r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4883
Expires: Mon, 06 Feb 2023 15:52:55 GMT
Date: Mon, 06 Feb 2023 14:31:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12538
Expires: Mon, 06 Feb 2023 18:00:31 GMT
Date: Mon, 06 Feb 2023 14:31:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 13:34:04 GMT
content-type: application/json
age: 3449
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
134.209.96.191301 Moved Permanently 162 B URL HTTP/1.1 solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /uiux/assets/css/login/auth/login.php?myaccount HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 06 Feb 2023 14:31:32 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20147
Expires: Mon, 06 Feb 2023 20:07:20 GMT
Date: Mon, 06 Feb 2023 14:31:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jKJLgqt/jd2P9zsH3NPb6roCehJ3R4uCD3GDqJ0DNmmjHNvL6M7y6tMaz14V785jsmwrRlKGAb8=
x-amz-request-id: 4ME1FPZYJDDQ0PPH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 13:53:43 GMT
age: 2270
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:33 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 14:07:20 GMT
age: 1453
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9482
Expires: Mon, 06 Feb 2023 17:09:35 GMT
Date: Mon, 06 Feb 2023 14:31:33 GMT
Connection: keep-alive
push.services.mozilla.com/
34.211.126.51101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.211.126.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BBt5gnTfqQtdU2vOY8EZ/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zYPxJo+BvsJyuimrP37KqQV9rMw=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2203
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Last-Modified: Mon, 06 Feb 2023 13:54:51 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6009
Cache-Control: max-age=113621
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Etag: "63e010a2-117"
Expires: Tue, 07 Feb 2023 22:05:15 GMT
Last-Modified: Sun, 05 Feb 2023 20:25:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/moment.min.js?ver=143134
104.17.25.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/moment.min.js?ver=143134
IP 104.17.25.14:0
File type ASCII text, with very long lines (58823)
Hash 48342f85265e1ef95883b48352d8a901
4aca39aa1a6059cd73a3c6c8e8db6e704d5f6172
8d42979137cc37cb51593048aa96e73d7035948b75d4152fcd352052fb3c49ed
GET /ajax/libs/moment.js/2.29.1/moment.min.js?ver=143134 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 14:31:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 16919
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7c5ca4-e5ee"
last-modified: Tue, 06 Oct 2020 12:01:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1541592
expires: Sat, 27 Jan 2024 14:31:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YuDJEDe8CYE9YmOBLkrWNg4jcEl0cBfpUs139Bo8TAqNkoPhuONkyM7nGUFJ2eY0bvOPhtnCTdexE%2FIeB3H2wlSTn4PCwNezlnZlRwWMwr6lZ4mOy%2BBguuv%2Fl%2B7ww0WZ3ytGwtmJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7954971b8a72b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=143134
104.17.25.14200 OK 666 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=143134
IP 104.17.25.14:0
File type ASCII text, with very long lines (1386), with no line terminators
Hash b8e89e3d496f42b6683e85c4490bd3d6
5576d394c1bda87f9b65bfe310e98ffc1faadd7d
d8280ec34d9683e83b11bd3c50f114fc1f659f08f9a97effae40166ac6a9a42c
GET /ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=143134 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 14:31:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 666
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7c5cac-56a"
last-modified: Tue, 06 Oct 2020 12:01:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 90864
expires: Sat, 27 Jan 2024 14:31:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PlgnLivkwnO6u1%2BLKeg55LGGaQkovUD6Qp04Hj4CgGzNg77scMwz46dj4nym%2Fcbk5V68ApSKBDX56hfseKe7680Rakrr1AQcVOOzWOAYsdRQnm35OguJGUTRol8zGsJ9MCC46CKJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7954971b9a7cb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2203
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:34 GMT
Last-Modified: Mon, 06 Feb 2023 13:54:51 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=UA-130934886-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-130934886-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 3cf34301552c098a47802c2ecaf1a6c4
ca38355e716fd689faa7c4f227a6b4dd48d4c107
b845aeccb125caf5c97177ab43c7dddfc49031be2020515753a8f18ac2b7ccca
GET /gtag/js?id=UA-130934886-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 14:31:34 GMT
expires: Mon, 06 Feb 2023 14:31:34 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43884
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MCCNN84
142.250.74.168200 OK 62 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MCCNN84
IP 142.250.74.168:0
File type ASCII text, with very long lines (2916)
Hash 6119b1f9c4a79424229feeac18ac7880
703b23df0335ac254739593682e79aa231d23dec
37c8ee30d236a50667243c234e1571482f8464b3f339f8cad9ae4713a99ed65d
GET /gtm.js?id=GTM-MCCNN84 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 14:31:34 GMT
expires: Mon, 06 Feb 2023 14:31:34 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&display=swap
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&display=swap
IP 142.250.74.106:0
Hash 35d7f078aa784a56e7657ceada52d1cd
10f1464ce8663560dd4c0df6d68cad913068826e
30d6bcfc9d87b01f6d217c5d95ac7409ee92622cacecc94cdf35449ebf34d596
GET /css?family=PT+Sans:400,400i,700,700i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 14:31:34 GMT
date: Mon, 06 Feb 2023 14:31:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6110
Expires: Mon, 06 Feb 2023 16:13:25 GMT
Date: Mon, 06 Feb 2023 14:31:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13572f84ad268caedcc897f2ad7b9baf
afb91ab43953e8915a2169618d2ab5e330cde0a1
0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F-bdQPU-zYhIlXtxcW_TiqE8ifPg3i0cg8gFuvJSfwoMDTe-Hqy1jg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:02:47 GMT
age: 59328
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0f48a44e1aece8d271028a7b0684cac
9f7247a3bb9248cd281c568ebba6e52b38b00149
0a34b5dc66f170403e79b2315a7cacef1703ce3777a20914525f86d46c0cd637
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11481
x-amzn-requestid: b50de2d1-c23b-4908-8fc3-e84eea0382a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRFL-oAMFnSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-0254cda141886e0f39e8f8b3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KIJ6iTpVC0gVV6Q0dd_-ZTWkwm3q0vP52N3088Rd7O9pb8D39XfnBg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:55:31 GMT
age: 59764
etag: "9f7247a3bb9248cd281c568ebba6e52b38b00149"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dbe304b5138a360ff07a9842bcf6a7f
00572f7667e322c9ef34bc35b7998c1c172dd34c
d63c58d6c96e23c61b92272de8c2aab01f4cf85f3420cc434c05447d355b1c77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: a3bffa19-86ce-4a59-b826-551deddb3e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fostZG2xIAMF0wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9c188-18acd7311c6190c9486e86ac;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 01:34:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oTDUyAr6LGDkH6Q8QCyx0Rc-wCE-fh5sEfjFm5jheeApNuv7VLh4Ow==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:45:42 GMT
age: 60353
etag: "00572f7667e322c9ef34bc35b7998c1c172dd34c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 60086
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 000cb25b2cb4fa30ce745582dafbab99
a5227f79e64bcab8d8f03822e6d408400a03a23e
7f6a2a99bff95672d34b41489d0dd1132ab8654b745e728e15ed95e987b7ed62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10582
x-amzn-requestid: e18bacd8-6d0e-4957-93ab-97def7442f8c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okSFKKIAMFlUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214e-05486d9b283cedc008cba781;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: p1ToWLG__PFWEMRxlPZcouvOTijPoUcMr7ubDCNcy2wMwgusbBjGPA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:13:34 GMT
etag: "a5227f79e64bcab8d8f03822e6d408400a03a23e"
content-type: image/jpeg
age: 58681
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:54 GMT
age: 58841
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq
23.36.79.32200 OK 1.3 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2665)
Hash 6738529087673aaf8e01218247b862ac
daa616bc49a21b52ff43090fc322a29fdc9bee5c
f08ceb1b2aa6e4e6e2e5278a80aa1e36932b88ee7d8426c0523021c6a51b8c51
GET /i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202302061431370A58E3FEE116CF28423D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60ea3bd74341822a8ce8788001e62d18d2ab2fe68d2cbaa8f9c7720594788b9ae1d21a8cf7fca485eeb70d9170bbc2c3438df054c4e66f72b89207bccd4b011c28379131d5f83350238353ee93b29e490def2faaef638194ab88b936d2d1d992c1ee6b877135a1553a3a4d8788043b9b87
content-encoding: gzip
content-length: 1316
x-origin-response-time: 8,72.247.190.102
x-akamai-request-id: 1492158.1680860.1d8d04e5
expires: Mon, 06 Feb 2023 14:31:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Feb 2023 14:31:37 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LMvj1yyHAbLY8Wbb99ZdMuwXF3; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=8, inner; dur=4
x-parent-response-time: 100,95.101.10.204, 102,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
23.36.79.32200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 09e9bdc02bd94387901641c0b3a1f8f0
7bf30498ae27e11f7fc60b438b090f15b67ca113
d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LMvj1yyHAbLY8Wbb99ZdMuwXF3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
date: Mon, 06 Feb 2023 14:31:37 GMT
content-length: 68605
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=4
x-akamai-request-id: 1d8d066a
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LMvj1yyHAbLY8Wbb99ZdMuwXF3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Mon, 06 Feb 2023 14:31:37 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1d8d0772
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 812
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LMvj1yyHAbLY8Wbb99ZdMuwXF3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230206143137B0BF09309A935264C463
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60ea3bd74341822a8ce8788001e62d18d2ab2fe68d2cbaa8f9c7720594788b9ae151ac2fa40b6d04e4d65f1be68e7b7e85f7b96008e70fb0d874232107e69786f01e0507f8d7aeb03e75d0792b0438e0b3a33f56365742201199bf035c1c65c78836ef215e50c3eb9d87ffcaba989b1e99
x-origin-response-time: 22,72.247.190.76
x-akamai-request-id: 180dac31.1680a30.1d8d079e
expires: Mon, 06 Feb 2023 14:31:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Feb 2023 14:31:37 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a95-101-10-204.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=112, origin; dur=22, inner; dur=19
x-parent-response-time: 128,95.101.10.204, 131,23.36.79.28
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png
134.209.96.191200 OK 7.2 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 0292d292ab80dc14a126335c0bec1b27
9c137697d2124c3798344e5804b67a67e401d191
350d76a80ed3f7fb8c5223a3f4bb5af600ba7b81f10ba345a505d30027ef60f2
GET /wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: image/png
content-length: 7201
last-modified: Wed, 24 Nov 2021 15:14:52 GMT
etag: "619e56ec-1c21"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 06 Feb 2023 13:45:20 GMT
expires: Mon, 06 Feb 2023 15:45:20 GMT
cache-control: public, max-age=7200
age: 2778
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1009
Cache-Control: max-age=110058
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Etag: "63e01643-1d7"
Expires: Tue, 07 Feb 2023 21:05:56 GMT
Last-Modified: Sun, 05 Feb 2023 20:49:07 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 262283a921f231669fd41486228a6e9a
4b96dcb2cd03f53280d2ecf5ccb249b0b32e6e97
13b8cc87c28e0113401d88f89971eb966afde870a3e4be2602ff34942e81862d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/757309559/?random=1675693940494&cv=11&fst=1675693940494&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 921 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/757309559/?random=1675693940494&cv=11&fst=1675693940494&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2003), with no line terminators
Hash aeba122a83e7e0a132454bec6015986d
492569e7ba2d4bb104dd0277b6be4218a599795b
f51e757e7bd7df7cc5a2310d1f65ae90ecf34151af4a6dcaceddeaba67d570d9
GET /pagead/viewthroughconversion/757309559/?random=1675693940494&cv=11&fst=1675693940494&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 921
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 14:46:38 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/757309559/?random=1675693940482&cv=11&fst=1675693940482&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 920 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/757309559/?random=1675693940482&cv=11&fst=1675693940482&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2003), with no line terminators
Hash 7d53a5bad29a8542831c97f2608bb4cb
8519fb2f3b2d59c96b873f3da3462610b0938899
582547e5467aafa752547ba8e2f9fd786e504a004beae5bf7116bb5773da618e
GET /pagead/viewthroughconversion/757309559/?random=1675693940482&cv=11&fst=1675693940482&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&auid=1894658117.1675693940&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 920
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 14:46:38 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1434581016&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1929306204&gjid=813349579&cid=1060071081.1675693944&tid=UA-130934886-1&_gid=175243883.1675693944&_r=1&_slc=1>m=457e3210&z=384766422
142.250.74.14200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1434581016&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1929306204&gjid=813349579&cid=1060071081.1675693944&tid=UA-130934886-1&_gid=175243883.1675693944&_r=1&_slc=1>m=457e3210&z=384766422
IP 142.250.74.14:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1434581016&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1929306204&gjid=813349579&cid=1060071081.1675693944&tid=UA-130934886-1&_gid=175243883.1675693944&_r=1&_slc=1>m=457e3210&z=384766422 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: UtYLfBarW0iujUXhCCsSPipuglUL+8CdkkDcAtXCz47afyikHHwLlr73kXiQsjsr9llf9hmgmwM+a2l1dE1Pig==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Mon, 06 Feb 2023 14:31:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2286773.js?sv=7
143.204.55.98200 OK 3.9 kB URL HTTP/2 static.hotjar.com/c/hotjar-2286773.js?sv=7
IP 143.204.55.98:0
File type ASCII text, with very long lines (7460)
Hash efa0a9c8aaeb4b8140ee666fa20743ab
621d8178bc4746fdfed31fdc69d9d40ddcb4d546
8dcd0221d7954531b0e21877538fa9a31da43628a1521c009f8f1a61c1534da6
GET /c/hotjar-2286773.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 06 Feb 2023 14:31:38 GMT
cache-control: max-age=60
etag: W/2f196566217736cbce88ada742a88472
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tcPzpBx_kPmI1TgLWOOWhjtHN1aB_2acfT2qr5RAyRwuvnsvubXmEg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9qn26u4Wl1DI1cw_8oCqBLEy_KrRn0D9HN99QqCDkf82reGT9Bpn8g==
age: 264092
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.40200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Yie0hxR5sAgr46O_1RD714qaUk8pubgNzqjScxYM-W58qEJoTi34g==
age: 264092
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1
134.209.96.191200 OK 112 kB URL HTTP/2 solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (62822)
Size 112 kB (111824 bytes)
Hash 2d082b51cde8db75d0c0ded545228659
361c9ddb361275392012ddfb7d63264fe6d2e934
56c14a14ec01e22bdae1df4362052d6faf625dd8d097231d70787d7de1bd63d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 11:07:02 GMT
vary: Accept-Encoding
etag: W/"6374c456-671"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 13c11bf978a848b4b66626cad6c40934
88432642b0d51e3ba20182a79ce1124e9f41f62c
2c4215e1ee11284b83c109f04998a95f7786a2d2c45d4a40afe4c5afe0ba4854
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 14:31:38 GMT
Last-Modified: Mon, 06 Feb 2023 14:16:50 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q0as004xcOX5BlqEQa7FiJqgnbPhCQYNVTmGcqDr_KaqNxAw2-lW7Q==
Age: 888
www.google.com/pagead/1p-user-list/757309559/?random=1675693940482&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1873797536&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/757309559/?random=1675693940482&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1873797536&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675693940482&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1873797536&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=415195708&gjid=765349420&_gid=175243883.1675693944&_u=YEDAAUABAAAAACAAI~&z=1008731138
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=415195708&gjid=765349420&_gid=175243883.1675693944&_u=YEDAAUABAAAAACAAI~&z=1008731138
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=415195708&gjid=765349420&_gid=175243883.1675693944&_u=YEDAAUABAAAAACAAI~&z=1008731138 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=0&ipr=y
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=0&ipr=y
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675693940494&cv=11&fst=1675692000000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2215240610&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=1929306204&gjid=813349579&_gid=175243883.1675693944&_u=YEBAAUAAAAAAACAAI~&z=1861706906
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=1929306204&gjid=813349579&_gid=175243883.1675693944&_u=YEBAAUAAAAAAACAAI~&z=1861706906
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=1060071081.1675693944&jid=1929306204&gjid=813349579&_gid=175243883.1675693944&_u=YEBAAUAAAAAAACAAI~&z=1861706906 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 06 Feb 2023 14:31:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 14:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash ef602c84b4b46b55175b85a170f30840
b19b32cc70354d80ada4102e55411abcd7e03c65
67af1488ab44f14007dca97a2c9f73a96f71da0f489b3b3e28fa5d026439ac44
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 14:31:39 GMT
Last-Modified: Mon, 06 Feb 2023 14:13:10 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hYYsqa4nbWUkPI47br2FDu8LA0ilyvUj-A_E_XTnxeb9VNiZe0kntQ==
Age: 1109
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
134.209.96.191200 OK 77 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg; _gcl_au=1.1.1894658117.1675693940
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:37 GMT
content-type: application/font-woff2
content-length: 77160
last-modified: Wed, 24 Nov 2021 14:50:01 GMT
etag: "619e5119-12d68"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
134.209.96.191200 OK 21 kB URL HTTP/2 solusipeduli.org/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash 12862fac8562fc77567fbad7f95a6e2f
864ee10b930d8ca3abfd36c6cc9a6308bfda8fdd
35b21ed67e3d0480b74241824e3266b869e23a8625bf527920264614a61bba42
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 16:32:38 GMT
vary: Accept-Encoding
etag: W/"6272aaa6-145db"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=143134
134.209.96.191200 OK 5.8 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash d950557df28f8c5e60f0f6c7086cf882
5aeb1063745b0422623e6eb6dfade866b008771a
174fbbb38fc88a6ca9e783cb5f5f9eaadd110a08780ead8cf52fb90bd7940917
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 04:20:01 GMT
vary: Accept-Encoding
etag: W/"63d0adf1-4cf3"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/qismo-v4.js
52.219.124.134200 OK 25 kB URL HTTP/1.1 s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/qismo-v4.js
IP 52.219.124.134:0
File type ASCII text, with very long lines (25131), with CRLF line terminators
Hash 7b1d06335ac82d4612ad5ff4248ff02b
100797c27fc22567d8097a9eb0b1d463a5254f26
319e7edfb7e35da625c0cd1e725679cb44d5fc54aa582673d6776f555f878c12
GET /qiscus-sdk/public/qismo/qismo-v4.js HTTP/1.1
Host: s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GWLKIlM/PQKmGmBr0lBGbq6wAPtc+Xs2XOJlDHYH8v2f1/rboOXECMv+SM2B96s6RNoiKGKnPQo=
x-amz-request-id: 58XH811XN9HJ7XTP
Date: Mon, 06 Feb 2023 14:31:40 GMT
Last-Modified: Mon, 10 Oct 2022 07:16:55 GMT
ETag: "7b1d06335ac82d4612ad5ff4248ff02b"
x-amz-version-id: cujnlsiSGVHxIxaT.H4xNDpg5JReKrky
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 25171
www.facebook.com/tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 14:31:39 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944761&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944761&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675693944761&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675693944760.642048635&it=1675693944009&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 14:31:39 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash bb7ed15288f4401eb690eac31c5e1eb1
dba7c98d0da28a44e07290033bd3b3486ffb2367
9e26392b77e7c81930b25c8c83c2269154d744e596f37a39141d49624f51f54d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 14:31:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 02:25:31 GMT
Expires: Tue, 07 Feb 2023 02:25:31 GMT
ETag: "dba7c98d0da28a44e07290033bd3b3486ffb2367"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
qiscus-sdk.s3-ap-southeast-1.amazonaws.com/public/qismo/qismo-v4.css
52.219.40.55200 OK 1.0 kB URL HTTP/1.1 qiscus-sdk.s3-ap-southeast-1.amazonaws.com/public/qismo/qismo-v4.css
IP 52.219.40.55:0
File type ASCII text, with very long lines (597), with CRLF line terminators
Hash 3b73e4783a55d0c67dc6a8f55c454e83
edcd06582e49a0ac96851549084be2d95ae1b6ea
3129039d4b075b9b5d68eb876bd579c895f9c8a8e839e19453cc298326e88008
GET /public/qismo/qismo-v4.css HTTP/1.1
Host: qiscus-sdk.s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RP8ZYh8eeeNthENtNdyXhiStDG8ToknhFAaOWdU+HmQSkflCMEqRdEZPgvcFPZcnZbl21KMdc+k=
x-amz-request-id: KXAE2KKEMGEJF7VM
Date: Mon, 06 Feb 2023 14:31:41 GMT
Last-Modified: Thu, 08 Sep 2022 00:50:26 GMT
ETag: "3b73e4783a55d0c67dc6a8f55c454e83"
x-amz-version-id: fc8jFHF0nRmJvXX2hY3vhuD34N0IPs2M
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 1039
qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
108.136.199.0200 OK 0 B URL HTTP/2 qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
IP 108.136.199.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083 HTTP/1.1
Host: qismo.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: app-version
Referer: https://solusipeduli.org/
Origin: https://solusipeduli.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 14:31:41 GMT
content-length: 0
server: nginx
access-control-allow-headers: *,Content-Type,Accept,App_Id,Qiscus-App-Id
access-control-allow-methods: POST, HEAD, GET, OPTIONS, DELETE, PUT, PATCH
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
x-request-id: F0FCuZfQwq9adgcBf7uC
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
X-Firefox-Spdy: h2
qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
108.136.199.0200 OK 1.5 kB URL HTTP/2 qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
IP 108.136.199.0:0
File type JSON data\012- , ASCII text, with very long lines (1509), with no line terminators
Hash 2a2ebe1396e2c27b22aa8d141844f64c
a33669023b60a05e967f1bf5991732e8b05786af
95b698c90fb6aea89c50be430bc31342a5f65e8b5030e5ec193bde1a6dab85a6
GET /api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083 HTTP/1.1
Host: qismo.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
App-Version: undefined
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 14:31:41 GMT
content-type: application/json
content-length: 1509
server: nginx
access-control-allow-methods: POST, HEAD, GET, OPTIONS, DELETE, PUT, PATCH
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
x-request-id: F0FCuabzIFtgwIMBkB4x
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 14:57:22 GMT
vary: Accept-Encoding
etag: W/"619e52d2-1c5"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:00:16 GMT
vary: Accept-Encoding
etag: W/"619e5380-f57"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-369"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Sun, 05 Dec 2021 03:55:01 GMT
vary: Accept-Encoding
etag: W/"61ac3815-580c"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 11:07:02 GMT
vary: Accept-Encoding
etag: W/"6374c456-39d"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:23 GMT
vary: Accept-Encoding
etag: W/"61a05277-15db1"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Sun, 05 Dec 2021 03:57:05 GMT
vary: Accept-Encoding
etag: W/"61ac3891-1538f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-5309"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-13b3a"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/js/clipboard.min.js?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-includes/js/clipboard.min.js?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/clipboard.min.js?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:02 GMT
vary: Accept-Encoding
etag: W/"61a05262-296f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Mon, 11 Apr 2022 05:14:01 GMT
vary: Accept-Encoding
etag: W/"6253b919-3a5"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 14:40:16 GMT
vary: Accept-Encoding
etag: W/"619e4ed0-26f1b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-2264"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 04:19:46 GMT
vary: Accept-Encoding
etag: W/"63d0ade2-709b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:23 GMT
vary: Accept-Encoding
etag: W/"61a05277-2bd8"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:20:57 GMT
vary: Accept-Encoding
etag: W/"619e5859-51b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=143134
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=143134
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=143134 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:06 GMT
vary: Accept-Encoding
etag: W/"61a051ee-54b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/1931951/visit-data?sv=6
54.220.202.197200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1931951/visit-data?sv=6
IP 54.220.202.197:0
POST /api/v2/client/sites/1931951/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 140
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 14:31:39 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
134.209.96.191404 Not Found 0 B URL HTTP/2 solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /uiux/assets/css/login/auth/login.php?myaccount HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 14:31:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://solusipeduli.org/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ku0gbqeu4h3lbsh8cq6voarugg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 14:31:35 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:05:55 GMT
vary: Accept-Encoding
etag: W/"619e54d3-7918"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2