| ayobelajarbareng.com/3jSFIwNbTA | 188.114.97.1 | 302 Found | 4.4 kB |
URL User Request GET HTTP/2ayobelajarbareng.com/3jSFIwNbTA IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectayobelajarbareng.com FingerprintAA:C8:7C:9B:36:8B:AB:59:D1:51:46:16:95:28:A1:39:33:48:BA:07 ValidityThu, 14 Mar 2024 20:21:12 GMT - Wed, 12 Jun 2024 20:21:11 GMT
Hash37d494d13f4d10dfc050fc0f35f90255 658419e06413b2a17c4a8ca2bf785f44f453e60d 2b354a6498bb1fbece4a4f08be8573e59e343c1cbbc463e025970c32f8da7399
GET /3jSFIwNbTA HTTP/1.1
Host: ayobelajarbareng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 07:31:13 GMT
content-type: text/html; charset=UTF-8
location: https://tutwuri.id/redirect.php?ray_id=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG
x-powered-by: PHP/8.1.28, PleskLin
cache-control: no-cache, private
x-robots-tag: noindex, nofollow, noreferrer
x-redirect-type: domain options
set-cookie: SESSION=eyJpdiI6ImczeDZvWXZ3UUhocncyb3o1bWNtOFE9PSIsInZhbHVlIjoiQkJqZjBsY0FOc1JJS29VT1orRVp4VmU3TzA4Y2h5Zk9uNlhWNHZMOFB0Skg1cU0wcXJXSmd6cjcxRi9KZVRiTEg0SG15UVVvRVdKdjNsMzdIOWxDTGRmOVc2b3BEMmIxV1loMktibkRpUkw5cUFOTTJTc2xCTmxsYTl1UjlnVk0iLCJtYWMiOiI3YTViNTU1NjIwNGE2ZmIwMzIxMDA3ZDgzOWRjNzMxZWFjYzc0OTEyMzdlNjRkZGIyNmM2ZjA2ZjQ5OWJlMDM1IiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 09:31:12 GMT; Max-Age=7200; path=/; httponly; samesite=lax
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uXlh%2BdmPRff2EqJJ2wRjLpWLxhP9RdT8YgFgrzJBOEx9Sv%2Fgj86TIxg%2FLzqBszOqVS1jpd8KH9SCnHEp1k60cDJCVwxTzmUUKcc2TNNFl7H1W%2BRrFKxebDfCOZZGeSYXA6xXLPaGUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87ff82521f2bb515-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tutwuri.id/app-event.js | 172.67.171.97 | 200 OK | 1.4 kB |
IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeASCII text, with very long lines (347) Hashc7da78de508b878145d307c1122b3309 a22c9bb2ddb4f4f28f40e90bb1d3bd13616be940 8ff76fee593163f19f7e962cd86ebd6695553edca3b1299663f5c4f9821ff375
GET /app-event.js HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:14 GMT
content-type: application/javascript
x-powered-by: PHP/8.1.28, PleskLin
cache-control: public, max-age=14400
strict-transport-security: max-age=15768000; includeSubDomains
cf-cache-status: HIT
age: 2911
last-modified: Tue, 07 May 2024 06:42:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5gr59DnWLn%2FGPruaNi9TNHOwsIMjyB4hVrlovZ4JDfNQbaAs%2BF9W8qX1bkIIqB6XEEPhAPTnkgeEt4W0VAsxDMd%2FPCd3gUbAE%2FRppe3%2BeyHuUbLul9dDMEjWkV2L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff82626c4e7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hw.karossmudde.com/1clkn/57917 | 23.109.170.241 | 200 OK | 26 B |
URL GET HTTP/1.1hw.karossmudde.com/1clkn/57917 IP23.109.170.241:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecthw.karossmudde.com Fingerprint3D:F3:27:F9:91:55:42:C2:90:B7:92:C9:76:A4:BE:B5:6F:64:25:FD ValidityWed, 01 May 2024 01:07:18 GMT - Tue, 30 Jul 2024 01:07:17 GMT
File typeASCII text, with no line terminators Hash9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1clkn/57917 HTTP/1.1
Host: hw.karossmudde.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 07:31:15 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Wed, 08-May-2024 07:31:15 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Wed, 08-May-2024 07:31:15 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MC6RZC6X | 142.250.74.168 | 200 OK | 71 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MC6RZC6X IP142.250.74.168:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hashf0958a8752a2f6fd394c658d676d17e4 59e59d9c8e2752a305f39f7ea8a6e0c78fb74ad9 687867a0fcadd0acf4386a10fb23eaee7d3043513c25048f5bf68b21882ef7d7
GET /gtm.js?id=GTM-MC6RZC6X HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 07:31:15 GMT
expires: Tue, 07 May 2024 07:31:15 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tutwuri.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:53:08 GMT
expires: Fri, 02 May 2025 01:53:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
age: 452287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tutwuri.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 19:57:12 GMT
expires: Fri, 02 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 387243
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=GT-5M8N8T5&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 105 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=GT-5M8N8T5&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Size105 kB (105077 bytes) Hash3db59f1f7d41b0a229eed34c7d117aef 58aa9e9499106fb7e4b0b455eca35d0d73d753b0 c3da15fa627b4f647a727024f48cbd0b915fa7a03fbf006b37de8cd46e4ced90
GET /gtag/js?id=GT-5M8N8T5&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 07:31:15 GMT
expires: Tue, 07 May 2024 07:31:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 105077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjY17UnYt_syUNOAKAldcYPsHy288We22keIiPVPQEHyz-f75e6LfXJG3wm0L68Hp6dMApVrHbEmdsg6YWX2jYjwbNQcsK4hoGW4wwFRZFY8-wI0ELDv-WL0Ou4URYSkqw8e9bHHsw-tx0Zsuf6aFQjwesJE_5Ka1zMDAl_I5XL4GkXNOqPNSYGS9NH/s1600/download.png | 142.250.74.97 | 200 OK | 2.9 kB |
URL GET HTTP/2blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjY17UnYt_syUNOAKAldcYPsHy288We22keIiPVPQEHyz-f75e6LfXJG3wm0L68Hp6dMApVrHbEmdsg6YWX2jYjwbNQcsK4hoGW4wwFRZFY8-wI0ELDv-WL0Ou4URYSkqw8e9bHHsw-tx0Zsuf6aFQjwesJE_5Ka1zMDAl_I5XL4GkXNOqPNSYGS9NH/s1600/download.png IP142.250.74.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File typePNG image data, 260 x 70, 8-bit/color RGBA, non-interlaced Hash757cb98c95c4ac4da31f8d61c862db72 7c57902e689016c1b228dd7bd0495bd2c3eed954 967f3dc5041b8d002bb8c8e6c7df5a45b111a849b044cbdd2b7604553356dcbb
GET /img/b/R29vZ2xl/AVvXsEjY17UnYt_syUNOAKAldcYPsHy288We22keIiPVPQEHyz-f75e6LfXJG3wm0L68Hp6dMApVrHbEmdsg6YWX2jYjwbNQcsK4hoGW4wwFRZFY8-wI0ELDv-WL0Ou4URYSkqw8e9bHHsw-tx0Zsuf6aFQjwesJE_5Ka1zMDAl_I5XL4GkXNOqPNSYGS9NH/s1600/download.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v4b9d"
expires: Wed, 08 May 2024 07:31:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="download.png"
x-content-type-options: nosniff
date: Tue, 07 May 2024 07:31:17 GMT
server: fife
content-length: 2906
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kodepedia.id/wp-content/uploads/2023/08/cropped-cropped-safelinku-logo-telegram-32x32-1-32x32.png | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/2kodepedia.id/wp-content/uploads/2023/08/cropped-cropped-safelinku-logo-telegram-32x32-1-32x32.png IP188.114.96.1:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subjectkodepedia.id FingerprintCA:4C:E5:E0:15:FD:C3:EB:EC:D3:1E:94:66:B6:90:E2:EB:3D:12:21 ValidityTue, 26 Mar 2024 17:48:33 GMT - Mon, 24 Jun 2024 17:48:32 GMT
File typePNG image data, 32 x 32, 8-bit/color RGB, non-interlaced Hashb3aca224761a9532450b9ba2df159644 c5a88b79dba913797f89af419069c7686a739e94 37463fecc8180dcdc2dd3016f137f3a0192a05a31d2d7f7d5376345963d27441
GET /wp-content/uploads/2023/08/cropped-cropped-safelinku-logo-telegram-32x32-1-32x32.png HTTP/1.1
Host: kodepedia.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 07:31:17 GMT
content-type: image/png
content-length: 1202
last-modified: Wed, 09 Aug 2023 12:26:53 GMT
etag: "64d3860d-4b2"
cf-cache-status: BYPASS
set-cookie: _sl=; expires=Thu, 01 Jan 1970 00:00:00 GMT; Max-Age=0; path=/
_session=; expires=Thu, 01 Jan 1970 00:00:00 GMT; Max-Age=0; path=/
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hk0979o%2FJW0Q1QlKZhaT6bzoRxVW60mdWTHoiCraN8oQDDFZdbR%2FwYC9NXB8HnQ%2ByX4C5yvgEI9FMtBIpsr9NvndbMrjXzgL7PEYwojX7L%2BCmdb877mdYIbF9ZgGrq0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff8272cc0456af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tutwuri.id/build/assets/jquery.53d8fdad.js | 172.67.171.97 | 200 OK | 980 B |
URL GET HTTP/3tutwuri.id/build/assets/jquery.53d8fdad.js IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeJava source, ASCII text, with very long lines (807) Hash03e890f1bddfc63f2c9e908371c7182f 5b31d456ba0ae50a611044bed8e097ea60b4be41 da20f9e1d0bafee0be634b48efd13745fdc96f45a57734aeb0789dca0412f16f
GET /build/assets/jquery.53d8fdad.js HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/build/assets/link.0bd31e9b.js
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D; _ga_VV9FXRV8K5=GS1.1.1715067075.1.0.1715067075.0.0.0; _ga=GA1.1.836571163.1715067076
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:16 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 05:43:10 GMT
etag: W/"6639bf6e-328"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9sYswWkzjLpNdzZ%2Bb4Y36cz0KcNDRQ4sDN9fnokCnrDYL0ribYIH5mGxUSl%2BkXTVMl%2F12LXEAzuQFN0lF8MyxN8MXLzZ1PTFGtaKlJhCMJeQ%2FyCRcvsDkSsOE%2FN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff826998517127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| safelinku.b-cdn.net/image/Frame%2025.png | 138.199.46.68 | 200 OK | 58 kB |
URL GET HTTP/2safelinku.b-cdn.net/image/Frame%2025.png IP138.199.46.68:443 ASN#60068 Datacamp Limited
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 640 x 280, 8-bit/color RGBA, non-interlaced Hashfcc4eb3c5b1619dec9cecc0c2ed1d1f3 6cbe79662254aeaedfce36b1589009df070c2ff6 c406ef67be67acb183e91b5df6b55ab3e6ff354722a80a302cb7e984f313109c
GET /image/Frame%2025.png HTTP/1.1
Host: safelinku.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 07:31:15 GMT
content-type: image/png
content-length: 57547
server: BunnyCDN-SG1-868
cdn-pullzone: 1586640
cdn-uid: a24d8b5c-282a-425b-97db-91a13fe8d9c8
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Wed, 01 Nov 2023 05:52:59 GMT
cdn-storageserver: DE-680
cdn-fileserver: 645
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 04/18/2024 11:18:56
cdn-edgestorageid: 871
cdn-status: 200
cdn-requestid: b402fe849d9b7b60ee221e3be36c9c5c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tutwuri.id/api/v1/session | 172.67.171.97 | 200 OK | 5.8 kB |
URL GET HTTP/3tutwuri.id/api/v1/session IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
Hash06e84d7d4c8e8c783a63f82aea223e68 280471d1d9661a1254cf8f598510243631bd402c f4679f53c4e490668ce3ad4e9caa7b9881d2f6ab06ad9af3021e0aa58b30ce19
GET /api/v1/session HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D; _ga_VV9FXRV8K5=GS1.1.1715067075.1.0.1715067075.0.0.0; _ga=GA1.1.836571163.1715067076
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:18 GMT
content-type: application/json
x-powered-by: PHP/8.1.28, PleskLin
cache-control: no-cache, private
x-vt: 91.90.42.154
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
set-cookie: _vt=eyJpdiI6InBmTHBJWjYrN3loSURFTGpWSGx6Y3c9PSIsInZhbHVlIjoib3g3Z0ptaElDR0FUNUt5Um5SNUVHaDV2TU9VcXE4UElDUE4zQXprT29ZRFM1dzE4aElWc3ovVERDdEFacGdZSGNLRWNrOExHY2txaUhaaHY4SmVUR0E9PSIsIm1hYyI6IjMwOGQ3MGRiZDZhNTk3MzMwNzAyNDA4NzMyMDE3NTY3MGM0YzI4Yjg5YjNlNTY2NDI1NTIxN2U5OGM1N2Q0NzgiLCJ0YWciOiIifQ==; expires=Tue, 07 May 2024 23:59:59 GMT; Max-Age=59322; path=/; httponly; samesite=lax
strict-transport-security: max-age=15768000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EvMuWVv99QwZ4m6tddm8ro%2Bg9Qp%2FsFt1MT7rR5WWbFk2Gru2gjX6QpfRwv41jA1ferMM8ZtWPhToQitrGYA0eKOYpqVa%2F9DBvht24bu9A5Ms1hMtenPZ9eF23w96"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ff82710c417127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tutwuri.id/build/assets/axios.79f95d72.js | 172.67.171.97 | 200 OK | 27 kB |
URL GET HTTP/3tutwuri.id/build/assets/axios.79f95d72.js IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeJavaScript source, ASCII text, with very long lines (12229) Hash3da7a3fb622b012af41ff83aaa943cad 07a78abc7075edc6275baece2872adef673adceb 15b9e6a2ac7804c2245dd34d66012cb95c7c717e3d2272b6f9a98cdb9a150b1a
GET /build/assets/axios.79f95d72.js HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/build/assets/link.0bd31e9b.js
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D; _ga_VV9FXRV8K5=GS1.1.1715067075.1.0.1715067075.0.0.0; _ga=GA1.1.836571163.1715067076
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:17 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 05:43:10 GMT
etag: W/"6639bf6e-68db"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IuT9stTbAOe61dqO7Fj5rhAoBWM%2FZJRppNXUBamXvxURoU8w26dE0SYqj4Yrka8%2BOjwSvlNdizmY5wTKfpyrROfDRWZ2leHFfRU1vPktsoyB80rCLPhoXDe2Wq5w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff8269984d7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Poppins:wght@400;500;600;700&display=swap | 142.250.74.106 | 200 OK | 3.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Poppins:wght@400;500;600;700&display=swap IP142.250.74.106:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (3220), with no line terminators Hashb24ea82948308ad2eebd6c955aea7ee2 033b53a22ad02d0353ec6bb065b9c5d702832f42 c3c108b6aca64c22406d81d40b843fe57655b7347603c213fd3c303ca5c42036
GET /css2?family=Poppins:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 07:31:15 GMT
date: Tue, 07 May 2024 07:31:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ | 172.67.171.97 | 200 OK | 16 kB |
URL User Request GET HTTP/2tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ IP172.67.171.97:443
CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeHTML document, ASCII text, with very long lines (8884), with CRLF, LF line terminators Hashe9b62ee53122c6223110133d4d714444 ec20a5085ea1431b69e09bfbaafd72a247c2a71f 3a65f92fbabc599931195eac26c7500da5db54a8ffa6dd4e531ee5a9c67ff324
GET /3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 07:31:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.28, PleskLin
cache-control: no-cache, private
set-cookie: SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 09:31:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
strict-transport-security: max-age=15768000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wwT7Iv6WHx20K%2FEXyPszj7X3ykApekOcBBxhgu5Rvml3ocVfEs5G8RQ0d5eYKY0Eu9Lv4idJMqEl%2BgrDeMaONm8YdHk6q6intEoSjfVs01wwVzN%2FfON8%2FocHo7%2FW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ff82588fea5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tutwuri.id/redirect.php?ray_id=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG | 172.67.171.97 | 302 Found | 16 kB |
URL User Request GET HTTP/2tutwuri.id/redirect.php?ray_id=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG IP172.67.171.97:443
CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.php?ray_id=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 07:31:13 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.1.28, PleskLin
set-cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; expires=Tue, 07-May-2024 09:31:13 GMT; Max-Age=7200; path=/
location: /3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/
strict-transport-security: max-age=15768000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eL%2BOTKL%2Fwz6DoiWf0b0NTV43GcOwn2SJ5FiiGTQFbAFHkC%2FdjhTOIlHs%2BJdp7tHYPYFZ35hqd86YbNSfR%2BtzrZGzfcAOMJTkhwXt2JuYYcZHCTvt1z98kbV8U5EP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ff8256ecb95693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tutwuri.id/build/assets/app.2f131b20.css | 172.67.171.97 | 200 OK | 14 kB |
URL GET HTTP/3tutwuri.id/build/assets/app.2f131b20.css IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeASCII text, with very long lines (14348) Hashae1f99b13c278c406171368729a317c7 169f0c3d152fde0ad495987e58cefe43a3a77c32 2f131b20a731792da4d0ca04b25e27b111c7adf819ca16bc89cf96f19efc21cb
GET /build/assets/app.2f131b20.css HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:14 GMT
content-type: text/css
last-modified: Fri, 03 May 2024 05:07:32 GMT
etag: W/"66347114-380d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6582
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N0If4EMVRgbn40OmDVheCu%2BdPTwxohKa74hbP4Jbazyro24cNZu5mzRz8veCPw9lo75%2BflnNxgPXEw14iLdt%2BYJTY3ftzvk7A9ive3NnF0pDgk9yMnEe7IKL4r3R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff82625c377127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tutwuri.id/build/assets/link.0bd31e9b.js | 172.67.171.97 | 200 OK | 6.2 kB |
URL GET HTTP/3tutwuri.id/build/assets/link.0bd31e9b.js IP172.67.171.97:443
Requested byhttps://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/ CertificateIssuerLet's Encrypt Subjecttutwuri.id FingerprintF1:94:9B:7A:12:99:3B:83:8F:FA:FF:C0:96:53:1E:11:16:D4:BE:60 ValidityFri, 26 Apr 2024 14:17:43 GMT - Thu, 25 Jul 2024 14:17:42 GMT
File typeJavaScript source, ASCII text, with very long lines (6451), with no line terminators Hashce878a2c1a644197b530b39b43c27e46 53145da6bf2013c5ff476ebab6f8bf1e1605f1d4 869192aa5b6f9fea79831dec1e16490f569f1067e9ec908b3e727609b6a077bd
GET /build/assets/link.0bd31e9b.js HTTP/1.1
Host: tutwuri.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tutwuri.id/3-manfaat-menakjubkan-minum-air-hangat-saat-berbuka-puasa/
Cookie: _session=dq3qKMbF6hCBK9tANdz9uG0uJ7gnZrvG; SESSION=eyJpdiI6ImdKbERWZ3RRUmtsUGQvS0ZuUGJweUE9PSIsInZhbHVlIjoicy9Sbm1xNkY1YllicDVUbEphZlBiZU42b1ZEVnoyWUQwb3p3RnhwNWxIc3pNVFJWdEtDZ1JodndiSEF6eU5vcjJtbnVXMGpNcE9SRTZpMnZPQXJpbU5vVzgwakNiUEt6aGppNmJ1ckJiWFpCejFpM0EycGhzZlVrR2UvR3k3NGIiLCJtYWMiOiI2YTE0MmMwNTI4NDI5N2U5OTU4Y2ZkNzEwNDJjYjc0NzQ2YzdhMmI0NzllYzM3ZTk2NjE5MjUwYzBiNTYzZTA2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 07:31:16 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 05:43:10 GMT
etag: W/"6639bf6e-1828"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w4E81K8cr0Jt4LRFc%2BKRz8CUcfO2UojmG2soGMY40D8XkeFwA%2Bkk%2BU95dra4vgbuZel0FhdzLtuB%2Fvpi4nORjS5f09%2Ff5ksXxRZ6%2FYHtqoHs%2B7EC5OlQgnGC%2BLSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ff82626c507127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|