infinitymedicalandwellness.com/boatest/login.php
151.101.66.159301 Moved Permanently 162 B URL HTTP/1.1 infinitymedicalandwellness.com/boatest/login.php
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET /boatest/login.php HTTP/1.1
Host: infinitymedicalandwellness.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://infinitymedicalandwellness.com/boatest/login.php
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 1cepr6sfsv
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Mon, 20 Mar 2023 00:40:18 GMT
X-Served-By: cache-bma1650-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679272818.101522,VS0,VE123
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2203
Expires: Mon, 20 Mar 2023 01:17:01 GMT
Date: Mon, 20 Mar 2023 00:40:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4786
Expires: Mon, 20 Mar 2023 02:00:04 GMT
Date: Mon, 20 Mar 2023 00:40:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 00:27:10 GMT
content-type: application/json
age: 788
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6576
Expires: Mon, 20 Mar 2023 02:29:54 GMT
Date: Mon, 20 Mar 2023 00:40:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: witDvG1Um80wtKKl+/EFbE353y5Hyn5Coqq1YH+OtbeNf9P/qnnygHWzhbhhWGdZNNoAqpiDa4A=
x-amz-request-id: M1QASV97VFRNJTAM
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 23:58:29 GMT
age: 2509
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 00:40:18 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 00:14:32 GMT
age: 1546
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2194
Expires: Mon, 20 Mar 2023 01:16:53 GMT
Date: Mon, 20 Mar 2023 00:40:19 GMT
Connection: keep-alive
push.services.mozilla.com/
54.201.249.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.201.249.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PIS3p/ELW26jNsDPJhInQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +sqJkTg5ZltIBzhXHNy4WZFeLKY=
infinitymedicalandwellness.com/boatest/login.php
151.101.66.159302 Found 114 B URL HTTP/2 infinitymedicalandwellness.com/boatest/login.php
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 25f4889425b3c0b7b14fe7149c2575ad
5d096315fa8eba5aaf6d870e034a455914386293
77cf3a26f2ad6fd43cfa593d8d5dcf0c224b25a624e0e2f63e0947d02edf650b
Analyzer Verdict Alert fortinet Phishing
GET /boatest/login.php HTTP/1.1
Host: infinitymedicalandwellness.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://s.id/kY66E
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 1cepr6sfsv
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Mon, 20 Mar 2023 00:40:20 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1679272818.475303,VS0,VE2248
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 114
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7506
Expires: Mon, 20 Mar 2023 02:45:26 GMT
Date: Mon, 20 Mar 2023 00:40:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7506
Expires: Mon, 20 Mar 2023 02:45:26 GMT
Date: Mon, 20 Mar 2023 00:40:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7506
Expires: Mon, 20 Mar 2023 02:45:26 GMT
Date: Mon, 20 Mar 2023 00:40:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dd89721d1aeaf671e76434c7d8a4ad7
a3dedec80d68e8f0326548d03b0e594ffc87ecd1
ff593609540ed01673c58483ce57a40cc712000d32427ccf2486fd0035728448
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6839
x-amzn-requestid: c478a5c6-cb9b-4324-be41-b79c32f99570
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDU6GKyoAMF6uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f52-180dc15d2627e08d3182a761;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DSmKBceJ2qg1APkPHqdky68b35cxstD-4bvUpzS55J--1FjVZ0AbKg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:22:00 GMT
age: 8300
etag: "a3dedec80d68e8f0326548d03b0e594ffc87ecd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30b61a82-31c9-4b0b-aec6-dbba54acc321.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30b61a82-31c9-4b0b-aec6-dbba54acc321.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 272fa8643d9c3eed25f1d234d3ac5b6a
763fbea1e343328a6d3e18c1477c0f75f0ce5f08
829680ff40e11b1d67c5400a790a693032a6c0070bc0398b6e162fa632f98cdd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30b61a82-31c9-4b0b-aec6-dbba54acc321.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12174
x-amzn-requestid: 1898b43b-79b7-438b-bd6a-233cc32a44a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDowHJLoAMFYUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177fd1-08133075669a6f7659dce5b9;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: SKPgRMc3DL6JHLia7O3UIsWGUF-_IDan3dVvRBhrrP2HTk4mR3RDXg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:22:20 GMT
age: 8280
etag: "763fbea1e343328a6d3e18c1477c0f75f0ce5f08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a940b362660fdee25faaa51e08c439b
85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c
18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFESEDGoAMFQ8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: WZ5MqPZ-MEjDt3N53EIx1XrerDmUkyvK-5FUXAmI29GXlGe6AaPqEg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:07:00 GMT
age: 9200
etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 04:25:44 GMT
age: 72876
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e5aa79770d71507827e79149031b5cf
338ee74f53fac2b19a90981bc4b02a3c3722a1fa
81df6f2312df6e488ae91c172ecf872d694497ffe80500f71eb97e6c06ff5f5f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: dfaf4924-b8c3-4b6b-a079-7c3903fdf4fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDVjGJyIAMFS9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f56-6379351b215dc2d9638de9ea;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 6SrsIy07rGzqwuej2lpFFp0PdFnuWcen4ItGcBrNd_AXSWlU1vObSg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 28fdf6e146f70e7372911f118404fb20.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:46:54 GMT
age: 10406
etag: "338ee74f53fac2b19a90981bc4b02a3c3722a1fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0c897fb-8d64-4bea-a5eb-b6e8e9664b8c.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0c897fb-8d64-4bea-a5eb-b6e8e9664b8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39d4beedd22f0421e30ea9c60efa1b90
f48e2d47d9b2db12b608a3483965d1a7f76b3181
a5f0358d06557afcc58d11c5fe3e348c9a53c35c9da6b8b3ac6f4dc00c500013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0c897fb-8d64-4bea-a5eb-b6e8e9664b8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7478
x-amzn-requestid: 3a3dd7e9-51b4-419f-b3a9-b999edd7fde0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bz5PEH1vIAMF1Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64116f2c-204dcd321175026408202e14;Sampled=0
x-amzn-remapped-date: Wed, 15 Mar 2023 07:09:32 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VQHINER0Jos78hYPGLT4FVz_JKp27j6Z--eLjgGICJtwxSC95lZwhQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 20:44:55 GMT
age: 14125
etag: "f48e2d47d9b2db12b608a3483965d1a7f76b3181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffe93b76c4654f713c45fb884d798344
96d62d4b259908042602c4fa8008f83a4cc27e8c
65258cba89329f29858377b956c867cca10602db02a9310f6de98fc47446f9ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65258CBA89329F29858377B956C867CCA10602DB02A9310F6DE98FC47446F9AC"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17489
Expires: Mon, 20 Mar 2023 05:31:50 GMT
Date: Mon, 20 Mar 2023 00:40:21 GMT
Connection: keep-alive
s.id/kY66E
45.126.58.78302 Found 0 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 20 Mar 2023 00:40:21 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
home.s.id/_next/static/css/a61c3d54aa016515.css
104.21.54.41200 OK 20 kB URL HTTP/2 home.s.id/_next/static/css/a61c3d54aa016515.css
IP 104.21.54.41:0
File type ASCII text, with very long lines (65452)
Hash d9c002e949683c2af11577b54c2f80b1
2b8621a48ec75ada64e31a9521654e624eeedeca
388228a031379b04a1b3cfd6dc2a4ea7216cffc5ee89c3469b81a7c005cc62b4
GET /_next/static/css/a61c3d54aa016515.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"1d2e2-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lhdeqR9OmbmV9vA3T%2FGpClLf9xtYuxajJJ1E8B7BO8kZhMYMxeKKySBitXNcZjx3SVsyyWFboH%2By45fhEogxL%2BOyo8E3unc5wDfzhdSE4AFK035l%2BP%2BnKerjxPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7439a0d0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js
104.21.54.41200 OK 2.1 kB URL HTTP/2 home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (3689), with no line terminators
Hash 30ab7d7799f8bb25bc98c9360cbf6afb
88a4c39c6f0b75442742b3bbc0f3b8b4f0a72bdf
ef7b5e3a914fdfb0ef57d0124befda9fe642ab8b8a532b888057078b3e38d776
GET /_next/static/chunks/pages/forbidden-9c7287b02a773507.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"e69-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WPebYVW5zwmrPh3hst9s%2BmA4fua0eFIO5DAiOsPSp%2BoB0RJCNoSfWUWs2LF4WCrTou66bcJvFwVS7%2B6vuNVDsYuOaAw1y9hETpig1NHhQGh%2Fa%2FyKn%2F6ptTn1yO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa160b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/pages/_app-74b2f95f5f03b863.js
104.21.54.41200 OK 102 kB URL HTTP/2 home.s.id/_next/static/chunks/pages/_app-74b2f95f5f03b863.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 102 kB (102450 bytes)
Hash 2327d38c98a144070be02dc843963e9f
7f2b0d7d81d93e89906e0a13f82c00e2e5208a0b
69a89124788678f1fdde2c1c34d964e58ce6f8c8793ba9f83d5344390d0a20bb
GET /_next/static/chunks/pages/_app-74b2f95f5f03b863.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"53806-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pK8fJ%2Ba%2BMHCLL2cEl3vM1bScyxcSw7VNYbSt7Oo9z1%2BUUlTTLP%2BtBx09mqbLIcEee7lyn3IniKL3z%2BryJxxgeTD4gu0OXGdREBPyjBO%2BQ36wgeUxTWlpsI70G%2BQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa150b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-10823601447
142.250.74.168200 OK 69 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10823601447
IP 142.250.74.168:0
File type ASCII text, with very long lines (8284)
Hash a26c4a3103f06e153b6fa1bab1c970de
29f2fb1202b17b3def414b99d36063c083b56bfd
ef4f628470a2d34f8fd47692d4ebd4a0e33687145b78cf00d362e55fbdf6093f
GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 00:40:22 GMT
expires: Mon, 20 Mar 2023 00:40:22 GMT
cache-control: private, max-age=900
last-modified: Mon, 20 Mar 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69032
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP 142.250.74.168:0
File type ASCII text, with very long lines (19390)
Hash f5a2130093e0546285731880da0c6f59
b5a0613238ec74e30e76ddc97411d072902f3800
73176986d7aa912536719a8a807897c9e21e4c9f134eccf6894489c097d3e50b
GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 00:40:22 GMT
expires: Mon, 20 Mar 2023 00:40:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78017
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
142.250.74.168200 OK 472 B URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
IP 142.250.74.168:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 00:40:22 GMT
expires: Mon, 20 Mar 2023 00:40:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78784
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_buildManifest.js
104.21.54.41200 OK 2.9 kB URL HTTP/2 home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_buildManifest.js
IP 104.21.54.41:0
File type ASCII text, with very long lines (8790), with no line terminators
Hash 88f95d676fe9df4537201dbd2f8639fd
f43a38170915ae018d67347cf5a4fecdc32c9fa9
72d5c3f73707b5a59965381af38cda0074fda93d682f3066c6a1855f2d65d502
GET /_next/static/uBWGVbJWVh8hF6VMRLqeA/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"2256-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5VG5UWVdW2auI44fMPcn9nYnbYZqRtkvPx52Ekfe2D0H7LxRlyySXxhSSrn0qKAzj%2F9Yf8QGQeeDeHG0X%2BUMPGrJMPIuz%2FmvzYmT4bQA54S0DG4%2FulDHEiDHGpw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa170b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Mar 2023 00:08:41 GMT
expires: Wed, 13 Mar 2024 00:08:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 520301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_middlewareManifest.js
104.21.54.41200 OK 736 B URL HTTP/2 home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_middlewareManifest.js
IP 104.21.54.41:0
File type ASCII text, with no line terminators
Hash f4eeec20935b7dae0a02db08530330f5
8bab960ab9062d427618a190b368d72cdc857afd
47ab5a3d521ef3ce365aae629428e169996c242e96854c392a320e126cc9dbf3
GET /_next/static/uBWGVbJWVh8hF6VMRLqeA/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:11:13 GMT
etag: W/"5c-186e41bce68"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TP2u9sFn5CKrWZDfD4CXZEaAnScRxpj8RuFZWUysx9bhSpx7xjkvug%2FQ6dxoW3swXJY5AlDNWkoLHHKB5WMShnaNYSCftBzzIybn5SRJTZdIOJCcrPp1G5hFFHM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa190b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f91a75a2c9ada621d16b03ce123d8121
77c192dc932d2f8e150dbd51183cd5e73b5458fc
98c12df744e1efdefad72cf2f22e166d0d8bbcdfb80e3a693b127efc983bdaf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98C12DF744E1EFDEFAD72CF2F22E166D0D8BBCDFB80E3A693B127EFC983BDAF8"
Last-Modified: Sun, 19 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5184
Expires: Mon, 20 Mar 2023 02:06:47 GMT
Date: Mon, 20 Mar 2023 00:40:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f91a75a2c9ada621d16b03ce123d8121
77c192dc932d2f8e150dbd51183cd5e73b5458fc
98c12df744e1efdefad72cf2f22e166d0d8bbcdfb80e3a693b127efc983bdaf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98C12DF744E1EFDEFAD72CF2F22E166D0D8BBCDFB80E3A693B127EFC983BDAF8"
Last-Modified: Sun, 19 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21559
Expires: Mon, 20 Mar 2023 06:39:42 GMT
Date: Mon, 20 Mar 2023 00:40:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 23980a77eb70f0b523cc52ddf1fd05e3
0c19b398b8f1b815a3e5ef96a300a7bbea6860d2
59ff41cfe0ef1a8461858b690963b416bc1d123e29e9151e9fe743bbcdc59a3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59FF41CFE0EF1A8461858B690963B416BC1D123E29E9151E9FE743BBCDC59A3B"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 20 Mar 2023 06:40:23 GMT
Date: Mon, 20 Mar 2023 00:40:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 23980a77eb70f0b523cc52ddf1fd05e3
0c19b398b8f1b815a3e5ef96a300a7bbea6860d2
59ff41cfe0ef1a8461858b690963b416bc1d123e29e9151e9fe743bbcdc59a3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59FF41CFE0EF1A8461858B690963B416BC1D123E29E9151E9FE743BBCDC59A3B"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Mon, 20 Mar 2023 06:39:37 GMT
Date: Mon, 20 Mar 2023 00:40:23 GMT
Connection: keep-alive
api.s.id/api/user/me
45.126.58.78204 No Content 0 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Mon, 20 Mar 2023 00:40:23 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d
104.18.70.113200 OK 6.2 kB URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d
IP 104.18.70.113:0
File type ASCII text, with very long lines (23376), with no line terminators
Hash 7828a8e1e8145dc6a56cd7c2374a853d
30dd04b8ebe360d04177d302d98bbd88db7c4e96
c8ef84b2666ef51ae09c29261e6bca7927f3141211e3d4b0b2259fd86ffdd728
GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7%2BjMNhta3wW6SXvbEK%2F7y0wO0Baywmpgtnww7RC%2FbkXS1HxexD8w5QiB%2BnSkr4TjGtxRdYJcrPMDsDGyEKFCO9ZoS0usmkmyJYqgbzIRrsz7FwXRmZZ4ciXGYYdDwzpZ1Fohno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e743fb0ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-4f72a1e366ead4dd0876.js
104.18.70.113200 OK 51 kB URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-4f72a1e366ead4dd0876.js
IP 104.18.70.113:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash a79eefb7eea86d84ca82404b505b860d
17f0bbbe9877256fc68b89f2a6f1fc35a7c3a43c
da5a3167a030d4debec05dd42d7fda717b28de1fca8468eb1a6971d3ea629ee2
GET /web_widget/latest/web-widget-framework-4f72a1e366ead4dd0876.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: hA9/0EFSt//MqGsyXCiBwh8rb8f9xAVztiHs+20ocPTIHrcB9jgkGmPu8xWGZTXw4iRD9FUG58c=
x-amz-request-id: VGDXBCR1P8GQEZ68
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:07:17 GMT
etag: W/"d01a15ca78a70863262e1b961a9f7a46"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:07:15 GMT
x-amz-version-id: YlLD4Ewt3uiZ2ifizV02MIhUJBkDPXyV
cf-cache-status: HIT
age: 252237
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o69GGj6Hk1PQc6IO2Tdk1baCMYGF%2BhZmde33IVYgBpiT9To0vCs5luNK9kgY2W%2BvVnbXqtet2ZyRpesZEmXJTGsxv6pthWRJwheqK6vtQ4s92qTN25XqKXTGFiFB18kGcO0OaDA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e748bdd0b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 19 Mar 2023 23:53:25 GMT
expires: Mon, 20 Mar 2023 01:53:25 GMT
cache-control: public, max-age=7200
age: 2818
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2eb57e50cf85e854f2979aae08edfbbd
c1d8f0aa625a907989b1eedd64dfaa8b59f73d14
e36ae9f68c31c5d9f1eb6a96b26f97b94b8d61f8a47aa1c576bc0f816e3a2e14
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=852073360.1679272823>m=45je33f0&aip=1
108.177.14.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=852073360.1679272823>m=45je33f0&aip=1
IP 108.177.14.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7&cid=852073360.1679272823>m=45je33f0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Mon, 20 Mar 2023 00:40:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1679272822661&cv=11&fst=1679272822661&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&auid=1709335970.1679272823&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1679272822661&cv=11&fst=1679272822661&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&auid=1709335970.1679272823&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (2531), with no line terminators
Hash 1b309b40ef518f1d0c94116500cdabd8
ebe55b3322b8a75aa058a3c7b199a80d022ce319
32b85375e7f8046a709c3bb7dfe512a5acc330a4bd64978b90ff28dff3f6f5e9
GET /pagead/viewthroughconversion/10823601447/?random=1679272822661&cv=11&fst=1679272822661&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&auid=1709335970.1679272823&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 20 Mar 2023 00:40:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1198
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 20-Mar-2023 00:55:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-db6712a.js
104.18.70.113200 OK 3.9 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-db6712a.js
IP 104.18.70.113:0
File type ASCII text, with very long lines (13861), with no line terminators
Hash e7909c6b79cd3d0985d56671336a30e9
046868beb5d4c68a4b0fa31e1426699b0227d528
6613656c62f8653956164504b31e7e3a179659a88c804c2e511be908911973f1
GET /web_widget/latest/messenger/web-widget-messenger-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: xpwTdSrCvlR3Mf07Q2MU5viy2zrSSujLynS6vFcwHfFpRc39oXLln0nx0UTPHtsAgcNQTuNq0RM=
x-amz-request-id: VKFZNG95PC9RD6MW
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:10 GMT
etag: W/"f12f10f01d07ddf251baa41d39b52602"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:09 GMT
x-amz-version-id: 2Cr628S_TQJ5itnhfHV6SXr2So_STWIh
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dK6%2FqrNupDrbxNTHlIo9%2B%2FVdQuAJeRBvlL5cLjk%2FH%2BWGudhCI6%2FdAascenonuzMeWTalyMKV5QXLlAl1cR4Mv4V7HOMVLfBUoKXnV5driyYsHwugxe49W6LzEW8hEtnYxd9425k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e749ae66b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2eb57e50cf85e854f2979aae08edfbbd
c1d8f0aa625a907989b1eedd64dfaa8b59f73d14
e36ae9f68c31c5d9f1eb6a96b26f97b94b8d61f8a47aa1c576bc0f816e3a2e14
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.s.id/api/user/me
45.126.58.78401 Unauthorized 58 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
File type JSON data\012- , ASCII text, with no line terminators
Hash dc6337924fcba32afbaef2dc7a71ffcf
1bb7b761c6bf8bc117eddd9525d61844fa676190
4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b
GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1679272823,86n0u9,9dc192830bcd4a88cdfa0b5cdb706547
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 401 Unauthorized
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 30
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
api.s.id/api/redirect
45.126.58.78200 OK 469 B IP 45.126.58.78:0
ASN #132647 Pengelola Nama Domain Internet Indonesia
File type JSON data\012- , ASCII text, with very long lines (469), with no line terminators
Hash a986c42aab43f215b2cff47a241682ad
6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b
81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149
GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1679272823,i93yoj,35f08228d0f495ddaf06d726abf91276
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/json
content-length: 469
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3789-db6712a.js
104.18.70.113200 OK 5.7 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3789-db6712a.js
IP 104.18.70.113:0
File type Unicode text, UTF-8 text, with very long lines (16293), with no line terminators
Hash 93d0130dab3b62bdb19f00a28ecb20ed
c8553e212a55519d9ce4702ae75778151a3aa395
eec4cddfd707bbc64d519ec7af42970507e9d53179f5a8a5694e02552b7180c8
GET /web_widget/latest/messenger/web-widget-3789-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: nI9WW9TN8nzsPcHY18Ya8eQXnHvSBwE6u1ZCgGG9hMabkvpJotYBa82UXjYivT0eB9aDf7UbBdg=
x-amz-request-id: VKFHEA8G0P4RAQXG
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:10 GMT
etag: W/"36ae93e264abc321b8370a244410ad76"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:09 GMT
x-amz-version-id: rbkvIe8MuJmCg1LHwK7JhGwqwIFSkWWn
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VrotOiIV0OT9ecxZRv8qYZbJfCich5CHYjTT7FMBjdJfcM6HdaZrrccR50tNuqO4WHcm1ni5jfDxUltD%2BTIdlbaOH7FAvA9KJUpCZSqR517faPLrVrTZX%2B9oz3t%2F3xOTPP2j5T4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b4f51b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10823601447/?random=1679272822661&cv=11&fst=1679270400000&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3710828527&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10823601447/?random=1679272822661&cv=11&fst=1679270400000&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3710828527&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1679272822661&cv=11&fst=1679270400000&bg=ffffff&guid=ON&async=1>m=45be33f0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3710828527&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 20 Mar 2023 00:40:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d2b91b87a3060a36d0002f6338924521
b216a0ae0e118f942207ae6c51a5309393fe79f4
835446923abce8bde27c74317de5388462f43f7cbf93293a15891a2a2554e406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 00:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.zdassets.com/web_widget/latest/messenger/web-widget-1707-db6712a.js
104.18.70.113200 OK 8.0 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-1707-db6712a.js
IP 104.18.70.113:0
File type ASCII text, with very long lines (24853), with no line terminators
Hash 8bbbd7edcae71a51b31f85b1be8211df
27e17c6f72d07f87cc331714068c966428563543
d2d090d11eb5d23868cb4367f14eee088364e624ff095a0fec109279647e5def
GET /web_widget/latest/messenger/web-widget-1707-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ZnPyKR5rR8lQvtE2yWZ50VjeP69Kt1iZ8eXk2SvQtaduM7vv9F6NolCtw5r6XEPw7GatOV9mHiWhpBRn5wAYcA==
x-amz-request-id: VKFWGAX5DN2KT209
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"ae451f428ab96456490147d8abff0d53"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: FxuBk4PA1xzv32w5ghGvA9j0VT5OA_uw
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dwLCRUP%2FiGPPe76bqQqDnRE%2BJJqW4TQ3V1Iq6McUcYaR%2F1H%2F58gW7utB29HvcMOcjh8QNUy93Cb0R4lBu6KK8ABZ%2BPh14hinfgSiA0iOk8jpNGiAtgN4JXUCbgRWE1YSQS6vyUE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b3f4bb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3017-db6712a.js
104.18.70.113200 OK 1.6 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3017-db6712a.js
IP 104.18.70.113:0
File type ASCII text, with very long lines (4119), with no line terminators
Hash cc3162a08544174949f3dccdf7d735e4
7f24167324712a2256a42b50891c2deda363705f
1db486363e15f65b59a4c7455197c73d3ab8561619528690c595b59d4ef23ed8
GET /web_widget/latest/messenger/web-widget-3017-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: iTjPsM8bUmbRwzr2AYoQHFEBJTj34xE3/W/zA7p44Om+kA38p2+qQ0uG2Xi+5R474m/FzrV3lLX3mlCwHWjvWg==
x-amz-request-id: VKFGHDWR3BGHJD9V
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"40d0e2b632d1b990738af3991e0aecb1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: UUO1Q7ggfWaI9wWLAqVRKG8UkzwuRNBb
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NgW2a%2FanYFzEt2EN5269mokmvIoj4UEildZXhD7mxPRKcfFcYdrk3fOTP7DV96HrNTa7TTcX2JnlIffYKVQT4j7oGskfetK%2FDxVGn%2BUL8UrDvjN4yXsXLbPYGCQ%2Fw7fmxqpzT0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b4f4cb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3646-db6712a.js
104.18.70.113200 OK 65 kB URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3646-db6712a.js
IP 104.18.70.113:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 9e5d49de1b48c2d1111f20e5c218db17
7c6ce72b0f416a31e5c27104a0ee54123e79010b
1b7ce19aee515e1a71cf8b786d0dd917af615a693d15826d0433e44631665b75
GET /web_widget/latest/messenger/web-widget-3646-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: JZ8plu+7qr9u+jdX1Pj/eZbawfUOj3fZIHJHrK48cOIwP5QJNIq2743Lj+87iHVNnFCGfS/Vsg8=
x-amz-request-id: VKFHEHSD7M8EJMPP
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:10 GMT
etag: W/"d83718630f711c76d4accbdfe456d34f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:09 GMT
x-amz-version-id: r.sO8r6TyIRtqT9X6vm7hdIhaBjw9DU6
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o4JeBJ6Mhgjur%2Fgt3dAU6GmFPGlK465ut9kgua1uKaowMJLoJ7PkdmCVmt6r0D%2BHP8joBqR8s06HGzOSz539fnZdBwS%2F463XxIJxtgQKdEN0s5nA%2BNNXn%2BiWzaQfY39WaF8rzPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e749de7ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js
188.114.96.1200 OK 53 kB URL HTTP/2 blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (18084), with no line terminators
Hash 2c6657684fe854e68380154093d315c5
529b690ac166149f6665186ea3a1936a0c235ae0
3a0480d5d09736fd456188af6464f75223a95393d52ff600c94ed828d959a04b
GET /_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"46a4-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzDe%2BNIB0lUgJ05z6JA2UTMnuEq21Z87i5XykjnPL7qmU1v8s8JZrHAdhe81VTB%2BKGUWfURK6DEe8JVHBcIzbJxLX1sStrb3AuGU2L7%2F8srm8aUOCcSN3nuZleo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759bb91b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/729-0587de8dbc7c3f79.js
188.114.96.1200 OK 84 kB URL HTTP/2 blog.s.id/_next/static/chunks/729-0587de8dbc7c3f79.js
IP 188.114.96.1:0
File type HTML document, ASCII text, with very long lines (19444), with no line terminators
Hash ecdc309edd42285c0941a2b3c245a8cd
c56c525cd9d442e035e8c11b8ece2a8c8bbb39f6
a3ef51d5392a984037c929f91d1af93389324c8dd742554e3f3984b665c2f71d
GET /_next/static/chunks/729-0587de8dbc7c3f79.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"4bf4-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvgPCtegfGeQ9tLQGtQF99P7Iph%2BXwy%2BVMA9ATy%2F2Gn%2Fjp%2BCUUeGsHWO2YeZmIaz6Rfhh0xCiG6oeulXDuaIz8RxkNNzLZkh5cBg0VbMesVidmrAJQ3Nd1I4g0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759ab8fb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/forbidden
104.21.54.41200 OK 25 kB IP 104.21.54.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59081)
Hash 43536a32ddc873f801f67c30dd3ca837
e41f8bfe2af1135a0f2fd4dd2557f98e3f0c2d19
6bac916f263988c7b6b3ada6a7add165d9a50e7a6cf831b3a95b80b1e76584b9
Analyzer Verdict Alert fortinet Phishing
GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CkfKb7uh%2F6o2JkuSn3mZolvNTpF2ezWS%2FwrtoNi%2FJPOjQuxnWehSqHRwZYsa8uldYlH3lzBU1lmkyKvCtueJeVLFoALn3qp5tYgl8%2BezCcsClGTSUkvFIm67Iek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e73f5f7a0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_ssgManifest.js
188.114.96.1200 OK 52 B URL HTTP/2 blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_ssgManifest.js
IP 188.114.96.1:0
File type ASCII text, with no line terminators
Hash e8a5d33e4edbbba85ee35264a5786545
3d60860f109c03366c7c564afe7a1583269a2bbc
fc0060d976dcca35f738ff768cb8a2e66ab1f13792c3a996ededff7082daedc6
GET /_next/static/ex4GWcSaCkUPOcGQ2X9kC/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"4d-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 323307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zKy1p8L1PCUyAR%2BICc15hETmBcrKVtRy0B5OEKJwm5t%2BhRLKZienb6iofSM6NfE8g3Nvaw7yiQ7OqBUpUuL56LbdFqcwpgpQPVxM8ZlDFdrVwfwNasWaBHlDweM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759bb97b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap
172.217.21.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap
IP 172.217.21.170:0
GET /css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 20 Mar 2023 00:40:22 GMT
date: Mon, 20 Mar 2023 00:40:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-db6712a.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-db6712a.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: qtK7EVT8OUTnQZQrKbrXGKhYnwQXYzJyv+kpj92Q51oYyClMzG221rBj6h/UxvSg1U/q+4DY+g5Qcs+k0AfO6g==
x-amz-request-id: PF1GE9FRRF28FAJY
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:12 GMT
etag: W/"8340513af1527c72129bdfd58adc8b99"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:11 GMT
x-amz-version-id: sWDqF0P4sxs5a99sT0kJzLg7ZM8zUUOH
cf-cache-status: HIT
age: 252203
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h1pVBBXd2sIPMy2Fx%2BONmdtouzmvmuatWJzNPQSIU05yP7ftxnZjLdzFusipNx7R%2FxRIbnVnqE16RUYkXsLUm6%2BlSpJZH5GhSSyzomZpYky5%2BfOP%2FVtiIDKOQFzIOd7%2BfV6UqQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b3f47b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js
IP 188.114.96.1:0
GET /_next/static/chunks/30846afe-cfd475acf1f13fd6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"a05-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kokcOLowGiyrW60mxNQk1IT%2FJ%2FRvivPmAMR10ecy9pt2Jy%2FTk0aJ7Q%2BX94q5jwmySpyf2PV%2BhqjlR1IZr%2BRo3Ta6HZl5h%2BpA%2BVtUl6NfSOQ6smkX0GWGWBQ6OEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7599b84b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-3487-db6712a.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-3487-db6712a.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-3487-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: htO0Vc7moulhiWv54vdWCxxdXIUAglM74WeDcCm7nFnpJ6YCrqay8YLu4gxpE7rCJqMzT85HdNP++sbx1UliTQ==
x-amz-request-id: VKFKB3NWH9BDH7S4
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"1ee21198c6e244c8d7bf3bacbc6faa0f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: anuVlwxOJTvPGx3A5v.GAlx5lJmOguIX
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=56yM20hoe%2BD7AqTH%2BLsaBlQv2yNjzLVd%2ByP24vmMDtgWuIcjRy%2B5nkkrUbf3lrCDqEgkxdEUKj8wXAx7OfUwy8zd9bzDrR2OyL7MN%2FXvm2wQeCPj49gz46eh%2FAHrH3u5iQo3hiI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b4f4db51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js
IP 104.21.54.41:0
GET /_next/static/chunks/framework-8ff6c737ed443ded.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"1fbd0-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSEa56Vf6T6a6gsAttvXhJl78kvm%2F%2FHgrJP%2BmHNuDeOEXNRPslH%2FrJtTzSpgIzyZfR6iqYJQjR4I6PpnngP5xwgy0axCYXbamwJ3DBISHKiBQ%2BcA3Ez1xMV7nLs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa130b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/main-bba3f19427abc986.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/chunks/main-bba3f19427abc986.js
IP 104.21.54.41:0
GET /_next/static/chunks/main-bba3f19427abc986.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"19458-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xb53V4FrtWrTARQGXNsKwjIe1K4PPg8tbzJGz%2F25AVXJVah6BCDATzH0Z1W7L5nof0oBfb1GvwZQ4uo8r%2FtsXRnyfDbzhB6vgC00x3Rc9DuHVdiDcL%2FlSuKRl1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa140b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_ssgManifest.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/uBWGVbJWVh8hF6VMRLqeA/_ssgManifest.js
IP 104.21.54.41:0
GET /_next/static/uBWGVbJWVh8hF6VMRLqeA/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:11:13 GMT
etag: W/"5b-186e41bce68"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWbl9aWr5Zt8AwWmvFzDEzRZy9LJQkkHhx7BdmmewMJi%2BhITcGtiC7DRxIPU0fdxP04iNGHivSoR9wB9bPlsnRt1yYhlrEcJQRmch6PT3nIwOiC2ouDL4JHUFzI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa180b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-4852-db6712a.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-4852-db6712a.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-4852-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: zdABxj50XNRQaC+GZmDwxf8yqkh3/ZIJPrzB1xfG1E2dIy8FmLpi70mzuNMPbie5OGGyDDH1JC4=
x-amz-request-id: VKFYS6092K187KNN
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"764679dd09fde5fad327b4eeb283bb68"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: EHxklQ7MnFzo1hZrcZ_LrRVi.4i_9xH5
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JtWdDwiCNhGnUSYI4fg3Vgolvx3UPsqEsCNWtqew%2FAUSRaZmb7Df2fssTHWldawne5lUuiVxg7NFos%2BqpW2GkSPNtbTjrcK%2FignuUlgplUf%2F0yODkhMoPQZiwIE6MyWlRx5yPqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b3f4ab51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/favicon.ico
104.21.54.41200 OK 0 B IP 104.21.54.41:0
GET /favicon.ico HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272823.59.0.0; _ga=GA1.1.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272823.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:24 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"171-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bIVhw%2BSfyvga%2BuGnDNiO9m8YOAul0pFCMoKK2MDAKQbwTQ5b8GKHJUIT3%2B%2Fonj54aeIV1T5D7lQxCoWkgteyXuIzFtUhxU09aiuE2Ehu97FG0e0J3LZQQNkkzs0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e749cc4f0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/pages/_app-a1aaa7198e7209b9.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/pages/_app-a1aaa7198e7209b9.js
IP 188.114.96.1:0
GET /_next/static/chunks/pages/_app-a1aaa7198e7209b9.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"2d815-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JUGJzZEpm9VGh3OaGQSsMqLHcAEjJlfA2dyNnM5vRL65NJzB2%2ByJKneoFW6LwG2NDrmPTVv%2Bm3d%2BrE55wql9S6mXrkeNaQot7zfkCWOvwyuRMqN1btkiDqtDYyo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7599b83b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/769-42c553aad5ec5871.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/769-42c553aad5ec5871.js
IP 188.114.96.1:0
GET /_next/static/chunks/769-42c553aad5ec5871.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"37ba9-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O8KAAY%2FQGZL9eu7S7ZY0hm77PLA2fwJjk%2BHwMPplJ6wUDA%2BR6kuxzqJ%2Bgu2CVeqfCrnjxjV5ooi21xcJ4LLDJaG2jU8tQaJ49zZXMfSRG4EsXm7lnJYLjCP1%2BY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759ab8bb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/_next/static/chunks/webpack-a919deb5abc6af1b.js
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/_next/static/chunks/webpack-a919deb5abc6af1b.js
IP 104.21.54.41:0
GET /_next/static/chunks/webpack-a919deb5abc6af1b.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"14fc-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329166
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eBnPzR%2BwqdWg%2BkxGj5GOGPNIe%2B%2FNQy87CyLPQGFEGTjhocWX4Fj9S2IER1788SbmqqwrurPinMBfcbvp5pd35s%2BEjPLVo38qk7c0%2FrcpUUeb7bisjQ0VtTawxd4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa110b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap
172.217.21.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap
IP 172.217.21.170:0
GET /css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 20 Mar 2023 00:40:22 GMT
date: Mon, 20 Mar 2023 00:40:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-6315-db6712a.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-6315-db6712a.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-6315-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: h1pbgbv4H/srMcL+S9VSj+G894ESi6/JHL5tLjKf0jNJnRX08A+oWqoM2XLQJ91MTRxV5eMmc/g=
x-amz-request-id: VKFTWK321SWJ1MH5
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"2b1d0d885ddea35bd25ae0fe9273f204"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: JOAenaILEekVWHowGfnIaZLuUejo0Qsg
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J5gP1VL9oZb9qTvqkhc15r5YG0MqIn3DRcT0CyeyL808PqsqxBm8xAlP0HI43EbZw5cOI4y9UEHrsdKtnC%2BW8Ad4kCsqNxe23nJaUSBOLxVSyM1KLUbArEwHY40MER0A1QCLgEk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e74b4f4fb51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/messenger/web-widget-5288-db6712a.js
104.18.70.113200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/messenger/web-widget-5288-db6712a.js
IP 104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-5288-db6712a.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: s6SxftdoZMIiSaG6TQVMtakbBCOxwfMfIq0eFJXSf8Aw0IrW8vAYdKN7DDQQOOExkrDq1PxAG1k=
x-amz-request-id: VKFRG3Y47D6A4XK3
x-amz-replication-status: COMPLETED
last-modified: Fri, 17 Mar 2023 00:14:11 GMT
etag: W/"99e9c01b71eee6983f99d0032b713391"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Sat, 16 Mar 2024 00:14:10 GMT
x-amz-version-id: pBLHYKRJcnHG7Vcark0OSb17J7pFKXk9
cf-cache-status: HIT
age: 252204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BUuPRXOldrhlLqWwdx78Ki4he4p9zAUP6nyqUrT8jnCLg9fCP3VESGPCZxkZmSrzlsRlbTshRvZwuPxVI2EkD0tEkacEqg5UfO8WJ0TtHgWYEjaz3mqBIVRaXPn4oBj%2B2XJ%2B%2B%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7aa9e749de76b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/css/d9066913f55f8f27.css
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/css/d9066913f55f8f27.css
IP 188.114.96.1:0
GET /_next/static/css/d9066913f55f8f27.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"18636-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329165
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=win%2BIBHDqz5qPagySJ8dcX4vPySJnDo3QN%2Bc1502CCiTF0lM%2BkxQUNR9vsCU0r6AfJAQpuzXEIEniQCpUXiWPMq31qfVXuXFBTbWhEauDTiu8b9%2F933CuzH2rhU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7598b7ab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_middlewareManifest.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_middlewareManifest.js
IP 188.114.96.1:0
GET /_next/static/ex4GWcSaCkUPOcGQ2X9kC/_middlewareManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:48 GMT
etag: W/"5c-186e41a8260"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BgZyldk0UWilf599EPoYri2mw2%2BdYGDbieq%2FEuF8XXR7JzaQgC4wMbMy3075cZECvt5H4XrZLoSEITp0G2NNI6IULBW16Weh1vjwXMtTaoC1MHWEYcVavswnlv0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759bb99b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/images/adg-red-ring.svg
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/images/adg-red-ring.svg
IP 188.114.96.1:0
GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:26 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o05Elljt04LHuVjnVXI6UlfCy%2BJDSQjF1Czonb9ELglvnmayBdWsnI06yqyUbRFGDNP0ljNq8tsCpNGU3NtybP0Bq1zkiLvcYCqOqEpkNXhXw8E%2F5orceFhM%2BUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e75a4bdfb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/images/sid-logo-new-light.svg
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/images/sid-logo-new-light.svg
IP 104.21.54.41:0
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qgm8OJE7L286bNQboKUC5Fh1VKapw1JC8n8BX%2BMjgpKEmhsdCFvsPwjVonFsy4Iogze%2FGUI6yObef8ODOIJVY8yAD9euX8w63HcHNFQb8K5mVrkwDiCREVLP3pw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa1f0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
home.s.id/images/errors/403.svg
104.21.54.41200 OK 0 B URL HTTP/2 home.s.id/images/errors/403.svg
IP 104.21.54.41:0
GET /images/errors/403.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:23 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Tue, 27 Dec 2022 03:47:41 GMT
etag: W/"1136-18551b16f48"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mHbH09TAEflvr7uKujeEi58fqQTvoJNDtJdKoTWk9E5Sva5AkoA0B3wWlIubqeE%2F0rVf0rvRpvSWhNqJFIS%2BtiDCOmjnUPpv30xvEikvxlKG%2BFpauf0k%2Fl97YtI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e743aa1d0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js
IP 188.114.96.1:0
GET /_next/static/chunks/main-42bee57ba94e9a13.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"193b5-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b984qIX%2B8e88EYSzUN8LUkMqTz%2F5Ma6ykTV%2BlY0SkC37NBFSFa%2ByAVbSMcq7wn4fSImgcxuv1BTTXwDzJBRUApHwhPzZ2SA%2FirZn%2FHQovqBffaZi7DEc4JcnvI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7599b82b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_buildManifest.js
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/ex4GWcSaCkUPOcGQ2X9kC/_buildManifest.js
IP 188.114.96.1:0
GET /_next/static/ex4GWcSaCkUPOcGQ2X9kC/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"40f-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wVp7WYmfFxmu%2FJdR3WXTNjGMvOsTIdjxuEHPQmUQ%2FUGvDBdg5p%2BH2vqngrrxdrM21oxS0KCXcF6U8A%2B7zOkZRlkKE7wHoR72eYSLev81Pp%2BJcVR2%2FdgWJiOcAFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e759bb96b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.56.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:22 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa9e744ccbffab8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
blog.s.id/_next/static/css/db96805030821792.css
188.114.96.1200 OK 0 B URL HTTP/2 blog.s.id/_next/static/css/db96805030821792.css
IP 188.114.96.1:0
GET /_next/static/css/db96805030821792.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1679272822.1.0.1679272825.57.0.0; _ga=GA1.2.852073360.1679272823; _gcl_au=1.1.1709335970.1679272823; _ga_LJQ0V44EV5=GS1.1.1679272823.1.0.1679272825.0.0.0; _gid=GA1.2.1774935170.1679272823; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 00:40:25 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"f9d-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 329165
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5YICd%2Fp3eZu40D6Ly8BGGUMkiwS2NDEmqMlqKTcnn7XimCX%2FF1bVpRDIBl29sa6wuRcY7SqVSlV3yZ5%2Fgz7L8cKSkRh7WES2Hke2P%2BlOlNbhjKpBdVFKF7RN8No%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7aa9e7598b7bb529-OSL
content-encoding: br
X-Firefox-Spdy: h2