Report - s.id/-Rj3k

Report Overview

Submitted URL
s.id/-Rj3k
IP
45.126.58.78
ASN
#132647 Pengelola Nama Domain Internet Indonesia
Submitted
2022-09-23 19:44:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	60 kB	34.120.237.76
static.zdassets.com	2154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	249 kB	104.18.70.113
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	186 kB	142.250.74.72
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	446 B	1.9 kB	142.250.74.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	8.9 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	9.1 kB	142.250.74.3
api.s.id	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	2.8 kB	45.126.58.78
shortener.zendesk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	1.5 kB	104.16.53.111
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	5.2 kB	216.58.207.194
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.80
s.id	134714	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	756 B	682 B	45.126.58.78
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.27.12.161
home.s.id	488728	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.6 kB	374 kB	45.126.58.78
ekr.zdassets.com	2396	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	1.5 kB	104.18.72.113

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-23	medium	s.id/-Rj3k	Phishing
2022-09-23	medium	s.id/-Rj3k	Phishing
2022-09-23	medium	home.s.id/forbidden	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c	109 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-07 23:59:15 Times Seen1 Hash 013849d9a94cf149f21187367227b389 9e62d92139acd8d0d5c8991d7085a7222ec778ae 90a74b5eef14de981c9b6d83c50d513d13e21720e88a2ecfb3a25fb697cb07d3 Loading...

	home.s.id/_next/static/chunks/7872-69379fc9c596b843.js	24 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/7872-69379fc9c596b843.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 0700b85614baa9c22510b2cf8ea41f9d 3f4e46c73232a82884045022179cceb3b717b6f4 0b34428edaec452caf0568bd24ec670101765467d5b9a90d7f0488e69edcc29d Loading...

	home.s.id/_next/static/chunks/9482-11d4c584bc6ab4a7.js	12 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/9482-11d4c584bc6ab4a7.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:27 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 78775378d0e9c6d405c1493551566546 b0714a031214053bbb4706a620149f19a07cb57b 6b79a8b1dded50dbf36a649a7ebe7025169f0ab227ce17d930ba0175b83e6bff Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.google.com/pagead/conversion_async.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:40 Last Seen2023-03-17 12:55:48 Times Seen1 Hash cedb242a337140e0dedb365b50a20508 cf2420a336b9405dfc7d236ec57873fe3ef0f726 5a39699f592d82029c73d15d80e407d51367dd5cf2d49172c9ad4aa8176ce67b Loading...

	home.s.id/_next/static/chunks/7612-5c8913792969eec8.js	10 kB	2023-03-07	2023-03-10
Pretty URL home.s.id/_next/static/chunks/7612-5c8913792969eec8.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:54 Last Seen2023-03-10 12:57:41 Times Seen1 Hash ab5f4f49a64329bf249016fd8f82a5df 379d8ba226e4b1ed3ea3e036cf64187ce81d4428 2cec73dc1c79ecdfa4c67284440fd41a816fce792a46fe322f248c9b2c4852ba Loading...

	home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_buildManifest.js	7.1 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_buildManifest.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-08 00:00:54 Times Seen1 Hash bc422d85f6fd04572930d872703f66d1 ca697fe50b65a7249a0b1ba9975a64d5b8c42b1b 25d1f3992676efa4d37d72495c4187be77d9f549583d3dc3011099f563764954 Loading...

	home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_ssgManifest.js	91 B	2023-03-07	2024-04-25
Pretty URL home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_ssgManifest.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:40 Last Seen2024-04-25 19:41:36 Times Seen620 Hash 5ce0d2713404bd05c9502cc490488dca 552f4970f95812a42a366cf0752db5c4c4218236 ddeea69d5116852145775870dab4d86b4e909e7a02c03465efaa67d5b0f744be Loading...

	home.s.id/forbidden	36 B	2023-03-07	2023-05-10
Pretty URL home.s.id/forbidden IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-05-10 02:26:28 Times Seen92 Hash 34f9fbe5be142c7d9c9146eb225d512f d4e2ab3e3646d75abb2325c51db0433bd3dce4df 854e16bd70a075ebc78a1db6ca15512e4936501394a99590b5f66fd0c8ba61d9 Loading...

	home.s.id/_next/static/chunks/pages/index-933cb35cb4bc46d3.js	38 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/chunks/pages/index-933cb35cb4bc46d3.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:54 Last Seen2023-03-08 00:00:54 Times Seen1 Hash 3b22f1a974fed98bc872b2a459b33e56 842ac0d783e87eb9eeb0e3e1c9c42079452c22f8 b361db4f3e959d56ffa5ad7f42ce084e3df9947866b9c175b22d35594050d0ef Loading...

	home.s.id/_next/static/chunks/4585-ead23108a1d9658b.js	48 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/4585-ead23108a1d9658b.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 0865c8cc8e4b74c078b1fce21632772b 55e717b9bd2f7740dd64bae023ebe268116ea854 bf68d2d32d7ab60069db959da72233dfdea81673b1089c061d9404a6347c3836 Loading...

	static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f	23 kB	2023-03-07	2023-07-05
Pretty URL static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:26 Last Seen2023-07-05 14:48:33 Times Seen125 Hash 5cae6ce528dce0c327b2bcbaad459fdb 802aa044d8f09eb89502b5343a1623a5ab0c6c32 c71a7bdc6e1f2f8875556b690007a65be9e5ae1fb285f76d85180c89a3fa52d2 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 07:48:50 Times Seen37086609 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	home.s.id/_next/static/chunks/pages/_app-b64d1363b071881e.js	284 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/chunks/pages/_app-b64d1363b071881e.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:05:11 Last Seen2023-03-08 00:00:54 Times Seen1 Hash 7b265f3e7f43e81538a4b12f9de39dde 0de5b780d5590ccd1d8bd2d83dffe925e3c4a098 4f6d89fdf7cf2063d3bbeff79f05566e0b1eeb8c4dd62597f36935aa20cddd65 Loading...

	home.s.id/_next/static/chunks/30846afe-750ffd8af7660562.js	491 kB	2023-03-07	2023-04-02
Pretty URL home.s.id/_next/static/chunks/30846afe-750ffd8af7660562.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-04-02 21:33:31 Times Seen3 Hash 97a1c110684814bfb074249099d2c236 0ec922125980b1553f1408274bc321aa2bbf6796 000a561b6390b3ea620c9a90fe5b6204fa3eb8b30841bbbfc24df970efacc7ef Loading...

	home.s.id/_next/static/chunks/pages/forbidden-ddb8733aac40b90a.js	6.3 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/chunks/pages/forbidden-ddb8733aac40b90a.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-08 00:00:54 Times Seen1 Hash 221a90231dd75380aacdea2347110582 f829c19e639b4a4ffd7a98b0505c88bdbd2f10fa 5bf6d44b58bebaba3420de658ef291ae06afa501cfcbbaed9cecf665058fa8af Loading...

	home.s.id/_next/static/chunks/webpack-0c00c7772e16c321.js	4.0 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/chunks/webpack-0c00c7772e16c321.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:05:11 Last Seen2023-03-08 00:00:54 Times Seen1 Hash d1613eaa01e0c79291bf54f20afa51df fe26e1258c3d70250820cfcdc98038645de067ed b82d5b25002345bbe3a88e69e5e5856b87f8805b4b6905f74f7e5b0a098e7e76 Loading...

	home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_middlewareManifest.js	92 B	2023-03-07	2024-04-26
Pretty URL home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_middlewareManifest.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-26 01:56:33 Times Seen7651 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	home.s.id/_next/static/chunks/2055-29857a3491d54b72.js	39 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/2055-29857a3491d54b72.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash d5fcdd31d7761b9d0a026c7db5376d92 fe01238fc8882ffca3027372b510697df6bc6d29 da5485ce64ffb3982a9ee0f54ef0f15a83b0c61622d02e2b60f4838434d9293d Loading...

	home.s.id/_next/static/chunks/3457-2d160cd6bd60e525.js	11 kB	2023-03-07	2023-03-08
Pretty URL home.s.id/_next/static/chunks/3457-2d160cd6bd60e525.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-08 00:00:54 Times Seen1 Hash 719dd5b43cdd753181d6fd38f6d632f0 7c0ac1b573fdea14a5fadec2a3ced2a7e3853afb 285d373147ef0617d5615615d72ade88fff8a7e32f3de03d6c6d8a319845bdf9 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html	9.8 kB	2023-03-07	2023-03-17
Pretty URL googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:04 Last Seen2023-03-17 17:17:05 Times Seen1 Hash c5a01b9bdfc392b3a440c04c25d912a0 9f741a618cc001a197f4fd39dda831059be42db5 e789ddac14d96021d2c048d3428317d12aa8f1a5c326ba957c3792e879982e6f Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1663962282046&cv=9&fst=1663962282046&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&auid=1105722914.1663962281&hn=www.google.com&async=1&rfmt=3&fmt=4	2.3 kB	2023-03-07	2023-03-07
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1663962282046&cv=9&fst=1663962282046&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&auid=1105722914.1663962281&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-07 23:59:15 Times Seen1 Hash 4987c5ea9c4da34ef4b8b705de16a06b 39c17e1a35e553ad8acd91bfe54cd58dc9d7c3ad c538dfb7b328718540023c1d8d36d24fc01ee34c9425cae41e4488ed86d35477 Loading...

	www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5	212 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-07 23:59:15 Times Seen1 Hash ab3b09c2bb82152b3c8344fdbcf8214e cf5ac6799d941b6dc45009651664b5204d5e64ed ac9a111f2fa5c3aa6045a9a6949be353e0b8dc1eb7a42ee3febb1cf22310e553 Loading...

	home.s.id/_next/static/chunks/main-8b014bc75d51f7fa.js	88 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/main-8b014bc75d51f7fa.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 09f1d2ae922968a56e1e879e44daa6ff a2e9558b2961c75afc5773e7336eaa3e49ef5374 c7343b2a7b219a26714bb42603bb74e11827c63c3fa6ea199934c31f94ecd16e Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-4959cd4.js	11 kB	2023-03-07	2023-03-08
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-4959cd4.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:54 Last Seen2023-03-08 03:11:30 Times Seen1 Hash b744e2ccf8c1e040a6fb4396c824c4aa 18ccd516771ed3ee39e85e4fd594bc473ede5b3f b1416a961145f425cb4dc1c6c19b842de979b1d2e88e3a651dea48f56539d69f Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9809-4959cd4.js	29 kB	2023-03-07	2023-03-17
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9809-4959cd4.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-03-17 11:33:44 Times Seen1 Hash 7f90e3a97a3bcf5c1aab74f58af70fcf 062191d31d8b4b2da9a2465bb16f665f846c64a6 2510b807540118c7902fc2a55344cb5b8be791d830c6e37cecdb70f30125b034 Loading...

	home.s.id/_next/static/chunks/3445-e0dabc1cc72233a3.js	23 kB	2023-03-07	2023-04-02
Pretty URL home.s.id/_next/static/chunks/3445-e0dabc1cc72233a3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-04-02 21:33:31 Times Seen4 Hash 9c86deccf61f9979a9ae5611b802497d e29aace1c27688761ee380f33b0865afdf627722 e6862fd972e70a3fcec167534bac28efa7c82f2da946998c3ac7b84b06dff47c Loading...

	home.s.id/_next/static/chunks/framework-2c0d4c8786a7f937.js	130 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/framework-2c0d4c8786a7f937.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 851700791552a96b1f7000ffb5cdeb18 7a485ae035304d37dee9bd70bf0770ef0479aa0a 4b21c6c53df7067ee279bb028de704e41144ed0e13ae8bbcae4f09424579ce62 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-4959cd4.js	14 kB	2023-03-07	2023-03-08
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-4959cd4.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:40:14 Last Seen2023-03-08 01:28:36 Times Seen1 Hash ed900884d4c10829362ad380c8f8012a ba6afabd2a7c81d523a255ee78d0491d4bccbbb7 0f820907d54be4ad93b8cb8df0e9c4c4e8c390c3ea562332506b0c0089571bac Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-6965-4959cd4.js	142 kB	2023-03-07	2023-03-17
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-6965-4959cd4.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-03-17 11:33:43 Times Seen1 Hash 94893c94656a16938d2cfa70a87f063f 63f014ae80adfeeb93e3ad92065cd34f71fd39dd e2bdb33defe4c63e549037d3294462ae4c5913d793affd48ab60562d6b8062ab Loading...

	www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7	215 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:59:15 Last Seen2023-03-07 23:59:15 Times Seen1 Hash dd5addf17e8419210bad4f8c3f4fa9eb 6cebe155ce1274ced4e549cf4a339968977b3ad1 f150a7dc714d0f49efc2e0e73721be31d96653162d31efbb01f5f6c7654f7e84 Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-401beb9ea3bd83e9b796.js	150 kB	2023-03-07	2023-03-08
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-401beb9ea3bd83e9b796.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:40:14 Last Seen2023-03-08 02:10:02 Times Seen1 Hash ca364dd1a5fc1e2861160ee6bffcd7fc 5e0537a5615ba5d2ae3777ebb4b6f4f5c2753650 6783bc22d46ca05d14703dfa990a15809e5ff306e89779b3583c9faadfc352df Loading...

	home.s.id/_next/static/chunks/1832-994d63c72268c780.js	23 kB	2023-03-07	2023-03-10
Pretty URL home.s.id/_next/static/chunks/1832-994d63c72268c780.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:05:11 Last Seen2023-03-10 09:45:17 Times Seen1 Hash cb68fc61604a299d4e93cb0918deb88a cdc7c677acb639451cdef37988a67550cd5e321d 32baf425facdc8a54233a5fbe98dfdfcf7d83ed9f95407b7bdfa63c6d7f441c8 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-7695-4959cd4.js	180 kB	2023-03-07	2023-03-08
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-7695-4959cd4.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:40:14 Last Seen2023-03-08 01:28:36 Times Seen1 Hash 83f40cc655eee9776af55beaac35218a 72fd7928ab5b9c8154852232161b69cc022ccdfd 6997ff3f9c1bd8477a71ab37ed79fd6b5f9ea442fda042e649b6f0331c2a0ba7 Loading...

	home.s.id/forbidden	356 B	2023-03-07	2023-03-26
Pretty URL home.s.id/forbidden IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-26 11:00:51 Times Seen12 Hash df3311eb41590c51eacb8de72e1f99f1 0e8d4aa68763aa30f07da1b88c3245ec57ad8cc0 c1bae130a612edf37c474ec41494d23e108ceac56646b82d77682e4c90fa8c82 Loading...

	home.s.id/_next/static/chunks/4547-a3bfd900aa9724bc.js	88 kB	2023-03-07	2023-03-17
Pretty URL home.s.id/_next/static/chunks/4547-a3bfd900aa9724bc.js IP 45.126.58.78 ASN #132647 Pengelola Nama Domain Internet Indonesia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-03-17 10:33:59 Times Seen1 Hash 9f01cb3de617a3323f662748d341c098 618ac084bab9af04a7c73d8373374cd2861bf254 c482a970e0f0484b31e2486795114acfb97bca0fc8195f42d191b59acc154e79 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-5302-4959cd4.js	402 kB	2023-03-07	2023-03-17
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-5302-4959cd4.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:13 Last Seen2023-03-17 11:33:43 Times Seen1 Hash a616b27d61e6f188879cec37f917ddb2 b68b19ffe26229d7745dfad06628ceddb6293a95 e2de0b4e59b3f8c76891b577f852441aaac61b23a8f880af402d78f9b0a82215 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9865-4959cd4.js	12 kB	2023-03-07	2023-03-10
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9865-4959cd4.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:54 Last Seen2023-03-10 09:45:17 Times Seen1 Hash 918658ff8c4ac8883f56e3e4a29abdcb dd0fce7f244f26b13a1a59035fda23270fd5eab1 6e5ffc7cd496feafec30b2968e6e560550f3819c3e37fcd12b255b911b0ab8ce Loading...

	home.s.id/_next/static/chunks/9068-825ff9bad811d97b.js	57 kB	2023-03-07	2023-03-10
Pretty URL home.s.id/_next/static/chunks/9068-825ff9bad811d97b.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:53:03 Last Seen2023-03-10 12:57:41 Times Seen1 Hash 0b80f23c42a143a3f885e5cbb63db189 97f767410389303466cadecfab586677e02441ae 0d7df51954d0a2472974532a2c93a4168bee924676b8e898cecda01275075af0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

HTTP Transactions (74)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.165.201.80

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 19:05:14 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e963d9388521b938ab0c2d19e2400bee.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: e1p-0bo2EjpYj1UtGjc5OxbT9B2G-M-HkPEZl7vsoHpfuYFXtP5ZTQ==
Age: 2364

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3812
Expires: Fri, 23 Sep 2022 20:48:10 GMT
Date: Fri, 23 Sep 2022 19:44:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5940
Expires: Fri, 23 Sep 2022 21:23:38 GMT
Date: Fri, 23 Sep 2022 19:44:38 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Ya2OW8aS3X/333wnWL2MpmlfcKjGlRnsVrPa6bwL3dBX9I4BqEvm4SeNpEtmGx8tKSXgrM/JU2A=
x-amz-request-id: N62JJ1X34VFNK9WV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 19:44:35 GMT
age: 3
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

s.id/-Rj3k

45.126.58.78

308 Permanent Redirect

164 B

URL HTTP/1.1
s.id/-Rj3k
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
164 B (164 bytes)
Hash
f23c4815ecaef1588f16ac735c0e15d6
026bf8cdd5076014b6fc822878e0086eb44da556
43a81fb3d47b34e7d42d6b8444f592ed9251b8e57db8f67d32419aa40b1480d0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-Rj3k HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 308 Permanent Redirect
Date: Fri, 23 Sep 2022 19:44:38 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://s.id/-Rj3k

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 19:44:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.80

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 19:33:00 GMT
Expires: Fri, 23 Sep 2022 20:31:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: mb_JnRuv3ScOjp-9oymUy3SafBFwXOwg3N545yDZJr-g5f5Ywr-U6Q==
Age: 699

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c2f5b13ba02f341e35761fb59bd4a732
0764491f0f353c05cfcb632ed45d3277d9f69dbe
a1fc8d8fc68ea1b6907ef113899970b3f791b85b53aaa6677b2f769754c4d32f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1FC8D8FC68EA1B6907EF113899970B3F791B85B53AAA6677B2F769754C4D32F"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4062
Expires: Fri, 23 Sep 2022 20:52:21 GMT
Date: Fri, 23 Sep 2022 19:44:39 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4602
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:39 GMT
Last-Modified: Fri, 23 Sep 2022 18:27:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

s.id/-Rj3k

45.126.58.78

301 Moved Permanently

62 B

URL HTTP/2
s.id/-Rj3k
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
HTML document, ASCII text
Size
62 B (62 bytes)
Hash
59ef6bbd71d08362b769338b80a312d8
942420a343c04856e82b2591170bd39b9142fe58
8e597275d5252c3051abfd15667a1bdece7665319fc0e27a7a8ee176a2fff223

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /-Rj3k HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Fri, 23 Sep 2022 19:44:39 GMT
content-type: text/html; charset=utf-8
content-length: 62
location: https://home.s.id/forbidden
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.27.12.161

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.27.12.161:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B5h/FZvS9/INHuvCyA/zGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MaGwzSE188XagIKph0Zl66R7NpA=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
75b4a8a475117d6bf7ab34d30e570f87
d1e7a21be7f2bba73693540b6571dbeae9f1b614
de091117f15fba498286fd7cb017dd0689a55ced08227d43f245bdd575002343

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE091117F15FBA498286FD7CB017DD0689A55CED08227D43F245BDD575002343"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4692
Expires: Fri, 23 Sep 2022 21:02:52 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13146
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13146
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13146
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13146
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13146
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 19:44:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8029 bytes)
Hash
02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 78978
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5340 bytes)
Hash
3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 77594
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (14579 bytes)
Hash
f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:48 GMT
age: 77572
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10127 bytes)
Hash
b877ead4a15221fdd278ef27f281a7ec
48c10714503e8dfdd3e3c3d39b919ef2792f0d15
f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gWZNsIn_FEbYwMeR1JArmPEgyuHEGgWsfb-wB6P_NrmoHhNgvGWoPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:07:28 GMT
age: 77832
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7005 bytes)
Hash
1985a957e6bc0c15d8489fa731e7f14e
4584bff61bf4d5c9b8fd3b97c048a8e6975e4323
9f3e1fd6e18d85d4f6645d077da643a3bc2cca611d5e85f534ba798102dca243

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7005
x-amzn-requestid: c805d882-7a00-4abd-a239-d8313d7df0c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4aBwEaMIAMF09A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd6d7-6d6a417f10c9628a16d438e1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7edV0FJytVSpHH-WkCiYzhW1JP4L6i6bpPCq9MTxPdhwFQTryf06BQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:53:16 GMT
age: 78684
etag: "4584bff61bf4d5c9b8fd3b97c048a8e6975e4323"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8497 bytes)
Hash
7606ff88f05062b66970d9805f38987a
d47db5fcd83023b4a8de40a47d4510e183de387a
20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8497
x-amzn-requestid: 8543ac70-48ab-4523-856f-5d5fa1191c97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yin-pEryoAMFTfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324205d-660bba3f655f940d143bc437;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:06:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e9KUFhjuFMzjuh37rFiNKaMNVaGZwPGBkLrv0zgfSTT7dCIuWj4G9Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:27 GMT
age: 77593
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.70.113

200 OK

6.7 kB

URL HTTP/2
static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23416), with no line terminators
Size
6.7 kB (6682 bytes)
Hash
f87cd010aa82602c6d44dc79a3d81c14
ecabbc06e2f7e532c42051c43d0548c764463df4
c9ef6d02510c552ac6e04ab54fac387dbb21c2d66556eff117b1b3ef969e1281

HTTP Headers

GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 36
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tbMsZHb07ewNXQv0%2B8RbqbY57DVC7%2Fpc67QUrTAmSc4NzjTrC32jOidcVL5O73TO6VbRDwJMEFiqbJvNQOqClU0vn4SsUqiSy%2B5PacF1GNPvLKz0kAekIKhoxC%2F0EI24CCxj7EA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c04ab9b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10823601447

142.250.74.72

200 OK

61 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-10823601447
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1827)
Size
61 kB (61070 bytes)
Hash
1f768c219fa896c47c891cafef908f82
8993b74fc4c948041991af159b145d42d2c96d52
e586a9e26f40bfb88b5e04ee22faca974aec0366cdd476e2e6721cd26815a26e

HTTP Headers

GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 19:44:41 GMT
expires: Fri, 23 Sep 2022 19:44:41 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61070
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7

142.250.74.72

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (20189)
Size
75 kB (75153 bytes)
Hash
b4228403bf6661c4805620a9782950bc
5fa3ab669c0be33995fa8dc1ab9ba751adeff218
550243594d767360c619abfc048390ff5f127dfdf3a5f6295745bfef32f59bd9

HTTP Headers

GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 19:44:41 GMT
expires: Fri, 23 Sep 2022 19:44:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75153
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f81d321c15c87e7147d792d08ebb7513
47f30d4ca38e6753a393965219321b0394ebb597
390ae5f5435d3f8c8b7f1fa8d7e2a3ebf55ea5dbe98aa3528dd562df4c295753

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5

142.250.74.72

200 OK

48 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 19:44:41 GMT
expires: Fri, 23 Sep 2022 19:44:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74538
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_middlewareManifest.js

45.126.58.78

200 OK

92 B

URL HTTP/2
home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_middlewareManifest.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
7c3f7e060745668041278118c0bb3d6d
e639f56695b3cc30d78dce7a0084aa8299a1311a
de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a

HTTP Headers

GET /_next/static/Ph8-xc0UbE2wzcAxkr3cD/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
content-length: 92
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:52:16 GMT
etag: W/"5c-18359744680"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_ssgManifest.js

45.126.58.78

200 OK

91 B

URL HTTP/2
home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_ssgManifest.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with no line terminators
Size
91 B (91 bytes)
Hash
5ce0d2713404bd05c9502cc490488dca
552f4970f95812a42a366cf0752db5c4c4218236
ddeea69d5116852145775870dab4d86b4e909e7a02c03465efaa67d5b0f744be

HTTP Headers

GET /_next/static/Ph8-xc0UbE2wzcAxkr3cD/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
content-length: 91
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:52:16 GMT
etag: W/"5b-18359744680"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/9482-11d4c584bc6ab4a7.js

45.126.58.78

200 OK

3.9 kB

URL HTTP/2
home.s.id/_next/static/chunks/9482-11d4c584bc6ab4a7.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
data
Size
3.9 kB (3856 bytes)
Hash
721c3b2d97513b5c74b946eebbab3fe7
ccb213d950af99e129d009784149fc5f70cc9e5b
dc824a2b694f1da653d905b4096c3dad9d6a95e8781ea60b082bd4ca89e6902f

HTTP Headers

GET /_next/static/chunks/9482-11d4c584bc6ab4a7.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_LJQ0V44EV5=GS1.1.1663962281.1.0.1663962281.0.0.0; _ga=GA1.1.463692415.1663962281; _ga_98MWVCBDD7=GS1.1.1663962281.1.0.1663962281.60.0.0; _gcl_au=1.1.1105722914.1663962281
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"2dfe-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/pages/forbidden-ddb8733aac40b90a.js

45.126.58.78

200 OK

2.3 kB

URL HTTP/2
home.s.id/_next/static/chunks/pages/forbidden-ddb8733aac40b90a.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with very long lines (6332), with no line terminators
Size
2.3 kB (2279 bytes)
Hash
92388f9023f5be464dde3fe1306f2bae
500bed00b35cf07bbc7221130595f855063ff667
ea7817182b79ff12f04d53a32d6183ffa3e934011317a1b58a991e9a18a65210

HTTP Headers

GET /_next/static/chunks/pages/forbidden-ddb8733aac40b90a.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"18bc-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/30846afe-750ffd8af7660562.js

45.126.58.78

200 OK

201 kB

URL HTTP/2
home.s.id/_next/static/chunks/30846afe-750ffd8af7660562.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with very long lines (65536), with no line terminators
Size
201 kB (201238 bytes)
Hash
80da6234d08166b5dfdb70b0d7617fd0
aa76a2a2787dd0ef0cc076575e231eb93efff485
88ca573a3e4583fe994a1d73c2f391ad488951843e50144b2f302e97414e5935

HTTP Headers

GET /_next/static/chunks/30846afe-750ffd8af7660562.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"77e43-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1190 bytes)
Hash
f51b5bc497701ca69a9bebdd0bc1ee58
d227ae2b7a511efab55c9b31dac8998d165d1909
106772e4de35088877e31d63c3b5802faca172e2df13f265c8d8ef4cdf34c5ce

HTTP Headers

GET /css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 19:44:41 GMT
date: Fri, 23 Sep 2022 19:44:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-7695-4959cd4.js

104.18.70.113

200 OK

61 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-7695-4959cd4.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
61 kB (60770 bytes)
Hash
f1aac39490364702115e13a54bb22f4b
abd99e1aaed75dc07090d75bc6fa167b9278b642
f4bd040a3fec629f26c3d4f926589cc5d4383f1858a511eb5e1c3198b6a101a8

HTTP Headers

GET /web_widget/latest/messenger/web-widget-7695-4959cd4.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: JiPGDKNrY7/jPcaf40qzO0NZwqizkI1A3dkrlE8RiwSU/dEo8v9cT70cIN+JKZ/pQE8aCt9JuNA=
x-amz-request-id: KR05QPSAP45RCZ17
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 23:59:03 GMT
etag: W/"83f40cc655eee9776af55beaac35218a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Mon, 18 Sep 2023 23:59:02 GMT
x-amz-version-id: rzr2V0ph.OQ5.ww7B5kcDyXzrEWnw3tS
cf-cache-status: HIT
age: 396132
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=waM0CP1OZAkspSaXRZCFfwUXbXNUBYTVDuHKCDhq3EsdvlgEJ5ixBvABIqm08sLJKHvnZtLttSPfLmkPjLKmsNfuharPphrU%2Fmx%2FsmZha2lARYEku70axsvvK5WQI7VskZjW%2BYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c558adb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.72.113

200 OK

214 B

URL HTTP/2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (319), with no line terminators
Size
214 B (214 bytes)
Hash
e89f7b5848f76920dd178d53b0b0f43a
efb5b84b203fe9475c986c2db5fd7aef101be97a
82627344cb1f62a4026e4210139a4f4bb6bb4052b55a4e1390b9f882d57e3158

HTTP Headers

GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"1b0bb110b7e42158f45279ba06972b85"
x-request-id: 10ca419f0b24bd6129fdf19bb8af920b, 10ca419f0b24bd6129fdf19bb8af920b
x-runtime: 0.004064
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QsJAU1Ewf6Pe7my7gQKEDluXxOBU%2FADp8oSeK7ZkebBOlYMlC6Z90Vje3aQbp4ntRc06%2FFpWb5AGTFJ3E5YSILAKXw9vOasT9lgAffIZJDA%2F0HyaILwGh4okEBox9FN2OBM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c0ab74b505-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e6561e23e9d181a4b18c7174cb89a590
221a300522f62c4bde7dd23420609a12ae3bd5b6
a66e6d4e834dfd29d86921222d86c7f8ac5d11a4e0c83ab40ff150629f2b9cec

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.s.id/api/user/subscription

45.126.58.78

204 No Content

0 B

URL HTTP/2
api.s.id/api/user/subscription
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/user/subscription HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
date: Fri, 23 Sep 2022 19:44:42 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

shortener.zendesk.com/embeddable/config

104.16.53.111

200 OK

397 B

URL HTTP/2
shortener.zendesk.com/embeddable/config
IP
104.16.53.111:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (647), with no line terminators
Size
397 B (397 bytes)
Hash
3c2c8414f6e28bb404a7152e8971c848
4639647c1d798e009e2ea7fbdf8434e3a4d39165
55fc461852ea8502c4b7bfa53a2cd5ce95a6a2a7be2aee88e9519a168abbfef3

HTTP Headers

GET /embeddable/config HTTP/1.1
Host: shortener.zendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: 
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-5d9ff9448d-tmtpn
x-request-id: 2da349de6c41cc63ed5570fbef8de389
x-runtime: 0.002487
vary: Origin, Accept-Encoding
x-cached: STALE
last-modified: Fri, 23 Sep 2022 19:11:37 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeeX2Wxx64GhN6t4zpk9L143oJ3qm%2FOd4rXf4euPTKpe3p4Mjhf995To3N8o7ssorHg7nOeLkSa9G33argW29yOUa9YSvJXZ5TetreTV8Uct1nmx4Oq0SgPesnZLf0Qm%2FSJ6BWuQ1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=1aabb6ae53f7be4349069f025014fbf792faf7e0-1663962281; path=/; domain=.shortener.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 74f5c6c3cba00b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/web-widget-framework-401beb9ea3bd83e9b796.js

104.18.70.113

200 OK

176 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/web-widget-framework-401beb9ea3bd83e9b796.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
176 kB (175453 bytes)
Hash
f7ae8c5a5292fecbcf9ad08f8313fd94
e8a4b9e307d81fdeef08053cfeaae35718f2e61d
811e5bbc99de5ff778f04ec3ad047ec3f06be1b8b2cea94de338c332506e6abf

HTTP Headers

GET /web_widget/latest/web-widget-framework-401beb9ea3bd83e9b796.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: iNAyJETtSRa7aAiJfv/3HTVWx1e6RG5YaiEPBGn99rD66kacStSrVUA+RXaTSAfwvG8attB6FRk=
x-amz-request-id: PC57JS0X04V9MTPG
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 23:58:39 GMT
etag: W/"ca364dd1a5fc1e2861160ee6bffcd7fc"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Mon, 18 Sep 2023 23:58:37 GMT
x-amz-version-id: UReOa9Mepubnz5Cn2_rcFnisRumO4QKg
cf-cache-status: HIT
age: 396164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z2rKFOvvShy9hsFnYKe1wqbYirXj%2BkKBNsGBX%2F6JOd21wJi7II8pXHtY6u4li9A2x5rV%2BTuLUSyvTP34FpYck5Ii1tqYJqwzeXXCKCgqYuoW2QiGBBy3yNAquZQauspcXPagGGw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c34e03b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_buildManifest.js

45.126.58.78

200 OK

22 kB

URL HTTP/2
home.s.id/_next/static/Ph8-xc0UbE2wzcAxkr3cD/_buildManifest.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with very long lines (7098)
Size
22 kB (21841 bytes)
Hash
5cfbed446ef4f12a40eb466956dfaae6
23578ea2863570d14ab5370f6617a1d58545d5e1
7a6190e7e7de129fa544281747c0369eead698a55dd5584d057636c6a2b64c3e

HTTP Headers

GET /_next/static/Ph8-xc0UbE2wzcAxkr3cD/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"1bac-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
75a6c13f18620214e5e013385d752044
174c34759a1e50884846a2505f0be16c285d75cc
fe6fcbbe324ceefc1e833208faedaeae6934b34f868690e5ad4676b02c0b3bf0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

home.s.id/_next/static/chunks/main-8b014bc75d51f7fa.js

45.126.58.78

200 OK

88 kB

URL HTTP/2
home.s.id/_next/static/chunks/main-8b014bc75d51f7fa.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
ASCII text, with very long lines (65536), with no line terminators
Size
88 kB (88102 bytes)
Hash
e085da58558e06cc480639ca5d878d49
062bd30bd3c1d145c8cf6b08736023c1b92c4cef
8821d54969c97e94d29b317183918464c3a0f4fffece2d8c6035ab1b15b9403a

HTTP Headers

GET /_next/static/chunks/main-8b014bc75d51f7fa.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"1579d-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/forbidden

45.126.58.78

200 OK

32 kB

URL HTTP/2
home.s.id/forbidden
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (54530)
Size
32 kB (32445 bytes)
Hash
d829ec2bb70635992440d2a70dea0222
8910b4e420fefe7197d3e5a12b04879e57e9c983
30243c4cd3839655b3d1a8960dbc51e57e74c173c05dc60a89c0b828110cb6b2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:40 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
etag: "d51d-wplMxLj1IKifyPvRS2vEGRtgcl4"
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/images/landing/forbidden-bg.svg

45.126.58.78

200 OK

1.1 kB

URL HTTP/2
home.s.id/images/landing/forbidden-bg.svg
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.1 kB (1086 bytes)
Hash
2841f912fe1bb350888d8a2c01748ede
82d05aaba06568597990d67d4db8e9abddd0a184
25b408199557116ab7241c48312173f13b4c982580c7a0ebacd2b4ad00d22775

HTTP Headers

GET /images/landing/forbidden-bg.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Wed, 09 Mar 2022 08:04:39 GMT
etag: W/"97f-17f6db565d8"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/pages/index-933cb35cb4bc46d3.js

45.126.58.78

200 OK

11 kB

URL HTTP/2
home.s.id/_next/static/chunks/pages/index-933cb35cb4bc46d3.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
data
Size
11 kB (11026 bytes)
Hash
825e33ab6b366847b1a028c7febc06a0
299df92aa81f5b8464af479b0ee6efffa4ad8433
a118e41c932e06a91b30bc890a10cb148a56997cc9f2ad38a4ad415794276a06

HTTP Headers

GET /_next/static/chunks/pages/index-933cb35cb4bc46d3.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_LJQ0V44EV5=GS1.1.1663962281.1.0.1663962281.0.0.0; _ga=GA1.1.463692415.1663962281; _ga_98MWVCBDD7=GS1.1.1663962281.1.0.1663962281.60.0.0; _gcl_au=1.1.1105722914.1663962281
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"92a2-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

api.s.id/api/user/subscription

45.126.58.78

401 Unauthorized

46 B

URL HTTP/2
api.s.id/api/user/subscription
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
3e045f8140311a5d93b18caf7bb5a22a
eba94f022a58ac7b4949627ffa44219ae16abff2
6cbc48a7eca00d019c32182594b66b4ed31b8e1d129a77738cae8d2de28097ba

HTTP Headers

GET /api/user/subscription HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1663962281,kj459z,e1969dbd509b40859e6bd745a5a5d5c5
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 401 Unauthorized
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/json; charset=utf-8
content-length: 46
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
www-authenticate: JWT realm=sid-user
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

api.s.id/api/user/me

45.126.58.78

401 Unauthorized

46 B

URL HTTP/2
api.s.id/api/user/me
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
3e045f8140311a5d93b18caf7bb5a22a
eba94f022a58ac7b4949627ffa44219ae16abff2
6cbc48a7eca00d019c32182594b66b4ed31b8e1d129a77738cae8d2de28097ba

HTTP Headers

GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1663962281,qlvq5y,6ef0fd76c44b343cd14c5f3c67d3f7ad
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 401 Unauthorized
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/json; charset=utf-8
content-length: 46
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
www-authenticate: JWT realm=sid-user
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 19:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

home.s.id/_next/static/chunks/7612-5c8913792969eec8.js

45.126.58.78

200 OK

4.1 kB

URL HTTP/2
home.s.id/_next/static/chunks/7612-5c8913792969eec8.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
data
Size
4.1 kB (4061 bytes)
Hash
344d9200978ba1b4dc3f6a81d2a6bd3d
9aa075967ec9ad87ad2fb0e89125b4b7512a71f8
12c55c4bab11ed8b02154f7be5b5e4ab630ebec224fe9a94b10d86dc617a287f

HTTP Headers

GET /_next/static/chunks/7612-5c8913792969eec8.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"28ed-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html

216.58.207.194

200 OK

4.4 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Size
4.4 kB (4420 bytes)
Hash
682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f

HTTP Headers

GET /pagead/html/r20220921/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Fri, 23 Sep 2022 03:27:15 GMT
expires: Fri, 07 Oct 2022 03:27:15 GMT
cache-control: public, max-age=1209600
age: 58647
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

api.s.id/api/redirect

45.126.58.78

200 OK

469 B

URL HTTP/2
api.s.id/api/redirect
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with very long lines (469), with no line terminators
Size
469 B (469 bytes)
Hash
a986c42aab43f215b2cff47a241682ad
6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b
81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149

HTTP Headers

GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1663962281,c3a7jfh,ec9f81d40bfb552b9fad7b5d458c1d64
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/json; charset=utf-8
content-length: 469
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e27e65a47b89798dc34f03c4bbd4377c
8e33fdbfc413ece10b39f17ed936bd42a28ecd9f
b38a4b924cc54258c40543be29cffc88bd0ff44692e776e0925542abca9d85a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B38A4B924CC54258C40543BE29CFFC88BD0FF44692E776E0925542ABCA9D85A9"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13023
Expires: Fri, 23 Sep 2022 23:21:50 GMT
Date: Fri, 23 Sep 2022 19:44:47 GMT
Connection: keep-alive

static.zdassets.com/web_widget/latest/messenger/web-widget-9809-4959cd4.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-9809-4959cd4.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-9809-4959cd4.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: cIThPRwtD3wVpeGEWUIZX6TsvteilSAj5D91GQPgXdp/fo5kQQNnfwkgjf2ngw6kl/IMNlpgST8=
x-amz-request-id: KR02SXQ65E8T88GP
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 23:59:03 GMT
etag: W/"7f90e3a97a3bcf5c1aab74f58af70fcf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Mon, 18 Sep 2023 23:59:02 GMT
x-amz-version-id: ypYG7bBDyW2aszrLt8zVTjhRv3Uq_KSO
cf-cache-status: HIT
age: 396133
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V9SDmg9mi6ii10mWGoJPGIA0zqbPAIC5ariaWNuCHtZ%2BK%2Fjtg43nJXBvy9qlTtRzwTzRewZ8KzwmmVf7oTQIfPmPFYEh3uPfULpBH8c0P0zEWwc9CqChNQjtQramLKReJbCJu5E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c6fb36b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/webpack-0c00c7772e16c321.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/webpack-0c00c7772e16c321.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/webpack-0c00c7772e16c321.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"f8c-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-4959cd4.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-4959cd4.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-messenger-4959cd4.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: +ixtLu+KysSmXV/l3nTaTF+KkqiEbnTdHAGYn0LAWyJkBIAo4if50vBRGFchnNOMEP5oRQCk11c=
x-amz-request-id: KR0925T3YV2KNBZJ
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 23:59:03 GMT
etag: W/"ed900884d4c10829362ad380c8f8012a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Mon, 18 Sep 2023 23:59:02 GMT
x-amz-version-id: BJNSXxwoEtZIYlhBz1xLcFAzoDvdwV0a
cf-cache-status: HIT
age: 396132
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1XbxxSCzoOLaR8bqJacSd0COrAK19dzybCXYOQr6pWpxvfSAjXKeWI%2BgVEqClYGdIwag%2FvbmhT8HHr7OUBvNDxtlIkfWNUfyhHClQ6XeLRbGh7nJxHNYmGsWZnk9mHam6Sl%2Fyn0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c52873b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/2055-29857a3491d54b72.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/2055-29857a3491d54b72.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/2055-29857a3491d54b72.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_LJQ0V44EV5=GS1.1.1663962281.1.0.1663962281.0.0.0; _ga=GA1.1.463692415.1663962281; _ga_98MWVCBDD7=GS1.1.1663962281.1.0.1663962281.60.0.0; _gcl_au=1.1.1105722914.1663962281
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"9906-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/css/0f3b7005150a3040.css

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/css/0f3b7005150a3040.css
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/css/0f3b7005150a3040.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"14384-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/pages/_app-b64d1363b071881e.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/pages/_app-b64d1363b071881e.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/_app-b64d1363b071881e.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"45677-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/4547-a3bfd900aa9724bc.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/4547-a3bfd900aa9724bc.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/4547-a3bfd900aa9724bc.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"15981-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/images/sid-logo-new-light.svg

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/images/sid-logo-new-light.svg
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/1832-994d63c72268c780.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/1832-994d63c72268c780.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/1832-994d63c72268c780.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"584b-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-4959cd4.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-4959cd4.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-4959cd4.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:42 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: bPUKiZy2Bftc0+f+6VE1iLBxV9Q5ct2qt2dfh9Poz6C6sKoCLgPJ4al3DgeOr7cJePIU9DkJFgU=
x-amz-request-id: KR0C7S9GQS199ESB
x-amz-replication-status: COMPLETED
last-modified: Sun, 18 Sep 2022 23:59:04 GMT
etag: W/"b744e2ccf8c1e040a6fb4396c824c4aa"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Mon, 18 Sep 2023 23:59:03 GMT
x-amz-version-id: Umie3FKYnsJeKeVlXOl0sJyaGQR3T6Bn
cf-cache-status: HIT
age: 396122
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCiKbsnbfN2pn8vxpQ%2B7jkdmxFefutXIqkdSeoxVcJqTfXFoH8MnmDsDXULNmAviYeE91adzGlcCB5%2F8qCbTPfizXpgKuHNHTO8rz5i0wpvdkutPpasJlt7UyWwV3H%2BwT6Xk78o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 74f5c6c6aa77b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/framework-2c0d4c8786a7f937.js

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/framework-2c0d4c8786a7f937.js
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/framework-2c0d4c8786a7f937.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 05:51:48 GMT
etag: W/"1fbd0-1835973d920"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/images/adg-red-ring.svg

45.126.58.78

200 OK

0 B

URL HTTP/2
home.s.id/images/adg-red-ring.svg
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/adg-red-ring.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 19:44:41 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations