tourismgivesback.com/boatest0/boatest/login.php
151.101.66.159301 Moved Permanently 162 B URL HTTP/1.1 tourismgivesback.com/boatest0/boatest/login.php
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET /boatest0/boatest/login.php HTTP/1.1
Host: tourismgivesback.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://tourismgivesback.com/boatest0/boatest/login.php
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 5mdbqphc1y
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Fri, 31 Mar 2023 17:20:56 GMT
X-Served-By: cache-bma1646-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1680283256.301162,VS0,VE125
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16010
Expires: Fri, 31 Mar 2023 21:47:46 GMT
Date: Fri, 31 Mar 2023 17:20:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13947
Expires: Fri, 31 Mar 2023 21:13:23 GMT
Date: Fri, 31 Mar 2023 17:20:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 17:16:12 GMT
content-type: application/json
age: 284
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16904
Expires: Fri, 31 Mar 2023 22:02:40 GMT
Date: Fri, 31 Mar 2023 17:20:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wZFSgYEr5ZEQscEWyyh0NyISyGggXo/U82lMajKk6xkc9Gw8qCC25qJ0b5h/LFn+se+U+jWWEssS/ptv8XqGyQ==
x-amz-request-id: 0PP7CCPV90ZNXENB
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 17:03:25 GMT
age: 1051
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
tourismgivesback.com/boatest0/boatest/login.php
151.101.66.159302 Found 114 B URL HTTP/2 tourismgivesback.com/boatest0/boatest/login.php
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 25f4889425b3c0b7b14fe7149c2575ad
5d096315fa8eba5aaf6d870e034a455914386293
77cf3a26f2ad6fd43cfa593d8d5dcf0c224b25a624e0e2f63e0947d02edf650b
Analyzer Verdict Alert fortinet Phishing
GET /boatest0/boatest/login.php HTTP/1.1
Host: tourismgivesback.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://s.id/kY66E
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 5mdbqphc1y
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:20:56 GMT
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1680283257.609373,VS0,VE3
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 114
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 17:20:56 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15407
Expires: Fri, 31 Mar 2023 21:37:43 GMT
Date: Fri, 31 Mar 2023 17:20:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 17:14:39 GMT
age: 378
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CDOoJzwlxhpWf2ZUsCXJFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XhxODrsb1VZJxKG124Drs0bgVso=
Date: Fri, 31 Mar 2023 17:20:57 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
s.id/kY66E
104.21.54.41302 Found 0 B IP 104.21.54.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 31 Mar 2023 17:20:57 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYJms2DE65xggt1CiUJ2gV3n9oEUna8LCF6yU5%2Be8pzUzjDMErxV4DuF5%2F0rfKxs7GeBBhGi071Zi0f7l2k%2BCQQXbzvURq6kYAOK2nZqZrUYfzJyVCQM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a4412ca90b527-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js
104.21.54.41200 OK 3.0 kB URL HTTP/2 home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (9149), with no line terminators
Hash 784a33ddaaaae491ccc28a01a5cb5ff2
50886bbbf03c763137b875f7e38f047ef14fd96d
6e11bc6299dba625b7749ecccf59776f30ffc4f55aee92bf2b389785dcd83a3c
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"23bd-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mKm6U2OugANQhVI1o8rCfbFaS6xSDqeutJ7V7l78VibEF%2FsB5MYwu8LwZCsZPeUuybd67qtVae1s0ua5dhGxpYDs55qb3RniE2iDN6zy1%2FbifPs6D87gDrDQo0g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b985db527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js
104.21.54.41200 OK 43 kB URL HTTP/2 home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 88583a6b50b40523344443c00c607a71
b7cde1f275c26fd8f078e7abecd43d31e8b4708b
c7d8405bc638800c3346dff2acd718aefaf62d9bc34ff33097d32a035a308a50
GET /_next/static/chunks/framework-8ff6c737ed443ded.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"1fbd0-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339602
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1st1YL2Mdccimk7rS2G7b%2FE3NYlRjRrn8SaeS%2Bq9qUzmgyhSBcXweuRDNMbutfYon2zzJ%2FBnPSz8BSBWE9MY7qENH8oN7wY8Bgzro%2F3FEDvPi0tXdX9YDovsgoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b9851b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js
104.21.54.41200 OK 524 B URL HTTP/2 home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js
IP 104.21.54.41:0
File type ASCII text, with no line terminators
Hash 61eff7df1103c616527c2cb9e41d9042
95e97f0ff4287dc5e6499d6ffb995614f4a558e8
e909297b9757a1bdc501feffda9c6a2e29f94e96cce926b9198d03e76930af14
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5c-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H2gLsEnTBWOCqDWwd7S5gCDOHRBUymforjCk1zck%2FuFQtxWoY09ZqfQTi67mVu6U4xoBhQYHlH6Jln5EgxyoZgo2Xw1XltfOHIYeauogBlVVjfOUn8b0S3VmSHA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b9861b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js
104.21.54.41200 OK 2.1 kB URL HTTP/2 home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (3689), with no line terminators
Hash 2b153debbb420f2852ddb7952c437740
45b597d9c3443af339f9b9d1e0f56d79748fbe18
16c511b3eaff84db2e52f06579b1b30fb272e0d94c441c5b092190a8104fe82b
GET /_next/static/chunks/pages/forbidden-9c7287b02a773507.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"e69-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 671421
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oHST5n8LaMalB20EiktWKokweJhgU4GGNC6hAq0Q6gTBwO%2F1mJ9LRsqU0cvMpi%2BODyM0PRPKWXA2k4iv5mlCrB4W%2FOBRjkWipMzGx8qtHaL75WVU5fkufnCnjrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b985bb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
142.250.74.40200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
IP 142.250.74.40:0
File type ASCII text, with very long lines (21772)
Hash ab020f1fe9fd47e28d4c69955a2a93ce
3996f5bace0974acde484eae0fad011801147c06
d900c6ffb6a26f33a5faee396aacfcec84ae7c0004b8b099b5cf6e3c56d23563
GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 17:20:58 GMT
expires: Fri, 31 Mar 2023 17:20:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79268
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-10823601447
142.250.74.40200 OK 69 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10823601447
IP 142.250.74.40:0
File type ASCII text, with very long lines (8284)
Hash df0f5f0379401e5ccee1eea218d40c47
2bbccd6ec14da0f0b8f94706fa07772651ad3d0f
bdf03da4127c75bd347981ea7b3d0fdca935ff473e15f21256958cef66e37be4
GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 17:20:58 GMT
expires: Fri, 31 Mar 2023 17:20:58 GMT
cache-control: private, max-age=900
last-modified: Fri, 31 Mar 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69324
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
142.250.74.40200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP 142.250.74.40:0
File type ASCII text, with very long lines (19390)
Hash 6ae08df6eaf9f2dd80975c24f0afefad
be889f4af99fc8cf8cc578ee7b1982435ebcc905
186e7a7fed347ad91aba8220c9f42c5294c9174f075e4b4136fa92d8fd638f6a
GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 17:20:58 GMT
expires: Fri, 31 Mar 2023 17:20:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78653
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap
216.58.207.202200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap
IP 216.58.207.202:0
Hash 411bb48265df8cab4412fbcff9224024
ec9d09c4822891af89b8e2a252db08e1dc6b961b
d75ee25f3a58946616bfc922c0084970dc856ff25da4512a4013b63c8aa642b0
GET /css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 17:20:58 GMT
date: Fri, 31 Mar 2023 17:20:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 854e935c2df2b2ae5700e12aec73ab4c
d5d51faa3dea042aea0653a782ccc52a8200903f
a2ed6b440996da03a5b8939207464d975cf01599c8a79f67c815a8fe827c2968
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf29feb5d124115ffaf0b00e89ab0309
693d2ad3694d3171af6545ef4758855127b2e669
40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js
104.21.54.41200 OK 133 kB URL HTTP/2 home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 133 kB (133164 bytes)
Hash 1765faefafff668dbffde5a2c1aa9f97
9e3b511221548a9ee93064627ffff2ab61b05afd
f25620d9e8636a38c9b9e477e718316030ffa460a10d705c1d0bf51fa368858b
GET /_next/static/chunks/pages/_app-3d19a20011db3907.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"53e0c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=noqUN6DtbEI2t1aHniEa%2FnQ4jZzjjEFou3tjX4KKeuRqi%2FebZGK0duQ6Cw5EWEfAEs%2BXbLD0hY%2FayD34L1j3%2FGgJ%2B8l6yJ16J%2BVdaETb%2FTQzYmfxZzQOU%2BzrFPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b9858b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 854e935c2df2b2ae5700e12aec73ab4c
d5d51faa3dea042aea0653a782ccc52a8200903f
a2ed6b440996da03a5b8939207464d975cf01599c8a79f67c815a8fe827c2968
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5471
Expires: Fri, 31 Mar 2023 18:52:09 GMT
Date: Fri, 31 Mar 2023 17:20:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:08 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 70310
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: opMjAWEDBvz7pKcnuQrmD_7njQ0X28fR3Ngnoe7WI96zNNNt9oQL5A==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 09:17:34 GMT
age: 29004
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 70415
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 70465
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:44:51 GMT
age: 70567
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: AdbJgoCBGJGvjP53lBj3_GWyuRF8O_fgNTPPEjUmFmyRxMQl2pgTzw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:29 GMT
age: 69989
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d3f7da6c5369e6ae567fd3bb52260f38
7ee3052765e1f06206bd5b7bb109d8a7be5dffca
9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2291
Expires: Fri, 31 Mar 2023 17:59:09 GMT
Date: Fri, 31 Mar 2023 17:20:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d3f7da6c5369e6ae567fd3bb52260f38
7ee3052765e1f06206bd5b7bb109d8a7be5dffca
9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21574
Expires: Fri, 31 Mar 2023 23:20:32 GMT
Date: Fri, 31 Mar 2023 17:20:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 77dbb8fad987cc133af39ba05560f835
f596aa267045840be839bae5ca7cf8a2ee81df38
ceb6cbe475f4386fdcc6e7581a4013a07bfdff69227a63df06901975f2fd45b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEB6CBE475F4386FDCC6E7581A4013A07BFDFF69227A63DF06901975F2FD45B2"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12768
Expires: Fri, 31 Mar 2023 20:53:46 GMT
Date: Fri, 31 Mar 2023 17:20:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 77dbb8fad987cc133af39ba05560f835
f596aa267045840be839bae5ca7cf8a2ee81df38
ceb6cbe475f4386fdcc6e7581a4013a07bfdff69227a63df06901975f2fd45b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEB6CBE475F4386FDCC6E7581A4013A07BFDFF69227A63DF06901975F2FD45B2"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 31 Mar 2023 23:20:58 GMT
Date: Fri, 31 Mar 2023 17:20:58 GMT
Connection: keep-alive
api.s.id/api/user/me
45.126.58.78204 No Content 0 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:20:58 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
api.s.id/api/redirect
45.126.58.78204 No Content 0 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:20:59 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4950e24a0440a020b30c6874c98f75bd
3b15a0974242f132b9b2c664a19a3c3e37472cab
36fca91cbb3cce32e2754454af341bb4dec9bf5f202858cca1ce1397baf8a411
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 16:05:11 GMT
expires: Fri, 31 Mar 2023 18:05:11 GMT
cache-control: public, max-age=7200
age: 4548
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=1065096777.1680283258>m=45je33t0&aip=1&z=1106622743
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=1065096777.1680283258>m=45je33t0&aip=1&z=1106622743
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=1065096777.1680283258>m=45je33t0&aip=1&z=1106622743 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680283257917&cv=11&fst=1680283257917&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=1946344428.1680283258&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680283257917&cv=11&fst=1680283257917&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=1946344428.1680283258&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2529), with no line terminators
Hash 0ea16097948356e03be422044c3f3d96
40e41089d294b2e298fbe069b8be5c276ee53aa9
20b4eb1e076f0a10c9f04b9f30b08ac2775989251651039507289785ac181f33
GET /pagead/viewthroughconversion/10823601447/?random=1680283257917&cv=11&fst=1680283257917&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=1946344428.1680283258&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1202
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 31-Mar-2023 17:35:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1459195560&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1516380995&gjid=1343845619&cid=1065096777.1680283258&tid=UA-225238330-2&_gid=906730838.1680283258&_r=1>m=457e33t0&jsscut=1&z=1587122117
142.250.74.110200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1459195560&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1516380995&gjid=1343845619&cid=1065096777.1680283258&tid=UA-225238330-2&_gid=906730838.1680283258&_r=1>m=457e33t0&jsscut=1&z=1587122117
IP 142.250.74.110:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j99&a=1459195560&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1516380995&gjid=1343845619&cid=1065096777.1680283258&tid=UA-225238330-2&_gid=906730838.1680283258&_r=1>m=457e33t0&jsscut=1&z=1587122117 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4950e24a0440a020b30c6874c98f75bd
3b15a0974242f132b9b2c664a19a3c3e37472cab
36fca91cbb3cce32e2754454af341bb4dec9bf5f202858cca1ce1397baf8a411
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.s.id/api/user/me
45.126.58.78401 Unauthorized 58 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
File type JSON data\012- , ASCII text, with no line terminators
Hash dc6337924fcba32afbaef2dc7a71ffcf
1bb7b761c6bf8bc117eddd9525d61844fa676190
4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b
GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680283258,8q5h1o,f898dabbd259b229fd40b6a52d4f46b9
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 401 Unauthorized
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
api.s.id/api/redirect
45.126.58.78200 OK 469 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
File type JSON data\012- , ASCII text, with very long lines (469), with no line terminators
Hash a986c42aab43f215b2cff47a241682ad
6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b
81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149
GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680283258,lo0hmak,4e11cd4b1913caa19c41fc7f38f06778
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/json
content-length: 469
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee15ff6931559991c58a51cbecf4c8c5
073267ce58de3587f3e1b80914852f6acd56921f
2c90a44d2191b0276c9e0d0571c263a48f2b74cb287f683517c08449bd815ea5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=1459195560&_gaz=1&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283257&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=1459195560&_gaz=1&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283257&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=1459195560&_gaz=1&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283257&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js
104.18.72.113200 OK 192 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js
IP 104.18.72.113:0
File type ASCII text, with very long lines (65307)
Size 192 kB (191538 bytes)
Hash 5984bfc5bbb6f663696efa5195fc2da6
f869c7fd9d7f7ea68aad62f747202158ab6cc14c
6ac69309f136a7eeb39265b0bb3520d9ad59c521d5467bd3a585607a5752561b
GET /web_widget/latest/messenger/web-widget-main-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 7CY4gNg1wuGSkXub6xt2qyCix3qJeiVH0Eqkb5tUk1phdDCcURWUJm4z0JJJ1wSAqvow3D8kOBY=
x-amz-request-id: 4ANA9WW213ARX0HB
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"2a7a35aeef02762e024fd5bff30dbdea"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: olOcPjsMbt2uLvftNUzm_18c3QOJ7v.2
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZ07faASEWwRhptwGJMEVHqJoDQRMccU0nythnCl9k4vOAxFujSwNEQv62CH4CNNFA5nP2sTLnM5PkikTQGVBpr%2FoVCFdS9sFKXwfA4jeN3fjt8CGS4UhCiDa%2B9esoj0ibgb94g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a44226e35b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10823601447/?random=1680283257917&cv=11&fst=1680282000000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=396407670&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10823601447/?random=1680283257917&cv=11&fst=1680282000000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=396407670&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1680283257917&cv=11&fst=1680282000000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=396407670&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=45je33t0&_p=1459195560&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283258&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=45je33t0&_p=1459195560&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283258&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LJQ0V44EV5>m=45je33t0&_p=1459195560&cid=1065096777.1680283258&ul=en-us&sr=1280x1024&_s=1&sid=1680283258&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 17:20:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
home.s.id/cdn-cgi/rum?
104.21.54.41204 No Content 0 B IP 104.21.54.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1084
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283258.59.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283258.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:20:59 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0a44238baab527-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bccde084c491a04e52752f2af1e16d
5a7a761608a0d79d383e104a0455f76bb0d2248e
aed5aade370f65d015700850f0a3a80c5f47066e82d200f5cf1d2d44657388dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:20:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js
104.18.72.113200 OK 8.0 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js
IP 104.18.72.113:0
File type ASCII text, with very long lines (24853), with no line terminators
Hash 8bbbd7edcae71a51b31f85b1be8211df
27e17c6f72d07f87cc331714068c966428563543
d2d090d11eb5d23868cb4367f14eee088364e624ff095a0fec109279647e5def
GET /web_widget/latest/messenger/web-widget-1707-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: wlYGSfBfzT4930eGOYEEiDorzLzI8DYPV9uyonvr9pX1+o7s4eNzLSd0VcPhucSn3fzuNncSrss=
x-amz-request-id: VSW82Q446PP1D0VC
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"ae451f428ab96456490147d8abff0d53"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: H.l3YGbI.40aeaIkx3GMkICfAVRRG2d2
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AzoDMaI8dz396JeBDoKQJ%2B9BjbXE%2FTGPOiKNJBcgt%2B57wZZdIWhkZyd94j6kuPx54ZVSucyPgRVtGDhvxHE%2Fr2zqpr4Vbtw2usz3iHTXonwERsL0NvHAkj42ZAT8zQaPD%2FKc3PI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423d87cb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/cdn-cgi/rum?
104.21.54.41204 No Content 0 B IP 104.21.54.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 490
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:21:01 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0a442f6d32b527-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
home.s.id/images/sid-logo-new-light.svg
104.21.54.41200 OK 50 kB URL HTTP/2 home.s.id/images/sid-logo-new-light.svg
IP 104.21.54.41:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c60463a2fa133698bca88ea125f11a47
5cc834fcd56a343d95e5be707e964a032a9ba8fc
e0b89a49c3787a1d32458c0ff73ef9898998f5d871ed311a335b30c9f1fb2d1a
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bHthR0pSONKgnpiAyTQmJ1UL2GxnZUwXLMjJ9grtjp0ik4gfZYoLJnENU43gyHAwloLzxuAIF96CcOcFfICWdQCtA%2FMLy%2BtbjPp26LpRgE4cqyJTYsX24RuVzWg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441ba874b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/images/errors/403.svg
104.21.54.41200 OK 80 kB URL HTTP/2 home.s.id/images/errors/403.svg
IP 104.21.54.41:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (532)
Hash e26b2ef772c099173024da7096fdf503
6bad4467eaff6e6cfd95c1f0dcc4c02f6add6c74
71358dd009d30988b4757bb149b5010e54eee564f33518fa66d067abeec7580b
GET /images/errors/403.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Tue, 27 Dec 2022 03:47:41 GMT
etag: W/"1136-18551b16f48"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jxO9FpYG6gXyf1MNwzvhxGcYIjfmNJSsDXfeLia3%2BT7Zg7m1IY6OXxnDW6%2BKuNeVbs00sQtdtkmHu%2B37aa6t8aoNT5jxZRlHw7jrOR2zNW3cFnsJa5w5yvLdRtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441ba870b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8df31f5ac474adbf58cfa599304bcae
c3001e355800deb24f04a565cc1ccb1131c1eadc
da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545
142.250.74.2200 OK 48 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545
IP 142.250.74.2:0
File type ASCII text, with very long lines (3599)
Hash 80d11607af8e648d92fcc650bea7a6c0
622ed7db6608d62e05f868dbf80053ce8b64e94c
20e1bd6d6ef4df7a0c19cba1a552339e9f89e072167694a57d4fff5a809059b5
GET /pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 31 Mar 2023 17:21:02 GMT
expires: Fri, 31 Mar 2023 17:21:02 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 18022233088076984800
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48349
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
104.21.54.41200 OK 17 kB URL HTTP/2 blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
IP 104.21.54.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (40436)
Hash 601c0ba6c66090e316ba6370230e5bbe
aa6ddb76361102fe5643656462a6f224224fab8f
9c3169da4af8fa3bdbd4d23868da002c557f0d741058f1094b8be2399e99390e
GET /post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283258.59.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283258.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIfcsjqXctg8o2J8LDqplpAyFAlAtxxpagECctGX%2Bs%2FqMA0Bm7a95%2FcHpaqlt1qw9%2BjDAFiAqk95lblsH7Xz0wxkEiRS7hFWd44L6yUeB1OeuBJ2PrjG2ReCiks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442ace81b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3f59ff1fec36cad0249e88f19b0913f
da1527919e61fa348117cc8ebfb7b1eec2e55905
8165a8117a9763ed875eadbadeae41533204e63fb8d3379d1b36aaefd71175f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545
142.250.74.66200 OK 246 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545
IP 142.250.74.66:0
File type ASCII text, with very long lines (375), with no line terminators
Hash 74b788c6645c034e30ba4c2d2f15cf49
4f3d9dbddbd59c3ec9fae99f11205979e7bd084d
19795468a22b942b809c0ba2b19f9d9e4f27b22ac38742e6f1a342cb481667eb
GET /gampad/cookie.js?domain=blog.s.id&callback=_gfp_s_&client=ca-pub-2742216534640545 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 17:21:02 GMT
server: cafe
cache-control: private
content-length: 246
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js
104.18.72.113200 OK 5.8 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js
IP 104.18.72.113:0
File type ASCII text, with very long lines (21366), with no line terminators
Hash 17a44c3ab3b843a78e5ba3ef01f3c127
52b923f6bc235fb376515aabbb8642d07a5d17cc
4c7f7cb469769a9874da1ca181fa367fc8362d711444db9c6d45e21128b28cc8
GET /web_widget/latest/messenger/web-widget-6315-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /cEGAu9qkZDaW3a0Y5R20PfFbxfSYD7jSNcAgIxGRTTC9uH5Z9u408u1+px6OjnWbbPVj03wtbA=
x-amz-request-id: VSWCSXJ998KTTHS2
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"f98270473d8b868d9890fe3be24a1a82"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ZCYKjS6R0SvnZ2uXsM4yp4HqVDMCLho6
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2BmXB0Q0%2FaOTfQa9Q7QjijY1Boc7jKlwHJr9ge60f9MhdzL%2FPhVaeHbmupA9933sn6gp5HrC8G9SK91W8jabRXoUX5j6larvP26S6lMaMjmV8TKWRCLLTcnyCtHdbfJDB1HEuy4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423e89cb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap
216.58.207.202200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap
IP 216.58.207.202:0
Hash 3ed270e638305cc60a4dbb7a294e1023
da61f2e1202f7ca86f87f7bf15e8e554e6dc9dc4
b4490fbb61ce9a2deaa14fe5f02de5b9589bf68890947ed67ce2f462784fd98b
GET /css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 17:20:58 GMT
date: Fri, 31 Mar 2023 17:20:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13aea90b56c70f627cf1b6cf76bc9317
3a4a5bf198962f4898565cb59d36c840dbfb455f
e687f0b713563125f2e84ac8ed135c56fd2ed704de83a2597695979df25f8864
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=blog.s.id
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=blog.s.id
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 17:21:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 02ddc021542aadb090aa31099f7b9267
cb2091bff4ad6c225faa4c0c02182217bcdc502c
dcca0f6c051c27f611b9e51981fb34bd0c82a317c2e3ae3412ec6de80c596d24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.s.id/cdn-cgi/rum?
104.21.54.41204 No Content 0 B IP 104.21.54.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1237
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.1.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680283261.1.0.1680283261.60.0.0; _ga_GJLS9JMJCK=GS1.1.1680283261.1.0.1680283261.0.0.0; __gads=ID=4203c4a1a077384e-2218ad18efde00f0:T=1680283262:RT=1680283262:S=ALNI_MZlEz0DIIFTBpOVWs-eYAu1SWS01w; __gpi=UID=00000bcf03aaf015:T=1680283262:RT=1680283262:S=ALNI_MZPfjGAWAHSZgZFXZDwde_mQRyDRg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:21:03 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0a443a7e31b527-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.211.2200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.211.2:0
File type ASCII text, with very long lines (39569)
Hash ebf6a4af7df42a5b4f6c848dfb500212
5dfc4dfaf0651a1cae225433e66c9997fa50e256
95ba772280ad124578e6ed0e935a11dbeaee73e71fcf450a215feeb30db43699
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27266
date: Fri, 31 Mar 2023 17:21:03 GMT
expires: Fri, 31 Mar 2023 17:21:03 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1527 / 845 of 1000 / last-modified: 1680260950"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a54559cbe6b913272745930d0d88346a
dd59af51740af567109eec67847fcd515b191e0b
b76846074b40dba161bcbbc5c69434bec196efef09befb675ea5010566712091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8df31f5ac474adbf58cfa599304bcae
c3001e355800deb24f04a565cc1ccb1131c1eadc
da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.211.1200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 31 Mar 2023 17:21:03 GMT
expires: Fri, 31 Mar 2023 17:21:03 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.211.1200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.211.1:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 06:11:17 GMT
expires: Fri, 29 Mar 2024 06:11:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 126586
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=blog.s.id
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=blog.s.id
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 17:21:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
493be5c39fff7180c6ab806f622bd61a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.65200 OK 2.7 kB URL HTTP/2 493be5c39fff7180c6ab806f622bd61a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 493be5c39fff7180c6ab806f622bd61a.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Fri, 31 Mar 2023 17:21:03 GMT
expires: Sat, 30 Mar 2024 17:21:03 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/LIiphyQuoZY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/LIiphyQuoZY
IP 142.250.74.131:0
Hash 35adb629abffaaf8aa9eed50a5241903
577dc5215a54ae7531c6ce67324a3ccf4891629e
3fb5cc62df7fdbc6067bf6f3a4c23de80f42d96bee0edf2123aaeb8f90edbf42
POST /s/gts1d4/LIiphyQuoZY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.s.id/images/sid-logo-new-light.svg
104.21.54.41200 OK 3.0 kB URL HTTP/2 blog.s.id/images/sid-logo-new-light.svg
IP 104.21.54.41:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d4aa0910cfb068d819deec8b513aec4a
13ce06ab2d3cd7ad9a0fc6c729909572b0508748
b13dc4038fe6e3b167d532c2665a3c6b352b65b7628ee6e09e07feb41bfa7a36
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:02 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"f40-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fce%2FhqTNO64y%2FITnE5KbFk7Ehj%2FBvYc8OgHl2%2BtnagfdC5lGajP9Ld%2Fc44N0jCJ7mD8RaqGvW8YS6sBWJtlYXrNsq1K8hBFfvs4F6IPHIxJ8o4xi9g21ORZ%2FJf4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a44304eafb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
oa.openxcdn.net/esp.js
34.102.146.192200 OK 7.9 kB IP 34.102.146.192:0
File type ASCII text, with very long lines (24615), with no line terminators
Hash df5542b88bc0e368c6999754a5b9e2ba
54f17142faeb7c882fee3bf67d537733e75e43ae
b82da9703a35c5436f9e47711f5b95d5357f02d590cb39dba99355b9b073561f
GET /esp.js HTTP/1.1
Host: oa.openxcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt0FmEc5QAI_yovYskMkkHKXNtk1O_jTnYB8HjEe7S3kqBMY2dKEHFDZ0S0PtA0-zOqWFcMpvTwu3YIdnz-L731Wtn19qS_
x-goog-generation: 1622140251693895
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7927
content-encoding: gzip
x-goog-hash: crc32c=f21hYg==, md5=31VCuIvA42jGmZdUpbniug==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7927
server: UploadServer
date: Sat, 18 Mar 2023 17:19:11 GMT
expires: Sun, 17 Mar 2024 17:19:11 GMT
cache-control: no-transform
age: 1123313
last-modified: Thu, 27 May 2021 18:30:51 GMT
etag: "df5542b88bc0e368c6999754a5b9e2ba"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.yabidos.com/fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-in_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435
104.19.231.122200 OK 1.2 kB URL HTTP/2 pixel.yabidos.com/fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-in_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435
IP 104.19.231.122:0
File type ASCII text, with very long lines (2523)
Hash 4275f566000969a16d4e52febcccf90d
4eba066a29664a3cf9013c1bcb502d6ddef4a552
d915caab620059d8a3f1fbe4ee7f4c55a1f6d679ba7d4ab8c394993fc92f11a5
GET /fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-in_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435 HTTP/1.1
Host: pixel.yabidos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:04 GMT
content-type: application/javascript
content-length: 1168
last-modified: Fri, 17 Mar 2023 20:27:58 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 6814
expires: Fri, 31 Mar 2023 19:21:04 GMT
cache-control: public, max-age=7200
accept-ranges: bytes
server: cloudflare
cf-ray: 7b0a4443dcca1bfe-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.yabidos.com/fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-before_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435
104.19.231.122200 OK 1.2 kB URL HTTP/2 pixel.yabidos.com/fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-before_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435
IP 104.19.231.122:0
File type ASCII text, with very long lines (2523)
Hash 4275f566000969a16d4e52febcccf90d
4eba066a29664a3cf9013c1bcb502d6ddef4a552
d915caab620059d8a3f1fbe4ee7f4c55a1f6d679ba7d4ab8c394993fc92f11a5
GET /fltiu.js?qid=73533313f553633313f593630313&cid=1069&x=4404325371&p=blog.s.id&s=blog.s.id&adtg=protag-before_content&nci=2101210293&ci=&lon=&lat=&emh=&nai=4404325371&h=300&w=435 HTTP/1.1
Host: pixel.yabidos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:04 GMT
content-type: application/javascript
content-length: 1168
last-modified: Fri, 17 Mar 2023 20:27:58 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 6814
expires: Fri, 31 Mar 2023 19:21:04 GMT
cache-control: public, max-age=7200
accept-ranges: bytes
server: cloudflare
cf-ray: 7b0a4443dcce1bfe-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js
151.101.1.229200 OK 439 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (693)
Hash 0440929e9bfe21325bb9de6de158fba8
d175fec033c76d665a06513ce31e2c90d2c828e7
2621408bc9d3c95b7e24b8257993a2f433ee7f03e1c61ac77ed2d4f1e3e486b6
GET /gh/prebid/shared-id/pubcid.js/docs/pubcid.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"2dc-IrZxm/sP4aqtIfs1EfEw6Dg5q1Y"
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 17:21:04 GMT
age: 15672
x-served-by: cache-fra-eddf8230042-FRA, cache-bma1668-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 439
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012303151529000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012303151529000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash fe582f726641abe77e5c15279877f9fd
8fbfe0daddb368d4596cd343fac82f24a69d4d14
7bb866c2e4804afab131efec3092585d12ae2d1080a02c3c6ece35eb8fa97eeb
GET /rtv/012303151529000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61771
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:27:18 GMT
expires: Wed, 27 Mar 2024 11:27:18 GMT
cache-control: public, max-age=31536000
etag: "ec0c62706e34eb3f"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 280426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012303151529000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012303151529000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41068)
Hash ce9a452b50270a58e73edb6a0525ebf4
eece2c9d7fd47d4e2c9b920b1c60da6bfecf9991
309e106bf846f60edf2fcd14cd21c3d69314e3000a633cbbec43d9f5770bd0e1
GET /rtv/012303151529000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12941
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:27:18 GMT
expires: Wed, 27 Mar 2024 11:27:18 GMT
cache-control: public, max-age=31536000
etag: "9279e7fc66fb3af2"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 280426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012303151529000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012303151529000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
Hash 649c1a8f163f1413210cd4b8d195dc67
c79464f467322fc3483264c75d336d6d3d03ca41
855ef2041970c86bb42793ad12d5168b898f401c7d1e2db8e882c562c92f1a47
GET /rtv/012303151529000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5222
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 20:17:02 GMT
expires: Fri, 29 Mar 2024 20:17:02 GMT
cache-control: public, max-age=31536000
etag: "0c002879bc7fcff3"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 75842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012303151529000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012303151529000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5021)
Hash 001df01bc8d0959a3b0a96cac76f4243
5860e2d9cfbdb237f53b75d84c987a22b599f056
55fa7651fefaee377a67d48a98bb3b12a72fe4eb84b490fb1bb01fc1dce393d2
GET /rtv/012303151529000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 20:17:02 GMT
expires: Fri, 29 Mar 2024 20:17:02 GMT
cache-control: public, max-age=31536000
etag: "43d7e8881e2bc346"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 75842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/LIiphyQuoZY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/LIiphyQuoZY
IP 142.250.74.131:0
Hash 35adb629abffaaf8aa9eed50a5241903
577dc5215a54ae7531c6ce67324a3ccf4891629e
3fb5cc62df7fdbc6067bf6f3a4c23de80f42d96bee0edf2123aaeb8f90edbf42
POST /s/gts1d4/LIiphyQuoZY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ea1b74f45c26317661ce759287cbde
b3f9c12bed7b6959a0cb466c5f4ed306204b92a8
423bb11a21973fdec6d619d0657099f78c119558fd7201b1b26d8dcd2bd17543
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash b07f630c15966cbb7d315a8043735892
4f75fcc880b64bb03c0bb914f427d8eed5ee2830
057c199a74107e0a06b7d1fb5080d8ae81183c41ae70a79ee0e5e20108ce0bf2
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 17:21:04 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "497391C00A2F63C12A04353D29CB799C0EFB6C51"
Expires: Sat, 01 Apr 2023 04:00:00 GMT
Last-Modified: Fri, 31 Mar 2023 16:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2537
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0a4444ed57b50c-OSL
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 50 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3399)
Hash 1e7768364a8db1e88535d1ca1ee9cd6b
90d26fec8305c95cc5f6fa4b2398456d88627570
eb24872de47889683879df871844b6468d59bb8126f106189b44bbe305853a0a
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://493be5c39fff7180c6ab806f622bd61a.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
timing-allow-origin: *
content-length: 49585
date: Fri, 31 Mar 2023 17:21:04 GMT
expires: Fri, 31 Mar 2023 17:21:04 GMT
cache-control: private, max-age=3000
etag: "1680090252828925"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash a9ce036f6d6084fa604e6255fcd312a1
5fa9617161c87aece377b2686fb594eca22b6cc5
a979c968786382b901173539f5e73f091b0491b7ee5bfb792af49bb898f296a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Last-Modified: Fri, 31 Mar 2023 15:41:34 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 673f4065479339c0175a4ac11e6b0938
653517eafbf0133d750da44cfd9feba1d956a068
273cf59cee38ac6dd57cac48ef58dbc3d7cd6f2326182d1b5d1a899159421c47
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3060
Cache-Control: max-age=163497
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:04 GMT
Etag: "6426e635-1d7"
Expires: Sun, 02 Apr 2023 14:46:01 GMT
Last-Modified: Fri, 31 Mar 2023 13:55:01 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471
oajs.openx.net/esp?url=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-accessing-forbidden-link-what-is-that-9m00gu9i3%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&rid=esp
34.120.135.53200 OK 2 B URL HTTP/2 oajs.openx.net/esp?url=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-accessing-forbidden-link-what-is-that-9m00gu9i3%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&rid=esp
IP 34.120.135.53:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /esp?url=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-accessing-forbidden-link-what-is-that-9m00gu9i3%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&rid=esp HTTP/1.1
Host: oajs.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Origin: https://blog.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: https://blog.s.id
vary: Origin
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-length: 2
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
date: Fri, 31 Mar 2023 17:21:05 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 069f9934a0e19f21997dc3f7fa07ff1d
0ebd6000c5dac38829ffae5e624d32da5ef2c9a8
f7a956f911c7bafb32638f7e09e81602a4599728a8ba7994fcb8dd03b92f14ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4258
Cache-Control: max-age=168649
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 17:21:05 GMT
Etag: "6426f5a8-1d7"
Expires: Sun, 02 Apr 2023 16:11:54 GMT
Last-Modified: Fri, 31 Mar 2023 15:00:56 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
protagcdn.com/s/s.id/site.js
104.26.7.142200 OK 115 kB URL HTTP/2 protagcdn.com/s/s.id/site.js
IP 104.26.7.142:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size 115 kB (115074 bytes)
Hash 5d509e309e5bfaec7f6d25e8ad7a563b
b50d76ca2fdd2d69951009ccee12bd23865d0172
befd5dced80e9ae011d36b0056a47596d15a23d39d43bb6cbfc6cd66e2d7530e
GET /s/s.id/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:03 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=396346
expires: Fri, 31 Mar 2023 17:51:03 GMT
last-modified: Tue, 28 Jun 2022 09:03:45 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cEiPYRg49N%2BH%2F%2B9FXOCOLQ%2FlSrSfrhw6FK90%2Bh5ETRI94KPjFkt%2FPioo9WIalQGyBErrbS5dLnzpBtCw9ECmFQo77hdn8I%2B%2B2KkVcVfoqHVlaxbW%2BBrFIz6QzU8850A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0a443b1d610b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
google-bidout-d.openx.net/w/1.0/pd?plm=5
34.98.64.218200 OK 20 B URL HTTP/2 google-bidout-d.openx.net/w/1.0/pd?plm=5
IP 34.98.64.218:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /w/1.0/pd?plm=5 HTTP/1.1
Host: google-bidout-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
date: Fri, 31 Mar 2023 17:21:05 GMT
content-type: text/html
content-length: 20
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertagids&topUrl=blog.s.id
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=publishertagids&topUrl=blog.s.id
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash cb0b4e04fdf83a8c9f40c6c96e463b2a
eb4bf7d75f15081de1e2238ca4c6fe316ab0a507
cd99432fef078474a1f88e52dcdbdec46d3f01aa7b039486b8450112aab4c322
GET /syncframe?origin=publishertagids&topUrl=blog.s.id HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:04 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=5ec2abdd-bf19-46ee-91d0-6cbaa8164374; expires=Wed, 24 Apr 2024 17:21:04 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 369045
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
blog.s.id/cdn-cgi/rum?
104.21.54.41204 No Content 0 B IP 104.21.54.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 957
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.1.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680283261.1.0.1680283264.57.0.0; _ga_GJLS9JMJCK=GS1.1.1680283261.1.0.1680283264.0.0.0; __gads=ID=4203c4a1a077384e-2218ad18efde00f0:T=1680283262:S=ALNI_MZlEz0DIIFTBpOVWs-eYAu1SWS01w; __gpi=UID=00000bcf03aaf015:T=1680283262:RT=1680283262:S=ALNI_MZPfjGAWAHSZgZFXZDwde_mQRyDRg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 17:21:05 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0a44490c88b527-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js
IP 104.21.54.41:0
GET /_next/static/chunks/framework-1d78b5852a861806.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1fbbe-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aqCeUcMEYGB6Yv6Fcj0pZ%2BAxR9bJjVNBTDsco4vjIdKUQwg3XBU2Ew5%2BjNZP5eImxSk9yOmpaGWNjQYdHUgw7ZIJCzo%2B1MXn9XxtrZUqf%2B1wMMpIzs2da0uklSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d73b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js
IP 104.21.54.41:0
GET /_next/static/chunks/471-dd22a53f3091be72.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1ed84-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AkgF6NabG6KS9tqJyYsDcWu3JKU2KqeTKCaO4%2BIUNF0QPkSa%2B5eeSWznoeLBGmnUigKHfD2VQvKjFVJck0Xmmib91rkYQzwl8IJvT%2B13oANkYRA%2BjVz8a1nU%2FW8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d82b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/css/71a6f00e7be8366a.css
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/css/71a6f00e7be8366a.css
IP 104.21.54.41:0
GET /_next/static/css/71a6f00e7be8366a.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1dc1c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PxiH%2FzJbyL3529uv6oiUQV1tpWxR3Mvfd%2FvvYAGfq3UJC%2FEBHe4km01Qqx8pn6Hv9Mv7nFTAiWZIdycJ88bRolKx2idykRxOxlarGE8qfyi2a5Y1DtpmoAB2Lcg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b883bb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js
IP 104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3789-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: DnRzO4kZ2aL67eSj6ZrzqbA2DVNEqw53EI4vbzriZWMXdTvk3wkEbNlUqPBX661//his2bZScKs=
x-amz-request-id: VSW6M9HMY3N8E7M0
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"6af06a25e69c609f5b52830fc5e8a62d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: aES7C0WvHMN3603MIPwjba4g3yfMyK.E
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TfIx67gLaNfPhMvs6qFALJ9CDUc40Fd3fICTIjsVeiql17np4iXq36jpvpIVlzJtwG%2Bh2ahov8tgPYe3MmNOLhy4CFdmCfBTVs4bu5%2FHciTqWEkNIc4Kfj%2FCIBunP9fwK3dr1PQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423e89eb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js
IP 104.21.54.41:0
GET /_next/static/chunks/webpack-434fefa8f39d8fbc.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"6db-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oqrMKubCwaRIWXiHJb%2BHsD7QfOpyvrV9V6%2FqvzfXgslKjBwaDHcfPaaoBNMNpM5PWIApuLO8ffxq1UEZZooOkBOTU1nrW721QCaDL7rEojSZDBCa2KpHhUKoZbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d6db527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js
IP 104.21.54.41:0
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"40f-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zsmJfQQ3tcwA6gpiYo2iAHOeN67DvOzaKSnjMGHsfuk%2F9Ze9yMU0cOY1pk39wPCiFmvJmsCrzMpJIZj6GYEcKRKcQIS3xX6F5WmFzMTi0anWHwlkSXvVKp8TM7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f9d93b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js
IP 104.21.54.41:0
GET /_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"46a4-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PGdszzBX4HNwCqUHtgi4vJG50JUdpuYCdHUoyisdumf01kOdTwGIGEf515MxdaGNT7Z1BnY2sI%2BFsHI6UTfk0sLqSbS2A%2BmwO0xn%2BBQcpHYt%2BysHpb%2FN%2B3YO1%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d8eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js
IP 104.21.54.41:0
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5b-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ORCFzQmENpWofF675gSDB%2BvmtodNIMd4Zxgsd8XE%2BmZAJUKbNKNVK9QmWBQ1yMBAq%2F%2Bp0Oo2LASONLlDuLL236SJJfcPYGLoexGLugBzFdQpQl%2FUngY%2FtPKL14%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b985fb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d
IP 104.18.72.113:0
GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 59
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IbqDGw7HvN8Y7qXEnBYdnd0sAyJP%2FTW1IxapH0er7GqHu7HeA0mWrp1BNAaToIn481EdzuAXPOoI%2FKwmkyuhPQVuPvsLR5GZMbbN1isOfqoN1tBnNQTPszt3%2BzLaRg4bHDmdqG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a441bed4ab4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js
IP 104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: RYdXOOKy1HOtgMm47xOnJKo3dRijpuMMyO1zDXpqYGfBkoZqDJ87+CV25KodhDqSc/z8+nhbn44=
x-amz-request-id: PF8MPK7NAMWDBKEJ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:27 GMT
etag: W/"8340513af1527c72129bdfd58adc8b99"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:26 GMT
x-amz-version-id: t3AJIslMO6V4cKu0AIZXQursbNfEozLo
cf-cache-status: HIT
age: 239026
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xrYp7sym8OEgG8YQK4ygTd5e47%2FaR0aU4vcyWR%2BTipnoCqlkPbKj17D7ZRem13l3FOJJGd%2BqHUx5E38Y6RNct5N8qsERGYt3fgerun2LEg4KT9w%2FvFk9LWbNGhwz06cuDMe8%2BXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423d878b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/favicon.ico
104.21.54.41200 OK 0 B IP 104.21.54.41:0
GET /favicon.ico HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283258.59.0.0; _ga=GA1.1.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283258.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"171-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GaPOhECYsXsHbRnrMBYI0y3kFeI%2BCitlLptRdr9aJm8mO20%2FxbvGSEgezyGc7LQn2zBEXEX%2BYS0uMXAvholWPPsm%2FC%2BphaqXv%2FvUyjwJkPPIvm%2F7qEQlf7yW%2Bv4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442178b3b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/css/a784000e88d6fd7c.css
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/css/a784000e88d6fd7c.css
IP 104.21.54.41:0
GET /_next/static/css/a784000e88d6fd7c.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"18c4a-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iIFKqOlnAaFKkPAVOu0EYARidivpMzFGnkJigIoBlhlJu%2BbeylXbacb3VNW6ZVpLbpw%2BjWeDqO30zWrT3MWuNWvCuluipCtBVCAN8zxxppLaZ1SWAvwY11sxWtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f7d62b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
104.18.70.113200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP 104.18.70.113:0
GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:02 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"13f9168d502918339af59d2ee2876904"
x-request-id: 7af38b6b4b82069b-ARN, 7af38b6b4b82069b-ARN
x-runtime: 0.002800
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rYMbMVa0TXzEZvK97CQH79IkLxnQBEkz7%2FwCD3HzCzyexaJMrl44ovXRP7GVohFVWBBJfumpAkaABTSwFZ3JazJXUYVpvPzpsCkIOhDknqM%2FLnyqc4%2BxATkBil%2F0S8NJqMw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4432fe39b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js
IP 104.21.54.41:0
GET /_next/static/chunks/webpack-7410c5be2455f264.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1543-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cqn4%2FyQj6Bd0pzAB5gCClGJxsMBsH40jrXa24g1%2B9Gp%2BoObVWPcAZ2Q%2FQ2GeEWQm35%2Flm241%2F8%2FoVC%2BGH0h676wDqr95ih4fJOsk3QofA7%2FCphB5GCq6qpFOMg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b984eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js
IP 104.21.54.41:0
GET /_next/static/chunks/729-f86d647a9e9e1eed.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4bf3-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJN5YMqA0PszZIxb6a5OxuGgn1NWCLRPQwpEb7woddAS0MtiuMkGHIFJrEcBCIHPGO6URjzMsr2EDzoZY8KMuQvmN56JZKiesE2DbH%2Fs6YWHT3d2jcI7Xf%2BtIQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d8cb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js
IP 104.21.54.41:0
GET /_next/static/chunks/30846afe-cfd475acf1f13fd6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"a05-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FS4VGqGEhHdfWo6SbdUYyjB2rb7mmN9HXhgVwrIg2ccB2Eb1v%2Fr7fzq8NuOFhJCrOPxD0Xdp5e7zxSmStGEc1uu4HgkpW2WfaxQy09WDi5qPSN5Xlj%2BiDutShZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d80b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/main-bba3f19427abc986.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/chunks/main-bba3f19427abc986.js
IP 104.21.54.41:0
GET /_next/static/chunks/main-bba3f19427abc986.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"19458-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339602
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9sUGAe%2FG0cb2OSnpUm13UfGanTx%2BzKleXApflfwIloLQIDgWQf3aF90KfyxaomfnF1JAMMDq4fhUQ4sJlrWcX2QFmD5I1XCZRF53hz8OorMewAALLRL2DSccVYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a441b9852b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d
104.18.70.113200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d
IP 104.18.70.113:0
GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"5cdb822494faf4075722a9e5316d7499"
x-request-id: 7af38b537ad6069b-ARN, 7af38b537ad6069b-ARN
x-runtime: 0.003885
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v3LBp6qKDGP%2FEoMnmqN3dWdAYtdHR9Tm4IOfrpRWG1ah3M95e9X%2FADhdx4EhO1JHSfjRnFIvgIbo9SqQpXOp%2B9PcWqg1i8jVZ3GwWCQmkIRRGWO1srILQlx36QDxko%2BHt7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a441c5e90b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.ids.js
178.250.1.3200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.ids.js
IP 178.250.1.3:0
GET /js/ld/publishertag.ids.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 17:21:04 GMT
content-type: text/javascript
last-modified: Fri, 24 Feb 2023 07:57:32 GMT
etag: W/"63f86dec-9c21"
expires: Sat, 01 Apr 2023 17:21:04 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js
IP 104.18.72.113:0
GET /web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gNSA5Gt4/K0ICYGAzIy9UajPykspKEpvgbLnLyBqWhLEmVM/1g9YG17rW5MbJycWvulAOIOZzfs2bUov//fjlw==
x-amz-request-id: YJT0A6KT9BJN81GW
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:52:42 GMT
etag: W/"9a22523a174d61325929e2f2b3281227"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:52:41 GMT
x-amz-version-id: sF00I9ZP2P.ZPdpa8jMGTZwYs_mUbya7
cf-cache-status: HIT
age: 239062
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kH9ftR%2FkSOEoqWGnKDPJV%2FkaUnFWhEJV7BX1aYP5bzmU9h8ULI2k2%2BSNRn3mK%2FvuFQXFft412kNh2k0guoxg6rodd9zEnceFg5ImRn9Xck8tPGYnseorocIzYQxRA9U1zimAS9U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a441ffaf3b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/images/sid-logo-new-dark.svg
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/images/sid-logo-new-dark.svg
IP 104.21.54.41:0
GET /images/sid-logo-new-dark.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.1.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680283261.1.0.1680283261.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:02 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"f40-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5S3l1N9Jx39FzFEGGdjiz6OANsgRxsiPy6%2BuPcaQpCD7oWBPopSMGwU9BZuVcl%2BXgFOYv9XzJdoSw%2FO%2BzrNbEzLmD9WR%2BjU2d64ESBq1uNR7yg4mIiHrHx8Hmbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a4432ea88b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114
IP 104.16.56.101:0
GET /beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.3.0
last-modified: Mon, 20 Mar 2023 17:58:49 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0a441c5b33b4ee-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
blog.s.id/favicon.ico
104.21.54.41200 OK 0 B IP 104.21.54.41:0
GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.1.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680283261.1.0.1680283261.60.0.0; _ga_GJLS9JMJCK=GS1.1.1680283261.1.0.1680283261.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:03 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"171-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIAQduL7rkomil%2BV6uqbkgwwS8MDTlSJbNpZiqYWEvzDSYu9AioxnZtLOkOUk8kAtsPWmFDfk3FokJ370HOqMAI5lvMokx%2Bj4vQFMj%2BItDDErlX6l6W8wESWo3w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a44362f26b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
sdotid.zendesk.com/embeddable/config
104.16.53.111200 OK 0 B URL HTTP/2 sdotid.zendesk.com/embeddable/config
IP 104.16.53.111:0
GET /embeddable/config HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-87c9df566-wqkw4
x-request-id: 7b0a399f5a4935af-SIN
x-runtime: 0.002305
vary: Origin, Accept-Encoding
x-cached: STALE
last-modified: Fri, 31 Mar 2023 17:08:29 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZCJNX2rUYZwaGtu%2BoTWaHF62TuNHKQhRsrlsXvR4TAdyKPbMiLVnjyBuPtp%2FihthmNtygqXe%2B%2BLdYpF%2BCrISnT0KCOgr5X81%2F9ZDX2bQhY446wFsScnCfO%2FgXdEwAJd69VPN0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=92bf91132b88ca617248645e8d21e19e16aa4c8a-1680283259; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b0a44209c620b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/css/db96805030821792.css
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/css/db96805030821792.css
IP 104.21.54.41:0
GET /_next/static/css/db96805030821792.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"f9d-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k6xCuvZY2mvSGU4wrkuG5d2P0CLMrbWPC9IVI2VDaIyJSLab%2BgS38VYwkAFESQGTFmIrKsCTCs50X8USKs5CAJcohgl3dzs9NKaF9cCNUPViUVtgqXbVqXPet1I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f7d64b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js
IP 104.21.54.41:0
GET /_next/static/chunks/main-42bee57ba94e9a13.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"193b5-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1339600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mjTQas0cWeNnwSGhYdql1zmS36UF5eUHICLdSEOZI%2B2341I2dFP%2BgcgU4H8Pj%2BvA0YZq96hGjZ1IuoFbSY2aax8XAwo3Ga2MmGdFm%2FazxSxTyGp7R7%2Fx3Bq3N%2Bk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d77b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js
IP 104.21.54.41:0
GET /_next/static/chunks/769-cb3113076d7271e6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"39455-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0MlpSDuKsmJWkPqLwepUw4cY8QCwjX87tpDNMi%2FZy9GbuD7KrmOHJRHI4NWWwTOyJqNB45Y1I8fzlmsberCQ7c%2Br2mNse7wP7qrvTdZ08YVeW06z1vhN4OavyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d86b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP 104.18.72.113:0
GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kJpoP9oUyEGc7o2IHNCoWDsweVVSsk8oODPDPOKXXEW%2F6ItVwQom8Jyraz5M51uFbKUO1Nl2A%2BivTTf0%2B5AQVddPVOOlvrxWTCe%2BKtiocgEnj7HkLUTC%2FpGoqSDAH9jRSjWpbIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a44327e24b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/forbidden
104.21.54.41200 OK 0 B IP 104.21.54.41:0
Analyzer Verdict Alert fortinet Phishing
GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:58 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jbUWXZmjUzevvGG2d4ZFaD0ylFIurdb1Q147quNu0elyjBP4xXEhgNfn6FW6%2F45VCgDbq3LIkf77c1jWChq%2BEAvB6ZNnz%2BaYsOo1Q5poJN%2BUU2kiyWb9qNShowM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a4416c8acb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js
IP 104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-4852-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gmyPiIPiaHNKNt9QM+fEzjdKobmVbgGolEwOMh7QjVSuSpX4sqTR2CRhWSIOHLWuh6kEUWZy77g=
x-amz-request-id: VSWAP6674S1VA6CQ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"b361c19a9af081b357568069aa583838"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: lCJr6G0FRoRJ3k9B7NLo_j8rphrHyr3h
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vQkJRar4EqGbyW3KKrLTC6RaOmuS0bKxrj1SujVHOYi1f%2Br5c8sAQzptwuO2GNR4cRBxV6P4BBsNjSxipX%2BL8veMYPYilVaN9wKQ4zNXoyEyMVaisv%2Be3Q%2Frkwswd6gCSBXIqU4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423d879b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js
IP 104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3017-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Z0h1mXL70uJbSKY84MZUkL0ClBFu6c+nSOua+oCuPf20Sy5K231aBFbUuzVh55EY5fdYZgayqko=
x-amz-request-id: VSWBW6N0BZ8APV9P
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"40d0e2b632d1b990738af3991e0aecb1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ina_PZ0M7y.dw_MpptgwKDF7jcD.KIMt
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qyDcyLNnGWWhljaw7M03O796KJd0Cr8St3r2tEnpPcHFdADUBhtH9VSZWDucnOTOcfuoqG7wpKuEZ%2F4AIZMUbPwW41kqprM%2BzoRgvCKd2PaYvobjueZfOkg8lRDxUnK0y4jWekc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423d884b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js
104.18.72.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js
IP 104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3487-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:20:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: TPPZjDfCmjIgXtYb5fSDMR7L65AWfnyeWlhCSR3APpCK8GeHCCV8dc9UUZnQKEyQo3at5Aoi280=
x-amz-request-id: VSW50D2CZ4WE372X
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"1ee21198c6e244c8d7bf3bacbc6faa0f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: oD6M2RuSVTp_VfDe7Mc22J.9_zrjrF1m
cf-cache-status: HIT
age: 239053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1%2FSy0eWO0raGMCT8ek6aoNimgRngH7zRr%2BYW27f42JiKGLgKmQCT8lf2ae59usD2iHD%2Fivme7ueaeXY%2BymFIVGVPRwQAgVf5JUySY3ZlnVAuMf%2FpZNdu%2B96BvTZpiwh4norzEac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0a4423e890b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js
IP 104.21.54.41:0
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4d-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JUOOiimIln1u7KLDv2Nx31QrWcT9Tzj0aQQmr6jToK1cEoTnFTUwFdcV99uC5uJ%2BCKuti85t8rsAtBNsMUGkwntnl%2BLcaGGuXu0XRrgBGXKYFdj0AjL6W6hJ5%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f9d97b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js
IP 104.21.54.41:0
GET /_next/static/chunks/pages/_app-d23866c4997f9a6f.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"2bf69-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DabkhFOo4BHY%2F26Kp%2BhajIN%2B67R4xK6ue4%2FJKZmybr9BVIDiR1o8eaDA%2FP1Kd2BW%2FLtdT%2FU4ScpQEPDq2bYog%2FbGba3pnXwFidmwzZHKXO0k83pJUTPXtRtAR6g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f8d7eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js
104.21.54.41200 OK 0 B URL HTTP/2 blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js
IP 104.21.54.41:0
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.1946344428.1680283258; _ga_98MWVCBDD7=GS1.1.1680283257.1.0.1680283260.57.0.0; _ga=GA1.2.1065096777.1680283258; _ga_LJQ0V44EV5=GS1.1.1680283258.1.0.1680283260.0.0.0; _gid=GA1.2.906730838.1680283258; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 17:21:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:54 GMT
etag: W/"5c-187367647b0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 29011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kk9SaGfEuTHHhDfspP9czM5dLRWIS99iGpTGrvPF%2F8BLwBwyQVeffbedWkxRfaKPukVYdaak0TApJXyyjrHws55eUzPpTkMlnSk53P%2BrPXmD%2FDcdVRrMC6Ju1Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0a442f9d98b527-OSL
content-encoding: br
X-Firefox-Spdy: h2