| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 4.4 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (23577) Hash04425bbdc6243fc6e54bf8984fe50330 8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5 541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65993750-110c"
last-modified: Sat, 06 Jan 2024 12:19:44 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 88471
expires: Mon, 07 Apr 2025 18:22:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=US563v298iEUZ3LkxGeNTMNn92mVEW7SPWbTQBHywdIq3aGZTBwDDaVykvVM%2FRFDf3fm0hFDSL8jHfMwlmO0819jEmRgMKc%2FRz46QPjL%2BMcOTBZL1rux1viNf8iniAL59Pss3KSM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875e70576c8c56bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/info/navbar.png | 172.67.195.69 | 200 OK | 8.5 kB |
URL GET HTTP/2filebagasarya.com/img/info/navbar.png IP172.67.195.69:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typePNG image data, 904 x 339, 8-bit colormap, non-interlaced Hashf29c416a7c6f18ba0c0deb4980763c9d 56c7bfbf2c9a7a2be2e2214b0586c11af8e852bf 7f37cb926c06378327ad2a753c7119291b2ead796a6f588a8374de651ec72a8c
GET /img/info/navbar.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: image/png
content-length: 8459
cache-control: public, max-age=604800
expires: Sun, 21 Apr 2024 12:11:34 GMT
last-modified: Mon, 06 Mar 2023 02:41:35 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 281434
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IZRMXKGt1ebS7nDY8N%2FQvJxSS6P7KHTBAsCIiycnJPdOLG7hRqpl4M1jIz0Ltc9yewQIpOK9rOPuIvfXB91NYUEzbeRjz6foHOl9HoN3hH3ZTRe%2BpgKlgx6l55lNPbRZ8LYIWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70578a6c56b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filebagasarya.com/img/info/modelFb.png | 172.67.195.69 | 200 OK | 32 kB |
URL GET HTTP/2filebagasarya.com/img/info/modelFb.png IP172.67.195.69:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectfilebagasarya.com FingerprintF8:10:79:DD:D9:42:FF:FD:E3:35:9B:09:62:4F:9B:40:07:DD:BA:85 ValidityMon, 26 Feb 2024 19:06:41 GMT - Sun, 26 May 2024 19:06:40 GMT
File typePNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced Hash571fc0253c6f01c953d4274981fc9d66 5331c3ae96ea4d421f8bde0d3e5565024c8c3abb d3a1d3bb7a7c79edc9a08de2369f4f7f201a0852bfaf5526716382fc7ad902a1
GET /img/info/modelFb.png HTTP/1.1
Host: filebagasarya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: image/png
content-length: 31990
cache-control: public, max-age=604800
expires: Sun, 21 Apr 2024 12:11:34 GMT
last-modified: Mon, 06 Mar 2023 02:41:27 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 281434
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jr6XDAfzEhQsn%2FmBkxuhlBcKcBSKb3C4ynosO5zI1g00ZNpePxXzRXaCYSDuGSCcfJotMaPa5fNhFzsbNGp2P%2FUfyNwsY8yCcsFPDAxBimdJ0WcojRpgQrhcMPXVLZfCHSSOTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70578a6a56b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| | 172.67.164.225 | 200 OK | 3.9 kB |
URL User Request GET HTTP/2IP172.67.164.225:443
CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (325) Hash49e7729f4560123c254204b299a75a45 a42acbbf59c73673b1c7c805ba1f61f46a868661 1589ef1213377ebb6269415a2859bbe76d551556cfbdc0eecb67797bd4969438
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cPyeb6BcTIwww%2F%2FAM9B6op9eXY9ZdTI%2FWoWNuAy1iiGTmz8ZHe49zOvKcCphqXgilyYWo2ZJLVAkF5NsRfgJRy%2FiM%2FWimaKq3%2Bw92HCz%2FnlRE%2FngxGUaJlJdL%2FmZy%2Bu%2BTWzWmeA5jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e7052da03569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/webfonts/free-fa-solid-900.woff2 | 104.21.26.223 | 200 OK | 127 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/webfonts/free-fa-solid-900.woff2 IP104.21.26.223:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 126828, version 768.256 Size127 kB (126828 bytes) Hashd60a1707d7a69023a566fee0f0804a79 00a6fae0a2d0d5ab1125bb3f7aec55ee8165607e 28e42bc5102996223a42faf19a8abd7436644f3bc6d25a9f5de6add426ba138e
GET /releases/v6.0.0/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://4ljkzmjs.ajsik.my.id
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: font/woff2
content-length: 126828
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:20:18 GMT
etag: "d60a1707d7a69023a566fee0f0804a79"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rWGfFn_iv1tsxfYtqcGfT5e5LXR58ENiQkWZBSElxnE0gJjsVPpxsQ==
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eDWyDonl0Qczi7A4bTp9sXQIyjYiZfvSAcMvRVbhUcZM1djrukNHEr5VGbBpJvqFU9gsKUssE2BpB6pNA%2B%2Fgy35sQt2B%2BwxR1viNyp2sgl0X4%2BA%2FcNgC1AsnSiOO8fmoVfWSoZZKSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e705bbfe856b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/2.jpg | 172.67.164.225 | 200 OK | 318 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/2.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1338, orientation=upper-left, width=1080], baseline, precision 8, 1080x1338, components 3 Size318 kB (317872 bytes) Hash198b4688a55d56fe595c575f7a8d72ec c9b1b93ade82c7eb4f7122f561ec8c2f1c3495d8 ac356b700825729449e2f4fd444202ddcc01fcd7994f38ac68c41f1985fb3b93
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/2.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 317872
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EsNdVt%2BPaOeHQFmRMe%2B6XB2DwbysBtKn9ctiWF4BTs4O%2BDf1gnSkwYBNUIc2OSxsDBODE%2F8Ay1CsUVsvIbi35ggTu9FjIWIU8%2BfH0jqQ8UDZ%2F%2FtRFynk7iqvdtYu4Yiccb%2Fgp%2Ba1ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e3f1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/4.jpg | 172.67.164.225 | 200 OK | 398 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/4.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1311, orientation=upper-left, width=1080], baseline, precision 8, 1080x1311, components 3 Size398 kB (398410 bytes) Hash8f6d5ae3b36dcf953f84fb5a3c91f7be 9b4ffdf5b8d016f535b382dc1cac0479a7cd6df1 d84340948139f08b015956e80cd456713b3e5a8b9f49ed98998bf5760c61b99f
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/4.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 398410
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Vhpy9rySqxexxFHC7xL7tdcGh4e%2FkNX4oTFlpZb%2Bdgm6qsSmfrV3EUt9PS6d%2FgiPQ29EjtKR1bQQbyDkjlqlDJGe7OjVpS7x6UfTq8X2qtAz9SfIpmzGxZyYqa3%2BShpH%2Fdx%2F5FGDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e421bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/1.jpg | 172.67.164.225 | 200 OK | 436 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/1.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1340, orientation=upper-left, width=1080], baseline, precision 8, 1080x1340, components 3 Size436 kB (436234 bytes) Hash51de73fbb580f36ad5e0e281ea416290 bdaac5c6e01a38b6df049b4c5302beed82fcb190 f825d417cc8f4edd039d65af764402a404e8bb1576129c1009cae4784b99d161
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/1.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 436234
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=amZaNH8mvseCsQnrGq0EKXLQIasVQ4GV%2FybwgaEUNrOOqL3aAp4xP1GxcrrDRp7PyTisFquHgFXKu3n4lT2dorPIt9mSD8m9oJtDV4VG9pQ%2B1wbOb91GzD5Wh0439IGHQPuFNcjV%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e3e1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/3.jpg | 172.67.164.225 | 200 OK | 467 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/3.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1383, orientation=upper-left, width=1080], baseline, precision 8, 1080x1383, components 3 Size467 kB (467135 bytes) Hashbd9e860a5b50e58baebad565f351a607 31eeac0f3896716e171d99c81f39af465ab6c912 cb60ab3c5d87c3fbe7710d395f4a2520824fe72ad95c98d9fd181be7e537c47b
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/3.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 467135
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2pBE54DQyb8%2BUA4xzHVSYPBKZ0sx8DLUZbKJ2bOTeAto54d%2BBCpx2W5JDiMyp3OpM2gSsjbGiT%2BFupSb9ZPNyeX6TVUalIidisa0VS6lH9%2B4dZ1lmGDLLdhhVmjcSIjlGFLArE10hA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e401bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/5.jpg | 172.67.164.225 | 200 OK | 270 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/5.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1332, orientation=upper-left, width=1080], baseline, precision 8, 1080x1332, components 3 Size270 kB (270087 bytes) Hash9974b7375f46c5b4792c68e18141a8ce 63285762745e2af136bd7441bb1588eda1b7dcc3 00ff95ead04807ca97392ce1b811c727f8b31ddf98b999d64de4fd0831f6aaea
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/5.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 270087
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zc0q166L5pEHUtuDTSpCle1NOka3Fy%2BHPQ%2Fn5qPkZ8T1WQuwmopfmvQfFT39qHXneNSSn905ZWecz4hi2rZXFFz2ZFJa%2FFKrmOVchzrKMh0bDnh910nFCglKH2lhbedrC%2FXKCr8SrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e451bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/6.jpg | 172.67.164.225 | 200 OK | 619 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/6.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x2400, components 3 Size619 kB (619315 bytes) Hasha71315a7d6cfa57b203ce3a86b306545 64c85ede8110d033d7a0dffc7683b2948010aaa7 6cff9602d15981227873f525750e868f33e788cecdd9d10bbf04ae386e57aeb6
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/6.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: image/jpeg
content-length: 619315
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ttDvNBRVcDbq7qI%2FTNC7T2bqn8MYC9vmlujlk9Wctfuenq6Gx4wjg95uTxBBOXNMT52dTvMg615uj4VVaXFb58g%2F7hA%2BS%2FW4hbgJ9YJ3zZWA4%2F9%2FTo46knMM4gpJiMFQoju8YJzxMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70575e471bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/img/7.jpg | 172.67.164.225 | 200 OK | 276 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/img/7.jpg IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, height=1306, orientation=upper-left, width=1080], baseline, precision 8, 1080x1306, components 3 Size276 kB (276449 bytes) Hashc65ee8479f833dd2ad59c713f5d29be4 76fcd1894374879538e5a8498b76c53761f51c75 33ef716cc51efdbb2464109b5c267d01acaa5692d21531ce3d6a2731cafa505f
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/img/7.jpg HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:10 GMT
content-type: image/jpeg
content-length: 276449
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:10 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u5vu1Bg2%2FHDVNE1zhbSBbi8V0OmuNn5SHqEw20%2BI35UUSfsXiE%2Ff17UHlXNNC8YM5jjox9lkS7EOzjOrknY3LQeeSBYdXcWVdfvB7AIzc%2B7zor%2F100iv4maB8Lhb%2B5CvFZI9bvpIVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e70576e4b1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/favicon.ico | 172.67.164.225 | 404 Not Found | 9.8 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/favicon.ico IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash8150f458ed6fb9b1db4e5cfa57a1a281 6e5726854d28687b560d7fdcb5c782c425c7dfb9 4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 18:22:10 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4T4E%2F%2BvtCdo45q52PkpRCVJcgmTFMmtYvCYNV32TyEJYfYHRxKJWGZoB2pdfA%2F8RBUxincu83ZkdpoqjLGFrSxRr1BLghrrhSMGciM%2BV3ccn%2FZ4ID6sxGBxuXLuM%2Fw5JB3yMNFd54g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e7060ccfa1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 15 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26019) Hashc32e971c7d11c2407f847b61c515f1e2 85ac47a05e49f01cd62301ee121a2ca0dfdc0f83 a7fb3a26d569bec0139baaae950e43c1e10b0afbcf6e9d7654aa1181a8319759
GET /releases/v6.0.0/css/free-v4-shims.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ljkzmjs.ajsik.my.id/
Origin: https://4ljkzmjs.ajsik.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"c32e971c7d11c2407f847b61c515f1e2"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KpGOcUxU1aU777z8rqgeiWVg6ea2C0NSZ-lYN_r2vhVX9MgiFooW7w==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YQTFmePWJaQprJydzLQZLfUmfjPnyed3kwoQzsxgA0paZ6GGaO1OH7U9%2BNKY12MVSndlx8cF8erSn8TDEZwTf9MqzeGSMz7CU5M5EE1ZsPbWtJTZCBbQbbAx0VKwHnOxPPgQFoDQEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e705aeecd56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 90 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Hash345f5ecc270c94968998574a2d37e31a 4b1937ca073a8376a07161bc40549585493ffa3d efad9b46d0c00f2562eb53236717ff21ebd474f8d68f69b45f92c424bfd87e9c
GET /releases/v6.0.0/css/free.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ljkzmjs.ajsik.my.id/
Origin: https://4ljkzmjs.ajsik.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"345f5ecc270c94968998574a2d37e31a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vA245QkeYObNMTOW5k7PO28PmEw67r-0pORawYN18QlR8GYDRad6tg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jwam3H3v0wrufrn%2BxjEHe9MBXVxK2DRqNgymKH%2B6jG4PVa7q7STYH2X4oxIcZ9KwscXF5yxzumAh4tngsea9Z6%2B7o%2FLM%2B9JQIg5h8Jvq9z6X%2Bw7LIVFw9%2BiswWDt3Blh0O6nv2v54A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e705adec856b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4ljkzmjs.ajsik.my.id/bagas/css/asdhwalex.css | 172.67.164.225 | 200 OK | 9.6 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/css/asdhwalex.css IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeASCII text, with very long lines (10661), with no line terminators Hash8d92f229f4e1f722c2318863c636b917 10aa3db63326b9b54b758c9641b26b2a1e6b7023 e88b0cd845f20df78ac3edc24e4b253a80baedd8ee000aa20e58a06c7ca45cbc
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/css/asdhwalex.css HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=96YoiPnx%2BczMd8nYb2LgQwu7FcXA8Aiw36d2SRFQe58n8Ev5nTAsv6c8VATRxAEW1Q487lhb5yeRyPMpbtMVxbCnpwXGyqgcY9llM7OXZMNmVaRNxrhv%2B3mYQid6U7KyeoT%2F7b9m%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e70574e3c1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/css/bagas.css | 172.67.164.225 | 200 OK | 5.2 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/css/bagas.css IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeASCII text, with very long lines (5644), with no line terminators Hash6c6eede9c902bf0866eeddd6e031b122 25ae33158196270672483a1e0dbda68509485a5f 80b152572eaf6ad6ebc58b3983d99fede9df16c73de5d0e9bf4a8857bcce7201
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/css/bagas.css HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B%2Biuy9co2FKaORhvDZf23ePsnvf%2BjUrTrzlVw5E6IVX0fyw4WUvOY4bQ9%2FR%2B42zsBKp52cgd3e2ta0d7QEUiE%2B2yCk8JMy%2FW2cCBs6o%2BLdyJBRCUxLVbdVhkfbrYfjjDg5UznVpSRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e70574e3d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| file.gifan.id/fontawesome.js | 104.21.234.35 | 200 OK | 11 kB |
URL GET HTTP/2file.gifan.id/fontawesome.js IP104.21.234.35:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectgifan.id Fingerprint65:21:CF:78:C6:F3:9C:82:42:72:2D:29:CC:E1:28:F9:68:C7:DA:50 ValidityTue, 26 Mar 2024 02:33:24 GMT - Mon, 24 Jun 2024 02:33:23 GMT
File typeJavaScript source, ASCII text, with very long lines (10594), with CRLF line terminators Hash7653d4719abf98a98d6e9412e33976e6 0b4414adc9da488b97830ce789a79994ba55aa23 051afcaea280590a5c6a5c472ad0852783d794a8923c4d26e388656fc9dcd791
GET /fontawesome.js HTTP/1.1
Host: file.gifan.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 19 Apr 2024 20:53:15 GMT
last-modified: Tue, 03 Jan 2023 12:39:32 GMT
vary: Accept-Encoding,User-Agent
x-powered-by: Niagahoster
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 422933
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8SRRG%2FmOBlIgbXiAgxEuZ1R%2BeUU9nhZAIrCwFWCvVEwKzJzNQOI6zo7HRb%2Foijym6kycQ0AigBUSbF%2B5E2E5lroo2ELTt6oYUeQTeL1PO7c1jJjJWTSDXtL9IfK%2Bijm%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e7059ada7653b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 1.8 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1817), with no line terminators Hash3dedc00973400e03c5ede855beb3e8b5 c72d245eb6fa18840821a7d53634a4f8ac5119d0 a45344d4b89aadfcddc80ff5e6de83bcbb2799a2af99a046e1cea1dd6fe0f28c
GET /releases/v6.0.0/css/free-v4-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ljkzmjs.ajsik.my.id/
Origin: https://4ljkzmjs.ajsik.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"369cbeaee8e26da69cc5b0a0700cd62c"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S4V9qXKHajf2rIfsyoh1rJxHgWK3GXKWYDxqZQrZS7Ag_JNH7Xy0Bg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dYX%2BaIGyUyqBUHRfprS1wR%2B4%2B8gub3Zaldkn2%2BVzq7Ps8mMUjJdf1JBbCQNR2pCGZSvJtwdkK78EbLbuP%2BLgHg8f7w4ipAfx6A6YnQr9ceoSTpERF6zP%2FRI59oo9S%2BaeDzI2bUOcqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e705aeecf56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4ljkzmjs.ajsik.my.id/bagas/css/style.css | 172.67.164.225 | 200 OK | 2.2 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/css/style.css IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeASCII text, with very long lines (2365), with no line terminators Hashb858815ddc4049b401b7018f5a65833b 82db2023a0628c64506de796101dbabed7b82634 c287f947d9d13bb1681a46eadbf29a54fff14bcc781d05df790ad434f19dae3e
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/css/style.css HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:08 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:22:08 GMT
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pd5iFiwxGEEfClpPbb7T9MI6ojvHXB37VQ%2FEXI4Fkj60Dl1o%2B7eofhZ8f0gf%2BtNL9XxSIDuWzT9jG9fKAP%2BcEYq4zuzhbKenYL98xrvD0LMcgahGmmwspSU8u3IZrho9wLGybPiZow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e70574e3b1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 4ljkzmjs.ajsik.my.id/bagas/js/bagas.js | 172.67.164.225 | 200 OK | 90 kB |
URL GET HTTP/34ljkzmjs.ajsik.my.id/bagas/js/bagas.js IP172.67.164.225:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerLet's Encrypt Subjectajsik.my.id Fingerprint16:16:E9:30:24:2A:2C:3D:5E:E1:8A:C8:B9:79:96:84:A1:35:46:85 ValiditySat, 06 Apr 2024 14:46:17 GMT - Fri, 05 Jul 2024 14:46:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash7c14a783dfeb3d238ccd3edd840d82ee ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b 80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | Quad9 DNS | malicious | Sinkholed |
GET /bagas/js/bagas.js HTTP/1.1
Host: 4ljkzmjs.ajsik.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://4ljkzmjs.ajsik.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/javascript
last-modified: Mon, 18 Mar 2024 16:59:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t89i1ZJDAzY%2B%2B43LWZ96T%2FCnUplLRH11T%2Bv%2BI5%2FcJwk1jt2hyf7PBfPe%2BU1hzJJiQp4rpxIIgkaR9UPLjj64Mvr5F%2FAWZlwEQRnbf8uJEQo39DSeJSoOgsBwS3zGVXyVLo1Eu1g0sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875e70576e4d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 | 104.21.26.223 | 200 OK | 823 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 IP104.21.26.223:443
Requested byhttps://4ljkzmjs.ajsik.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (845), with no line terminators Hash1af9af6e84d6fcbedffbf79321ca46b2 0f8c679ef763d2ecdc4d775dbe9af668b2284644 ebb1355be44fef0caf09c3740d278ab9461238e988fd43375d389a16e39bed8a
GET /releases/v6.0.0/css/free-v5-font-face.min.css?token=869e25b803 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ljkzmjs.ajsik.my.id/
Origin: https://4ljkzmjs.ajsik.my.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 18:22:09 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 07 Feb 2022 20:11:39 GMT
etag: W/"e8ee688b3310772b65f39c69b76f4720"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1ad9dzoi5CdQxIqtxL1eOBcNOrovitq6OHHV4YsvGthqHJlJEKJMRg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xM8kxW%2B%2Bd7lhYygocgR8eafOi6tt6bUmOPRB0ddTT9GglbshrUm3GoFwvCn2ndL%2BraMlfucaTgF%2Bzt%2FSbu03Rm25zDSSDEOEhZkJHXFTzxcDOsetn2v4sQ4gNobPl7U1ruopMP4SDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e705aeecb56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|