfq7k4RG8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c106656d38712f-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN