Report - centralyorkeschool.sa.edu.au/bottt/boatest/login.php

Report Overview

Submitted URL
centralyorkeschool.sa.edu.au/bottt/boatest/login.php
IP
116.0.20.166
ASN
#38719 Dreamscape Networks Limited
Submitted
2023-04-01 04:25:32
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
9
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-31T18:42:09Z	473 B	440 B	64.233.161.156
blog.s.id	unknown	2018-06-15T18:04:48Z	2023-04-01T06:25:27Z	11 kB	13 kB	188.114.96.1
ekr.zdassets.com	2396	2018-06-14T01:52:57Z	2023-03-31T18:12:27Z	840 B	2.5 kB	104.18.72.113
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-31T18:28:55Z	443 B	392 B	104.16.57.101
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	918 B	2.4 kB	142.250.74.106
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-31T20:44:48Z	976 B	80 kB	216.58.207.227
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.4 kB	8.9 kB	23.36.76.226
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	366 B	21 kB	142.250.74.110
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-31T22:08:04Z	477 B	578 B	142.250.74.163
sdotid.zendesk.com	unknown	2022-12-19T03:27:28Z	2023-04-01T06:25:26Z	1.1 kB	835 B	104.16.53.111
home.s.id	488728	2018-08-25T08:32:23Z	2023-04-01T06:25:24Z	7.0 kB	170 kB	188.114.96.1
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	2.7 kB	5.6 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-31T22:03:32Z	1.1 kB	229 kB	142.250.74.168
static.zdassets.com	2154	2018-06-24T00:11:55Z	2023-03-31T18:13:21Z	4.0 kB	230 kB	104.18.72.113
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
centralyorkeschool.sa.edu.au	unknown	2019-06-07T18:50:04Z	2023-03-18T16:05:42Z	864 B	1.2 kB	116.0.20.166
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	51 kB	34.120.237.76
api.s.id	unknown	2021-12-02T18:14:34Z	2023-04-01T06:25:25Z	1.9 kB	2.9 kB	45.126.58.78
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-31T19:19:20Z	634 B	440 B	216.239.34.36
www.google.com	7	2015-05-10T13:11:19Z	2023-03-31T20:35:26Z	645 B	641 B	216.58.207.228
s.id	134714	2014-12-04T01:12:34Z	2023-04-01T10:41:20Z	439 B	654 B	188.114.96.1
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-31T21:58:31Z	664 B	2.0 kB	142.250.74.98

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-04-01 04:25:22	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:22	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:22	low	Client IP	188.114.96.1	ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)
2023-04-01 04:25:23	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:23	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:24	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:24	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:26	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-04-01 04:25:26	medium	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-04-01	medium	home.s.id/forbidden	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (49)

	URL	Size	First Seen	Last Seen
	static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js	15 kB	2023-03-26	2023-04-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:31:30 Last Seen2023-04-05 04:41:55 Times Seen56 Hash 8340513af1527c72129bdfd58adc8b99 bb6f990dc4c1b5afe22fbca10b500078bb81b6bb c0e7ad7a57e94277b7f505f29420f3a4774dcd94af2b7974d6797105c0bb25b7 Loading...

	blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js	19 kB	2023-04-01	2023-04-01
Pretty URL blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:31 Last Seen2023-04-01 11:18:22 Times Seen3 Hash cfea9a25f33e87f7ce0bba4eda0d6b6d 7aee3d5bccc3790892c8462fff59eb161736714c e8364f4cd8f5a6f009f0cb4dfc867ddd1f5e2fbdae60fcf5d5b248b315fb19a5 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	196 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash c98323db1bef176960d2b1950e0800fd c3a3c7d59a039b6194c714e0af1aa73911ebd01d 5496584f2fe4ce363c48545e26b6c7756cb8399ccc481157002e175ba144422c Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	236 B	2023-03-08	2023-05-10
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:53:29 Last Seen2023-05-10 02:26:28 Times Seen77 Hash 09b91b28a4055b525d78801a370609ca 8ae55050b4b6fc075bd130b40127f08b35ec212f 7f6e7535c6cbf89eedd8301f32a5d0653145f7ed6ec2a215e68bd6c0f3d7205a Loading...

	home.s.id/forbidden#action	243 B	2023-03-26	2023-04-02
Pretty URL home.s.id/forbidden#action IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:30:01 Last Seen2023-04-02 21:33:31 Times Seen16 Hash 2cf65a6c5d2c21d6ef4ef31a69d0eb5d 0b9fb512d919fb09fdbd0769892d1f43f70f0d99 5d51bdb78cc805abe784579ddbbe08daaedd255bf4c7244cec275f6116defa2c Loading...

	home.s.id/forbidden#action	36 B	2023-03-07	2023-05-10
Pretty URL home.s.id/forbidden#action IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:51 Last Seen2023-05-10 02:26:28 Times Seen92 Hash 34f9fbe5be142c7d9c9146eb225d512f d4e2ab3e3646d75abb2325c51db0433bd3dce4df 854e16bd70a075ebc78a1db6ca15512e4936501394a99590b5f66fd0c8ba61d9 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680323124389&cv=11&fst=1680323124389&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=246390862.1680323124&data=event%3Dgtag.config&rfmt=3&fmt=4	2.5 kB	2023-04-01	2023-04-01
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680323124389&cv=11&fst=1680323124389&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=246390862.1680323124&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:22 Last Seen2023-04-01 11:18:22 Times Seen1 Hash f31161dca784b1221c9f7942608b607d 991b2995f1167d754e43c6bd5d12e2304d37e532 9e3a39f825defc2978fdaa3f17bfdf79072450288644066d31c37dfab6a81f94 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js	700 kB	2023-03-29	2023-04-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:05 Last Seen2023-04-05 04:41:55 Times Seen21 Hash 2a7a35aeef02762e024fd5bff30dbdea e4e407fabc6ea2a9ef7e2ca41dc0057dc768aa38 0382c952759a0aaff3ca0f685b9205b170ae113c69d353fa479e1adeb5313be7 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js	25 kB	2023-03-13	2023-05-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:36:06 Last Seen2023-05-05 14:53:41 Times Seen193 Hash ae451f428ab96456490147d8abff0d53 1cfd301f05cc236522ff1db97e0e2be3ca615de9 65390d5b7859d59c8f35e7b84ae5eea87672e71ca40ad6f4c1f87b0a6c8c7b6e Loading...

	blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js	103 kB	2023-03-13	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:24:27 Last Seen2023-04-05 13:56:38 Times Seen25 Hash 737a1d5081c90f4345e51010f21d77d4 25dbea17388db29b15874701bd2ef244f117508a 0b1bd0e2c03531c3c089653463418df229cae482a400e497d0681a750e31f295 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	251 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 968e084e30b878c76ecc20cc4cc6472a 9a01eea90ba2c553da933d93b626bf2afc8c72bd ed14e6cc5bb7748e4223f42b08b919001c2f851002a821b369c718bea43a2924 Loading...

	home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js	91 B	2023-03-07	2024-04-24
Pretty URL home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:40 Last Seen2024-04-24 15:45:54 Times Seen618 Hash 5ce0d2713404bd05c9502cc490488dca 552f4970f95812a42a366cf0752db5c4c4218236 ddeea69d5116852145775870dab4d86b4e909e7a02c03465efaa67d5b0f744be Loading...

	www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7	227 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash 32634725bfa8c381a08b4266d539860a 821741317bf1e9a8c94dc33cf75f32b204684631 bb623c9159583c85ba6bd1302f1be1517db0b4bb6f5bfca32f4ea8b0b5f82b1b Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	265 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen425 Hash fba27f31e4e9d8b289492f2b860c88bf d96931f79cad01f3243dbff8ff9a869377367457 e7342621a7cf816200c668419e0c97d9660d7cc2bd00cfb3989143b50832bb99 Loading...

	www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF	227 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash 5b215a0618381c06575319aa119ca824 ee9ccef36845a9ea5c5e9ef5a60a5b2f6898cb28 24b47d89dbb82d6977b61e461cd8fe1c02ecd8ec4727099d8daf7063b99afa1f Loading...

	home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js	92 B	2023-03-07	2024-04-24
Pretty URL home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-24 15:58:04 Times Seen7642 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js	180 kB	2023-04-01	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:32 Last Seen2023-04-05 13:56:38 Times Seen5 Hash 96a4730604542d3d93fc67bbd22ab399 b54ef3d5b1f89313146eb6d7730d891f9611ee8c 9a62ae0357241cb25f0abcd83274c69a7844df473422f2575ab092eb79c04f07 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	260 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 06b4795adbd64ddcd90f3d56f8b77cab 82e1f620412efa5e13c1666218f356113f9c136b e847d77bd3b904a315099c754caeafb93a6aa049a5f7386c252f0d9579d2db42 Loading...

	blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js	77 B	2023-03-07	2024-04-24
Pretty URL blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-24 19:23:31 Times Seen85235 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js	3.7 kB	2023-03-13	2023-04-01
Pretty URL home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:13:21 Last Seen2023-04-01 11:18:23 Times Seen23 Hash 79230c46c22569945583419e24eb3968 13b6526f15bbbf96fe9b2913481cbf2a21ef3caf 24204d788ab4604afbbcc4e6782f19c33608ad8b3f721d8f604c7124f79f80bc Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js	142 kB	2023-03-29	2023-05-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:06 Last Seen2023-05-05 17:01:57 Times Seen134 Hash b361c19a9af081b357568069aa583838 871c72ecfe01775e98c9d4a3416eab7aa18150b0 e9c01c5af5c83950f486a92f411e639f335ab9e0d0086c28511867942053bb1c Loading...

	www.googletagmanager.com/gtag/js?id=AW-10823601447	195 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=AW-10823601447 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash eefbda546c117b7c1938998865a2e7f2 a0840c877ea38e544c5cc4679e22f614297b98fb 8129fc100c0780b71362bd457357819fa613a6b5a0650110d5446297f73b1319 Loading...

	static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114	17 kB	2023-03-26	2023-04-17
Pretty URL static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:20:50 Last Seen2023-04-17 23:16:21 Times Seen1248 Hash f23fdce5f9fc681a13ca76353818ffac 6779cba0c60c1e89ab3ec72c90a952268b2ba37d a4ef73601a6552d55503bcbd9b6cd23fc0c33fa075f8efe724cddd4e3ee55542 Loading...

	www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c	116 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash 4621083b05d0fe33549b8796da50b06b 452c28b2527e83f1523cda6106fdf0a17f8e6896 fffbfec08d89da03b26525f7cad0d849cb4ec1c0fafdc5de89c20adf3337b709 Loading...

	blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js	18 kB	2023-03-13	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:13:21 Last Seen2023-04-05 13:56:38 Times Seen25 Hash c3474a44d63d4ab61210b3bdd9c93bac 102a281791d688bcaabed3542834e27ad2e0d2a5 9481d1812910914a0290fa0a2652c0c99f1e710a6350a4307ea9570ef5e1db38 Loading...

	blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js	235 kB	2023-04-01	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:31 Last Seen2023-04-05 13:56:38 Times Seen5 Hash 48f886ea9e4f96d176d32bb1f2fa9b22 ae3b23c91918b15a6e9c8633d47a7f8995312299 e5108c77719d28bb506f134c556f61af03e79bb529995f0793d77f1f214115ca Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	250 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen425 Hash a09918f345473da9d2f47ab9183868c8 210b67093ea8191ac2ad306976309c2cbfcd65ea ded8c2c2e016a529301571dca274c50855566e990281c816b223fd6ad68076c2 Loading...

	home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js	5.4 kB	2023-04-01	2023-04-02
Pretty URL home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:31 Last Seen2023-04-02 21:33:31 Times Seen4 Hash 161b008b45464b512f84957b972ed798 e58d1d0d65ce46b7d358834cf976dcdf68270f58 1097ab43630781043c3a63df7d97307b14560a1713be286062f3d6945a0489f1 Loading...

	home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js	344 kB	2023-04-01	2023-04-02
Pretty URL home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:32 Last Seen2023-04-02 21:33:31 Times Seen4 Hash 96dff2b3e32f16cce26a8e0ab9f2c706 c30d48199fc6b2c7267569c810cdcc25141b3717 1deebf1b8365fa4eaa5da68d796cb80dad37c63496cb7b49f6f3cf3b5cc97b7d Loading...

	blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js	2.6 kB	2023-03-08	2023-04-01
Pretty URL blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:53:29 Last Seen2023-04-01 11:18:23 Times Seen23 Hash fa7c197a614ef9acf105bedf810d489b 34b4788d3bf06befa543b49d9f0377f62ed372d9 7f877742d5ee9762de28c1a13dc20ad019d1caf00b91d9d3d3bac091d4cefff8 Loading...

	www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK&l=dataLayer&cx=c	224 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash cc3453637efae2f1ef366068df2ea4a2 956b022278fa676e15aca9c34fa941d12a9546fa 4234ad0bf8bd10673bd0367ae1db5a0e6d3209a42c0d8cf67df41ebbf9824584 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js	4.1 kB	2023-03-13	2023-05-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:36:06 Last Seen2023-05-05 17:01:57 Times Seen130 Hash 40d0e2b632d1b990738af3991e0aecb1 b5a4f4c806af5ead6219d408edaceb20e61bd28b e8269b74e3d03d021428c172b126c784c2279c24e48e807fd91c0bd19ec6e167 Loading...

	blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js	130 kB	2023-03-08	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:53:29 Last Seen2023-04-05 13:56:38 Times Seen23 Hash 14e6c6654814f54e1b05d1177eca68e3 0c3ae338ea5133ac04e4b37ba284759b13f909e3 d388d6eadbda67959df2e176105d189a9ee25434d49e645a752b2a10afefacab Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	271 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen424 Hash c1058202d22ac09579022379d86826ee 1999a6d0d08b35ccd64a0ee69ae169dd3a0b3356 dad812433366937d85265938bb652a2801d9d6d4c0912abb0786fe65142fe715 Loading...

	blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js	1.8 kB	2023-03-07	2024-03-04
Pretty URL blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:59 Last Seen2024-03-04 17:53:43 Times Seen45 Hash 725dda14ce1bee310bd67c540dc3d9d9 c6b3d9ae2948e9f1515aaf69c9233f4f9fe6e556 dc81419da19f1c777a0ba3ccd0b1019725c6333c17811717bf843bf2ddc105fc Loading...

	www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK	224 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash cf3905b917b7847b58055cc6ae46ccc5 1cb40156b3adcc658c4e7f4a4c5e8a457e06f1e2 0ad9ee8677abba2640defb1472a3aed3fd6b0f1d50876e0e202a3b8e6664a68e Loading...

	home.s.id/_next/static/chunks/main-bba3f19427abc986.js	104 kB	2023-03-13	2023-04-02
Pretty URL home.s.id/_next/static/chunks/main-bba3f19427abc986.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:23:39 Last Seen2023-04-02 21:33:31 Times Seen28 Hash 4af00c33a5a3626b1fae6792ff86bbf1 ecf73d2807c86ac5c3f0e30abc7b03fca3d36b34 d530ea669f380edb2e2e14f8f30d7ac3b5b98c6090d49f140e3f0eec4c299817 Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js	167 kB	2023-03-29	2023-04-05
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:05 Last Seen2023-04-05 04:41:55 Times Seen74 Hash 9a22523a174d61325929e2f2b3281227 fc9408075c501a02bd53be5ada9d1a09a989bcb1 0a7048087ee3d34425fe83c11c4be7e2d880971db05a6f9b45f7e9c7d0713ee3 Loading...

	www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5	224 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:18:23 Last Seen2023-04-01 11:18:23 Times Seen1 Hash b94ad2305147a6a5ef142e5bab4994a0 ad8c3f643a94a62933d600ba067597c5aa41fb64 904e45c2905dd25afe12f0280ec3eed2ec5d27100feaa349fc7ef2b5bac33dce Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js	13 kB	2023-03-26	2023-04-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:55:40 Last Seen2023-04-05 04:41:55 Times Seen62 Hash 1ee21198c6e244c8d7bf3bacbc6faa0f 01abda9f63c546519fdc62a2e5032bbc8235eb18 34fb307f976115298dd006a64c0b1b1d86f2ce226c83d49cdfe0d350e61b9e1a Loading...

	blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js	126 kB	2023-03-13	2023-04-05
Pretty URL blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:24:26 Last Seen2023-04-05 13:56:38 Times Seen23 Hash 3f42f89f669fcd5a26d7e13595211523 02a92ae6c2c19cd60365326e7a4ae94a943d34be 37c2a2c98989e62a75b5f11c3c2f901940fbf2c323be0bb275ec25f1751a4563 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	247 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash ec9604d9253043e4c7ea1655cfefbb31 96f618deb14181f0b85c6a518ba3e5dcb4d909ff fdd1eeb2bdbe7baaf66d5fba08c2145b14a49acc590d9f02c1f9d8c534633aca Loading...

	blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js	1.0 kB	2023-04-01	2023-04-01
Pretty URL blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:31 Last Seen2023-04-01 11:18:23 Times Seen3 Hash d84b8d25ec1840597cf82c65310a2ddd af987e635902fd34a494c6acbf5e257622704b06 c9618263c4416f1335efe1b92f4e25966f18d08f11d1ea1e7e39bb50a9e5533b Loading...

	home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js	9.1 kB	2023-04-01	2023-04-02
Pretty URL home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:55:32 Last Seen2023-04-02 21:33:31 Times Seen4 Hash c7bc1af614d815b1488805655c218603 2c42de999374d6453f73a615be0d3e12577efabc 300e3cf932dc07cc5c6c723bb87c9636230b0ce3c17c2c2849e14908a458830f Loading...

	home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js	130 kB	2023-03-08	2023-04-02
Pretty URL home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:53:29 Last Seen2023-04-02 21:33:31 Times Seen27 Hash 80870c3ffec9848089870dad8d8446c7 8b76d6ff4730fbea340059bc6c5b2fbca3ef89a5 8b8e491570cdfe6b25d81c5943c567d567c809158adfc0449f7683ab4c76e907 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	224 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 5d3fad59fc126716231fd01bee254004 264df770cdff4f3ff4b54a280e53671e7b08d6a7 5a24aac7b928921204e217584dcea7740f14c86d961e6b30ff5219505cbeebcb Loading...

	static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d	23 kB	2023-03-26	2024-03-21
Pretty URL static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:27 Last Seen2024-03-21 21:10:25 Times Seen1825 Hash 35755063f184195a50a9c07a2c71693a 7a32c58c941ee07911a3d1ff5f335cbde58d90e9 21d2ea81f22f44525f201ad9f4702029e0b2bfe65d5a2b534104dbe4b2346bbe Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js	21 kB	2023-03-29	2023-04-05
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js IP 104.18.72.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:05 Last Seen2023-04-05 04:41:55 Times Seen23 Hash f98270473d8b868d9890fe3be24a1a82 5819f93b192c9c47183a655c9ec7b293a26b9ffe dfaeba8f45d6ff0da84f59e93bcf8c07fa464b8235c54f024e4abac68dd945cf Loading...

HTTP Transactions (93)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13015
Expires: Sat, 01 Apr 2023 08:02:16 GMT
Date: Sat, 01 Apr 2023 04:25:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14774
Expires: Sat, 01 Apr 2023 08:31:35 GMT
Date: Sat, 01 Apr 2023 04:25:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 04:16:13 GMT
content-type: application/json
age: 548
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9228
Expires: Sat, 01 Apr 2023 06:59:09 GMT
Date: Sat, 01 Apr 2023 04:25:21 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: cHaBKhAxPl886T+0lPMtUlywaQJE5Myl+klovYCwFS+1WMrrNyC2LGn4BEYQwj1wvdEzRmG0IkQ=
x-amz-request-id: 5V7F8G65P6RR2W0Z
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 04:12:27 GMT
age: 774
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 04:25:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

centralyorkeschool.sa.edu.au/bottt/boatest/login.php

116.0.20.166

301 Moved Permanently

268 B

URL HTTP/1.1
centralyorkeschool.sa.edu.au/bottt/boatest/login.php
IP
116.0.20.166:0
ASN
#38719 Dreamscape Networks Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
268 B (268 bytes)
Hash
f1e3ffe97561276cd8efa394586c1528
d1b33c96b96c552366866a6dcef37bd7231f5dc3
dad16e0338d61ee38c2f37af894470c7bfc2185479f2703d54048ead0399e0a6

HTTP Headers

GET /bottt/boatest/login.php HTTP/1.1
Host: centralyorkeschool.sa.edu.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 01 Apr 2023 04:25:21 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 Phusion_Passenger/6.0.7
Location: https://centralyorkeschool.sa.edu.au/bottt/boatest/login.php
Content-Length: 268
Connection: close
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9e9f6891559058a4f43596719386a231
8b9bdfb379748c09759d43d9771a71269c0391d3
d1a9523b4094f8ce15ca02124033623203e20b8e375172c1f84491d6b4c0ea6c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1A9523B4094F8CE15CA02124033623203E20B8E375172C1F84491D6B4C0EA6C"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18265
Expires: Sat, 01 Apr 2023 09:29:46 GMT
Date: Sat, 01 Apr 2023 04:25:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 04:14:41 GMT
age: 640
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WZxJbSAprtO98HNP2J7/2Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jLxLBg2Bqb0cdojgmK5rP37GNkw=
Date: Sat, 01 Apr 2023 04:25:21 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3224
Expires: Sat, 01 Apr 2023 05:19:07 GMT
Date: Sat, 01 Apr 2023 04:25:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3224
Expires: Sat, 01 Apr 2023 05:19:07 GMT
Date: Sat, 01 Apr 2023 04:25:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ff1d01e68831d80a4f75d7db3970972
1a9e1f3fa7389cccb0e91cff2616767e1616113e
fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3224
Expires: Sat, 01 Apr 2023 05:19:07 GMT
Date: Sat, 01 Apr 2023 04:25:23 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3800 bytes)
Hash
ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ycsh7rNJt9blXZVpFbbdBDu5pZbGDfGIPLt5k0Ff9-fvWTX86Ndz6A==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:45:01 GMT
age: 24022
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5830 bytes)
Hash
deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UfN2iRmDUhddBZW6qGy3q2-HCqb6Kx3iDENnirUkIoCJ6BW6zdWVtw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 22:44:32 GMT
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
age: 20451
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5950 bytes)
Hash
800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: KkjS04mCLqFET4v9-sePYK-zcztrds608GECT1Fxz3BEpslgxnpLOg==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:37:17 GMT
age: 24486
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8513 bytes)
Hash
0ee37ccafa69e9c352768fa30819a54f
c5268d4749fa57e8602fcb12fd11d5ffb10d0503
4186438aaede57d6b47306caa12a61328fdc83f421cecce44337ff6df9c8c028

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa438448b-437b-48c9-af47-94514486c67e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8513
x-amzn-requestid: c96fbbef-3321-40ca-9f82-79db833d14ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnXDEcQoAMFZkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64275293-75f3dfe836f9fb52292e0c21;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:37:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: UMFfJ465bKY7Fr0I3-8brzOQtUUbCvnqkwvHmbBKYB65f-Gd8h8tOQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:46:59 GMT
age: 23904
etag: "c5268d4749fa57e8602fcb12fd11d5ffb10d0503"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10128 bytes)
Hash
c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jidQVHgb6EK_fyGj4wYgdWEBeth8CIB5szPrwrgmirz4Q9tSYpRrsw==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:06 GMT
age: 23897
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10139 bytes)
Hash
ba8077c110172a232340b8c843c21704
110ce19838f6050e0df60240211e66bb95659018
ed614253863b689b947ee48c384b0d96360730d25c6a573a8f1776c0f31b4c4c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10139
x-amzn-requestid: a65e17df-5f88-4840-a573-8820b3734e82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHJE9AoAMFdwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-13577a7f180985f20a340c8e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pCHOy35HMhXe7y4p5HZcpSVBS8BEEh0stYUpY7BpLJTD0sHa7xmEgw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:59:12 GMT
age: 23171
etag: "110ce19838f6050e0df60240211e66bb95659018"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

centralyorkeschool.sa.edu.au/bottt/boatest/login.php

116.0.20.166

302 Moved Temporarily

317 B

URL HTTP/1.1
centralyorkeschool.sa.edu.au/bottt/boatest/login.php
IP
116.0.20.166:0
ASN
#38719 Dreamscape Networks Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
317 B (317 bytes)
Hash
8691a52cac31c02d0e5ff849c81580a7
55978613f99bafe7e2ead6d07b2c7f14397f8a14
85414db2ae6deece077bbe35fcb292d9986abeca9681b8190a15b25aa2176ecf

HTTP Headers

GET /bottt/boatest/login.php HTTP/1.1
Host: centralyorkeschool.sa.edu.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Moved Temporarily
Date: Sat, 01 Apr 2023 04:25:22 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 Phusion_Passenger/6.0.7
X-Powered-By: PHP/7.4.33
location: https://s.id/kY66E
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

s.id/kY66E

188.114.96.1

302 Found

0 B

URL HTTP/2
s.id/kY66E
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Sat, 01 Apr 2023 04:25:24 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xaq4YaUDs0EGVfxlGkqgP9qNStFYs6SA2J%2FFFifGMfLDF0ZApA1Y7RPmctsJ9n51OMdSufeOICgllsdRvuVKP%2FZE6Iqi1IiBasEEqzw0uDVYsIU08Met"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e11657c1cb4f1-OSL
X-Firefox-Spdy: h2

home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js

188.114.96.1

200 OK

3.0 kB

URL HTTP/2
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9149), with no line terminators
Size
3.0 kB (2985 bytes)
Hash
a998cfe83f37a1941e2d29048571c74b
558f25413b83e5b225ad751d0d40e1405ad428eb
acfbb178b8a5e1a146869d4726ec4bf0ca34b6fe7d2995b2a61a63bc7712f62b

HTTP Headers

GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"23bd-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m8qamax15O3VdS4RN6LhquSyiQd9RuzwjHt0SbFNeDQEdPmSrXSnMfPuuT8KgdcnJH4BogzpD7H%2Bxr0b4B9n%2BmTMtMLqcriIR3Gq8dOonfTUoBpbjV%2FIucye4rU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49e0b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/main-bba3f19427abc986.js

188.114.96.1

200 OK

29 kB

URL HTTP/2
home.s.id/_next/static/chunks/main-bba3f19427abc986.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
29 kB (28866 bytes)
Hash
3de3c45fe3c8767e24d81eb0b4a2c985
667eb5d5e40d1f71f4d0fbe18b3a09d3645ac5bf
4df21d6a353dd70db16513b7f09819f3ba70341352d8f6cae4dc064cdd4b57e6

HTTP Headers

GET /_next/static/chunks/main-bba3f19427abc986.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"19458-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sziguf32GiUq31HQo1ZN1KuVB9HXv0MQurjhZhbq9zS0z14udziapzlFgKRmZX7X%2BybiHvw38PrEtbbE55cRfBSyiAX6A2hBmg%2FJrjZcF88puTINDbcLTOol6LE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49ddb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js

188.114.96.1

200 OK

2.1 kB

URL HTTP/2
home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3689), with no line terminators
Size
2.1 kB (2135 bytes)
Hash
0a6ef4cb250db4c9707934b64bf3de61
33b3726fd7048316f81a88bf1ff9c16604dc46f6
73e31c395882d20a99e2a74000f82e6b8e6bb1962aab5d285e9849dfcd9270ca

HTTP Headers

GET /_next/static/chunks/pages/forbidden-9c7287b02a773507.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"e69-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 711288
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bVb9647LHwf6BQKLsqSfzJOMS4OnEn8VS1IbsskPQTc5%2F%2B7bp5wM%2FoSXy2SbeXp6v8JVqkZdVCu6cfocOtMJgUpFki89WL%2BeOgOOaASkNoxp6hsijTGxR%2Bg1cYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49dfb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js

188.114.96.1

200 OK

103 kB

URL HTTP/2
home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (102708 bytes)
Hash
1fbc19acfe3951bb014ccf0e8ea541a8
75ce5a78de819ff6c630658e65198cc33d0645bf
a78cc27c79b25567e83006f99918895e63b865c0220c9b7088ceb9e8176fc88f

HTTP Headers

GET /_next/static/chunks/pages/_app-3d19a20011db3907.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"53e0c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6BdRbqdI%2BLJ%2BLMA6FsYSOkoImAQuqwZGiJEBNjbJOCpFzJ4JzyTBuQyaTq1fHqM%2BpmkqYLcoDc8Mt2BaR1tkXTOmtEe4kVGf9R2j2BwQKJnbE%2BMfbWFsaSIx8Cc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49deb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7

142.250.74.168

200 OK

79 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21772)
Size
79 kB (79183 bytes)
Hash
5d9d8ce07a0e59308e628cabc5e6ac06
4b5973a9a73120ca2339f154c0fcb7f9709376e0
75194be77ba47afa2ee83d42837548b1dadee3a76eddc2891fd2fd9b5e16b653

HTTP Headers

GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:25:25 GMT
expires: Sat, 01 Apr 2023 04:25:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79183
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5

142.250.74.168

200 OK

79 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19390)
Size
79 kB (78656 bytes)
Hash
5ba46ce7547d8bd9a3ff0e49565939f2
56b7e66a137b357c2d07d0a69caa9d8cd526761e
5553af76d41cdb78d947b62302fe52a6ad150deb6c1fdcf10575b2ce9c5f26b2

HTTP Headers

GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:25:25 GMT
expires: Sat, 01 Apr 2023 04:25:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10823601447

142.250.74.168

200 OK

69 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-10823601447
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (8284)
Size
69 kB (69396 bytes)
Hash
53c8ebaf3e73269870bb2abf360bf047
43e8abec465ff2ba3a2c5512f85ec104a6f503c1
c30ad9557ea36d788c876743741d1db74f80af5b8cd6c3fb939729017ad0d509

HTTP Headers

GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:25:25 GMT
expires: Sat, 01 Apr 2023 04:25:25 GMT
cache-control: private, max-age=900
last-modified: Sat, 01 Apr 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69396
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap

142.250.74.106

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1114 bytes)
Hash
926f6ab7a961200cd3af9257d6cd7fee
93b5ed7430f2cd86b4582118515c05bccba66d94
0896129f1707673ce9f20e114b395eef74e0378af4ea07b60b3c23f0299a7e97

HTTP Headers

GET /css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 04:25:25 GMT
date: Sat, 01 Apr 2023 04:25:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

home.s.id/_next/static/css/71a6f00e7be8366a.css

188.114.96.1

200 OK

20 kB

URL HTTP/2
home.s.id/_next/static/css/71a6f00e7be8366a.css
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65452)
Size
20 kB (19948 bytes)
Hash
db62238c9094a5fbaf1f6d47e0425531
6bd84c1542f1e3b68a0ec398b6f3d4df5759dce2
d18880fb7dc64ef3bfc1d3a0a13506429cf059689470bc7ff867e5295815cc52

HTTP Headers

GET /_next/static/css/71a6f00e7be8366a.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1dc1c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9j0oT7Hlg0mVIvXr4LLub75OIy%2FU9RhWbwrzg1md%2FBVyNiILrje68ASEGV87ci6vjhSxbVYJQhWtss479ZvyLiAh2BVq1DQb%2BiCFfsRAyGxLFCFkiJkddJaN%2BW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e39d4b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:16 GMT
expires: Wed, 27 Mar 2024 10:31:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 323649
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d3f7da6c5369e6ae567fd3bb52260f38
7ee3052765e1f06206bd5b7bb109d8a7be5dffca
9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1390
Expires: Sat, 01 Apr 2023 04:48:36 GMT
Date: Sat, 01 Apr 2023 04:25:26 GMT
Connection: keep-alive

googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680323124389&cv=11&fst=1680323124389&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=246390862.1680323124&data=event%3Dgtag.config&rfmt=3&fmt=4

142.250.74.98

200 OK

1.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680323124389&cv=11&fst=1680323124389&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=246390862.1680323124&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2531), with no line terminators
Size
1.2 kB (1200 bytes)
Hash
b309e5818c217d7242d43a91ad23ffef
0627bbec1e78faa446f0a82b6917b11461cfee3d
5932f93263e71308544513543b7a3a24e336a9c73b3258e337ee0d7e537db9bd

HTTP Headers

GET /pagead/viewthroughconversion/10823601447/?random=1680323124389&cv=11&fst=1680323124389&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=246390862.1680323124&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 01 Apr 2023 04:25:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1200
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 01-Apr-2023 04:40:26 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ff661f144a5ab688577d05b052383f3
6a808e8f81f5e1b95044a31b2f10e02f8720b831
a279b3537d39ba6684e05451bb72a19d39fdc3c76d9c55651e12985d9766b014

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A279B3537D39BA6684E05451BB72A19D39FDC3C76D9C55651E12985D9766B014"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7117
Expires: Sat, 01 Apr 2023 06:24:03 GMT
Date: Sat, 01 Apr 2023 04:25:26 GMT
Connection: keep-alive

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 01 Apr 2023 04:05:12 GMT
expires: Sat, 01 Apr 2023 06:05:12 GMT
cache-control: public, max-age=7200
age: 1214
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1&z=1381594061

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1&z=1381594061
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1&z=1381594061 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 01 Apr 2023 04:25:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d

104.18.72.113

200 OK

6.7 kB

URL HTTP/2
static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (23376), with no line terminators
Size
6.7 kB (6687 bytes)
Hash
4d855faf16dcebe60fe4d9e592348ab1
715556f808e22d91f6d5af82083487edef0cb685
cdb5e8a13e2c50b33255170fdd047d9c6c03c3803101a3ce7491d4e43bbaca31

HTTP Headers

GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 51
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tu4tfyIFRbrQuqZxIyR9s3fZAYKt7bFPL3fR644LnQJfY%2Bl4E36IpD1rY9eejCJSW7pOLCTEJoUCntRnj474imE9TM3GJuXKohHuxM2Q4vQ3ac67%2BrqFEyyNBK7V5YOPJBVf%2F%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e116eada60b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4eec701fec69b73ab6ff1af2c178806f
5de0d4c444297364831a311b4c13954aa31976b0
fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d3f7da6c5369e6ae567fd3bb52260f38
7ee3052765e1f06206bd5b7bb109d8a7be5dffca
9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Sat, 01 Apr 2023 10:24:32 GMT
Date: Sat, 01 Apr 2023 04:25:26 GMT
Connection: keep-alive

home.s.id/images/errors/403.svg

188.114.96.1

200 OK

2.2 kB

URL HTTP/2
home.s.id/images/errors/403.svg
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (532)
Size
2.2 kB (2173 bytes)
Hash
8de2e97a7853faf993b7df7750a06a89
6bb0663c91e25215ce18c17ee3c964a082dc3c48
45eebdaad7b990a4e25e9b88ff8682bb5685d971d30ae3eda02ff18ee37eda40

HTTP Headers

GET /images/errors/403.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Tue, 27 Dec 2022 03:47:41 GMT
etag: W/"1136-18551b16f48"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L%2BgKDctnU8M2xSaKwcGD%2BLmoCITe0i33tklTPLGp7k618OcGp2VkRZdzU7s%2BE1UlEW82i4uxXpGKefup00qe091fqdGxrL51s0QuPgteYY418wnIIYbWTK5AEjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e59e8b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.s.id/api/redirect

45.126.58.78

204 No Content

0 B

URL HTTP/2
api.s.id/api/redirect
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:25:26 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js

104.18.72.113

200 OK

192 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65307)
Size
192 kB (191538 bytes)
Hash
5984bfc5bbb6f663696efa5195fc2da6
f869c7fd9d7f7ea68aad62f747202158ab6cc14c
6ac69309f136a7eeb39265b0bb3520d9ad59c521d5467bd3a585607a5752561b

HTTP Headers

GET /web_widget/latest/messenger/web-widget-main-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 7CY4gNg1wuGSkXub6xt2qyCix3qJeiVH0Eqkb5tUk1phdDCcURWUJm4z0JJJ1wSAqvow3D8kOBY=
x-amz-request-id: 4ANA9WW213ARX0HB
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"2a7a35aeef02762e024fd5bff30dbdea"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: olOcPjsMbt2uLvftNUzm_18c3QOJ7v.2
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1IBd7K50dvtojY7mx5Y82l2J66Ovz8AnR8sYb%2FO1omL6Bo7QBZZquue%2F7jjzUcDOScgseZ6BDTLWXWl%2B68XMY6kRChzolKfanC%2FurV7PsoebiK2XS%2FNE7B85g3h4q%2FVNlatDwZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1173dfb40b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1

64.233.161.156

204 No Content

0 B

URL HTTP/2
stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1
IP
64.233.161.156:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-98MWVCBDD7&cid=597335184.1680323124&gtm=45je33t0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Sat, 01 Apr 2023 04:25:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5&gtm=45je33t0&_p=1035175562&cid=597335184.1680323124&ul=en-us&sr=1280x1024&_s=1&sid=1680323124&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5&gtm=45je33t0&_p=1035175562&cid=597335184.1680323124&ul=en-us&sr=1280x1024&_s=1&sid=1680323124&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-LJQ0V44EV5&gtm=45je33t0&_p=1035175562&cid=597335184.1680323124&ul=en-us&sr=1280x1024&_s=1&sid=1680323124&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Sat, 01 Apr 2023 04:25:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
741a2f47aab81a2c7ed0fadaa1fa74e3
be34e0df4a5f272589a017ce77ece974d890f27c
4ea1737c8246072ea1072314ae684c1f7e518a81a5200c46374e47378bfb6b63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:25:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.s.id/api/user/me

45.126.58.78

204 No Content

0 B

URL HTTP/2
api.s.id/api/user/me
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:25:26 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/10823601447/?random=1680323124389&cv=11&fst=1680321600000&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2959442514&rmt_tld=0&ipr=y

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/10823601447/?random=1680323124389&cv=11&fst=1680321600000&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2959442514&rmt_tld=0&ipr=y
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/10823601447/?random=1680323124389&cv=11&fst=1680321600000&bg=ffffff&guid=ON&async=1&gtm=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2959442514&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 01 Apr 2023 04:25:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

home.s.id/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL HTTP/2
home.s.id/cdn-cgi/rum?
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1084
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323124.60.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323124.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:25:26 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0e11753dbfb4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js

104.18.72.113

200 OK

8.5 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (24853), with no line terminators
Size
8.5 kB (8463 bytes)
Hash
349f3b0f41d685fc6ad5709369d14adc
d1f3b0ba602a0da0bc1d6519474292b6e86a224d
f64ebf6e30d14d70f9dcb9794b0a0918f60a8f46aec3aefb0a1aacc6476bacce

HTTP Headers

GET /web_widget/latest/messenger/web-widget-1707-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: wlYGSfBfzT4930eGOYEEiDorzLzI8DYPV9uyonvr9pX1+o7s4eNzLSd0VcPhucSn3fzuNncSrss=
x-amz-request-id: VSW82Q446PP1D0VC
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"ae451f428ab96456490147d8abff0d53"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: H.l3YGbI.40aeaIkx3GMkICfAVRRG2d2
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TSH4aTrsoLKggG%2FIVgzPoF62I3PUFbnqrFA0lolXVOyZskJknqy1MkJ6OdlH8yQ1Vw12lo9pDWjYblbkVJIMIpkjNJgUVv6ZdQQMLCyO1g7Z8%2BpqCHxrgD88rfN2MMWn2PWrjtI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1175082e0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.s.id/api/redirect

45.126.58.78

200 OK

469 B

URL HTTP/2
api.s.id/api/redirect
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with very long lines (469), with no line terminators
Size
469 B (469 bytes)
Hash
a986c42aab43f215b2cff47a241682ad
6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b
81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149

HTTP Headers

GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680323124,5ww7qxk,dcd7b080310bafc4fea5ca713dd0c20b
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/json
content-length: 469
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

api.s.id/api/user/me

45.126.58.78

401 Unauthorized

58 B

URL HTTP/2
api.s.id/api/user/me
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with no line terminators
Size
58 B (58 bytes)
Hash
dc6337924fcba32afbaef2dc7a71ffcf
1bb7b761c6bf8bc117eddd9525d61844fa676190
4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b

HTTP Headers

GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680323124,yvtcqg,bea2331e4d952b436a5ae07e34bf833e
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 401 Unauthorized
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

sdotid.zendesk.com/embeddable_blip?type=pageView&data=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

104.16.53.111

200 OK

0 B

URL HTTP/2
sdotid.zendesk.com/embeddable_blip?type=pageView&data=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
IP
104.16.53.111:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /embeddable_blip?type=pageView&data=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 HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 7b0e11754ee6069b-NRT
last-modified: Sat, 01 Apr 2023 04:25:26 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0MJgyo2zNwyoKXcQpdiK%2Fb3qp%2FxCIOeeb8Y51B9yro12Lt63QeT%2FBY4EM8S1UJcOXwIwqdb2WsCPjhL1K7a374YMcz%2B%2BPJ4U9g3j%2FVa2fkr28neF7qrGngAR6ukFLQthfxomFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=c0c89b68972540251b68eeb1bd79c6ff06b7c0a6-1680323126; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b0e11754ee6069b-OSL
X-Firefox-Spdy: h2

home.s.id/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL HTTP/2
home.s.id/cdn-cgi/rum?
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 490
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Sat, 01 Apr 2023 04:25:28 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0e11828db9b4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

216.58.207.227

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:37:02 GMT
expires: Wed, 27 Mar 2024 10:37:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
age: 323306
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js

104.18.72.113

200 OK

6.4 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21366), with no line terminators
Size
6.4 kB (6425 bytes)
Hash
eb5570f9e01933c0beae621f6acdb5b6
0cb762611839c5872df3d837ad76d66fd4bd0bfa
fed8d43fe7c7d55fca64d652ba4bc14524438ff00ac8ba8e8309e3e1f435dfdf

HTTP Headers

GET /web_widget/latest/messenger/web-widget-6315-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /cEGAu9qkZDaW3a0Y5R20PfFbxfSYD7jSNcAgIxGRTTC9uH5Z9u408u1+px6OjnWbbPVj03wtbA=
x-amz-request-id: VSWCSXJ998KTTHS2
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"f98270473d8b868d9890fe3be24a1a82"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ZCYKjS6R0SvnZ2uXsM4yp4HqVDMCLho6
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x78wne3ZpmX7ZQZFa%2F17hha4vxfIXgyr1aSwz62aaUj%2FLCskQH9YUhOVTitsaf5gpSaqnF8IV%2B5%2FJXM5q%2Br6K%2BMDEWaAyUl4yK8H9lCBScravnjFh0oJya%2FzwZqSZ20QxtizMDY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e117518360b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js

188.114.96.1

200 OK

899 B

URL HTTP/2
blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1755), with no line terminators
Size
899 B (899 bytes)
Hash
aa5b017407632b3ad769cfa4ae781554
cafa772ffdae7cfca149df5fd143d9be1c3f3e1e
080e2d83017bbff93b2baf4cd4e3e74f7766b3dd68f3acf48cc6bd1d73f3ee7d

HTTP Headers

GET /_next/static/chunks/webpack-434fefa8f39d8fbc.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"6db-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bsqZJND%2Bq0paM5IxPg9i%2F2dyGdC153nRNs9qIc4xraDqe5ejhb9Kluo%2F5B7TpoF4ZAu40w8z4V3xrFDglHYW3xRE4Lo7n%2FAIB63vHqmfScUtV79e33MYoUKcpJ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede1b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js

104.18.72.113

200 OK

5.9 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (16320), with no line terminators
Size
5.9 kB (5919 bytes)
Hash
30031b57cd82feb6d928648ca3bc672c
95941a8a55b722fd429a2c23fa6312a435b89ee6
3631194f6c5f8bc23ab1384c8c8cd2bdcacc3fc2754e5311013edf1f21296e23

HTTP Headers

GET /web_widget/latest/messenger/web-widget-3789-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: DnRzO4kZ2aL67eSj6ZrzqbA2DVNEqw53EI4vbzriZWMXdTvk3wkEbNlUqPBX661//his2bZScKs=
x-amz-request-id: VSW6M9HMY3N8E7M0
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"6af06a25e69c609f5b52830fc5e8a62d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: aES7C0WvHMN3603MIPwjba4g3yfMyK.E
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7fTM7XwCWKiMrRWtEovnxAxQwh1biSPxRYgn8%2FeOOzFRf%2BuvukZseawFbSBj0QECV7Z9W%2FK7Es6UuIdwbroNjff8zULAvLULPm2PnL6vHVNCrp%2FW%2FPlKzMjKP4WweKHZBwFCacQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e117518390b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/30846afe-cfd475acf1f13fd6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"a05-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FtK2VkK7tbDQMuzm0x48DKzHQ3ipfExwyXdf6ZEk0KH0M8MPRGUxVzZ8DJxEqgract4TNwoUcAXWuXnA%2B%2BPti5w600%2Fh2vbrdP4QKhY4lOWi1ZEvk%2F6dFbLiU1c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede6b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"46a4-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9AsWdgxQVXcnepoJZebxGI8%2Fr9X9BM%2FjLtk7bhwgvrM5eIzLVHBmIDZpzWtULJzJcCM90spRo%2B5a0Vmt8Lj5hm457XOGYdrTsDNSbGfA3SlneBEETwjUXtrJAdU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182edefb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5c-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ufVx6VSregYVrB4eR%2Fsw6k8ebISOKDqqUxQfk7oI4tNMR6NZXKj1LUes8JRRicUSJJb9FD2k1pyT4FIjS0PEBoUm2ZdhUtwRIxBGHrSoA%2Bf3omod9%2F4tiOQmhqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e59e7b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js

104.18.72.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gNSA5Gt4/K0ICYGAzIy9UajPykspKEpvgbLnLyBqWhLEmVM/1g9YG17rW5MbJycWvulAOIOZzfs2bUov//fjlw==
x-amz-request-id: YJT0A6KT9BJN81GW
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:52:42 GMT
etag: W/"9a22523a174d61325929e2f2b3281227"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:52:41 GMT
x-amz-version-id: sF00I9ZP2P.ZPdpa8jMGTZwYs_mUbya7
cf-cache-status: HIT
age: 278929
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pAFPWtBSZUagyChMYmrqbXjtz1UJ6g8%2BJ0ahzxsxzhyIKsdw4%2B5rPMjdvpTidYIp0uOrUSoZ%2BRkDFjxPZBQ7BNwZL8mPFsqr9zUoRHq3mPJNGzt%2FbsM1e%2FiXF2BLg46rDON237o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1170debe0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js

104.18.72.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-3017-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Z0h1mXL70uJbSKY84MZUkL0ClBFu6c+nSOua+oCuPf20Sy5K231aBFbUuzVh55EY5fdYZgayqko=
x-amz-request-id: VSWBW6N0BZ8APV9P
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"40d0e2b632d1b990738af3991e0aecb1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ina_PZ0M7y.dw_MpptgwKDF7jcD.KIMt
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pnOsi8IBw81Iquy%2FaZi2LI5VhNOiHUKr%2B%2BTRLIrdqWYr9Z50N7Gt6IHxUDdMQboeNKlbJAc0JvRbOz3FPLTucd%2BU%2B%2BhRm2lNaQlakwbapFhKN6tAqn4bbFPogsYvPydSq5eEvls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1175082f0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/main-42bee57ba94e9a13.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"193b5-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AJOSMR7d5TJWri90RtOX4UloCI8T1cY2KtyAS0ndNZjQc2IKzHlPxLqNQ%2BJQ0MYwyXFAm%2BmdJTBKuqJpX083qZ1GtVpUus3TD20oICiR8C%2FHKpQ4yZjNbh%2FK%2FBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede3b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/769-cb3113076d7271e6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"39455-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NwGcyth1ysIEbBDGJJhje36qQCNpFnNffklidiaGbN1ROG%2FxwB8Vo0NcoxUetfPvP%2BbyVhSpb8onVok16mI%2BRALksncZ9aV1hoas7c6uXC%2Fz7AgtXh6PGdyc0zo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182edecb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"40f-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=woXUHfVWrniQbO8drRAeIsPXmtYbZViiPOmupKdwRYKsjbCnsbUYkpbln0awj5ttCNf2fe1%2FKcaTjjqRrLEXF0YWNFmX4E7VBQyjhAlB74KRCzB3xEsKDljNvFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182fdf0b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/images/sid-logo-new-light.svg

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/images/sid-logo-new-light.svg
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1dCMoJxdEmWRmB5gqxeTWBCBO0l5zMFMeQr4Rf86D%2BirI5Emgx%2FdenrgRqQmm451Vr4gjfz%2Bm6b%2B7nOuDQHm%2FXqIBIELHDQXYvisLnKtiq3ZXo5qi8XzJ2dx%2F7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e59e9b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d

104.18.72.113

200 OK

0 B

URL HTTP/2
ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"5cdb822494faf4075722a9e5316d7499"
x-request-id: 7af38b537ad6069b-ARN, 7af38b537ad6069b-ARN
x-runtime: 0.003885
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WMwsCozqPDDsTeirulsHkbI5TenXlH8bJlnTbOtbaxnTaIWrMt%2FCyKcoIDhclgFBOXBufkegEo4b6WioPBH%2F3LWGxi8EBmDZLi8jIOGOxfBCDjVYKGF20y3nHblFaIk%2B7jo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e116f5d7eb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/729-f86d647a9e9e1eed.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4bf3-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CJrvJMHaoZ8VcxWlGpi2vnWsNSdcoYOMn8X9UWWgYfETKaqyOyg%2BkY6ZqFBe5GdxQgVyIZerXEm2MZ9BorhhFh9NDnEsmKi7h0wVfF4Rwtp9YmnHVBuo5mPKIr0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ededb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/images/adg-red-ring.svg

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/images/adg-red-ring.svg
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cNkw%2Bz%2BhveJ1H0yIjBsU0mI5PJ3QNrY%2FbI5cFz8OCLt6LUe%2FhRmJ2q1RJqyF%2BtHWTemhreKlPabamrTSA%2F%2FUygUxDaW%2F9tHObWCxPfjCXeZOMxduNGcFlZ%2FFrK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e11830e05b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/webpack-7410c5be2455f264.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1543-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J9z9oLi7YC%2FuSMwL4KX4l3QylP8oFR0AQer5jh5WR3QDn97I3uVB3X3zmPkZ%2B0oOwjcWfJyz5BScSyTEyCzX%2FNxsysimkWHoKuA9EhIGdkd1mJokiOruSGK5Qq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49dab4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js

104.18.72.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-4852-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gmyPiIPiaHNKNt9QM+fEzjdKobmVbgGolEwOMh7QjVSuSpX4sqTR2CRhWSIOHLWuh6kEUWZy77g=
x-amz-request-id: VSWAP6674S1VA6CQ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"b361c19a9af081b357568069aa583838"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: lCJr6G0FRoRJ3k9B7NLo_j8rphrHyr3h
cf-cache-status: HIT
age: 278920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bsNrOyDB2FH91DGCa0u4tiD6uCIH4kXHlH8Sr%2FXqCZ5yDct%2FS1hulMpB0WPfpdCrOoWjfhR72QtjVDh8hE6NxYLHpuhMo37Ccg21qTDGsHP6Qiitu%2F4q9vfGgNdvU2LbITgXEFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1175082b0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323124.60.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323124.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f6CmPRc3aDpmoepXUQ3unSkB%2FiIdpNh%2F%2BdBUDlzYP4iDjKj0n1ETGThHs7J4PBenMUjMkV2%2FnNlD1NFP9sY%2F6IiIEwL5vJVLD81JO%2F0CHIaK1Vr70WqCOr2PC1k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e117dfaa6b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/framework-1d78b5852a861806.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1fbbe-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GK3Pl7EahyueJAgbimm5x5RkebCKna5PUs5%2FH3HUk9IaX7980ituiOShKB6LsR30JmOKG3ssGINjX%2B5TShy%2BytT5btyesOlnpPIl8FIUWSIwvNcgeW2yzrfnyD0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede2b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/framework-8ff6c737ed443ded.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"1fbd0-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jEgoeJ%2BxKD11E4f3vHqJbwy81Zn%2B1E0WJsYIoKldCrCkLJ%2BMbAG%2B%2BGmho%2F87AR6t%2By0yM0%2FAJ2e%2F9mAFkIQHCNVi1K8N%2Ba12JHWOHgz8pioZ%2BrMR4D54H9nwCI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e49dbb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js

104.18.72.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: RYdXOOKy1HOtgMm47xOnJKo3dRijpuMMyO1zDXpqYGfBkoZqDJ87+CV25KodhDqSc/z8+nhbn44=
x-amz-request-id: PF8MPK7NAMWDBKEJ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:27 GMT
etag: W/"8340513af1527c72129bdfd58adc8b99"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:26 GMT
x-amz-version-id: t3AJIslMO6V4cKu0AIZXQursbNfEozLo
cf-cache-status: HIT
age: 278893
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XOgLD7rhL%2FO%2Ft5OkX0YjZtcM3LlkNREjery%2FW71kZjVTiZ%2BNgkYRZOTpZDPtHRL7hpco0eOdvzFAKLyLt0gMuBYU9Hc3o%2BX%2F6BADczCrESKzg%2FdpN3UgAa3qBUcPvAaPNopuq0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1175082a0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114

104.16.57.101

200 OK

0 B

URL HTTP/2
static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114
IP
104.16.57.101:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.3.0
last-modified: Mon, 20 Mar 2023 17:58:49 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0e116f5d52b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.72.113

200 OK

0 B

URL HTTP/2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:29 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"13f9168d502918339af59d2ee2876904"
x-request-id: 7af38b6b4b82069b-ARN, 7af38b6b4b82069b-ARN
x-runtime: 0.002800
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oa7c0EOdEVVl2dXgiiPE3OHOj3YLP4GmhmMR1N%2BDggEB3iIo%2BwYMBjnrHkcJ1cxHz%2Fw6gOhwQWXroLk7WNzIUQxO915bcLFMGzvbkhQqG2a59P%2F55S5xqnCq3QCErgOijUw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e1186f92fb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4d-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JJOwuoa72kYsvTwqmYYn7%2BK9MtNgSqXXxGZdM4eUVfHSbnHxhT8YrThMrGP78LgTUX52fUcW6%2Bxwct9ufpnmHABJ7oJ5cTnDECv47r3vMYMts8UCC9TVKhDuqMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182fdf1b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/images/sid-logo-new-light.svg

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/images/sid-logo-new-light.svg
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/sid-logo-new-light.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:29 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"f40-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKi8gv3GQkfNGYQzEp9qO%2F4RzFHknWcaJarvasyT7l8BGaAvNff2asBgGp7r3H6dYcTJKTsj%2B6W2DE2qrW%2FtO%2B7lKG%2B99bvl1ZYs5ntBwbQi5Jat%2BQYX5W9uq1s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182fe00b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.72.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:29 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 55
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZUPbHUGHTqbrHqTDYmrvCP4lkjpe33A97mZIwyp9UZmy2%2FRksuNoYh3NUWfZGOQ3J7d%2FV59z96bX4PvfpMLB0ZbcTp23ajNSJHh6HO%2FMbugA41azvhswg3JS1Pb%2B2CGLN9ljld4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0e11854f1c0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/favicon.ico

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/favicon.ico
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323124.60.0.0; _ga=GA1.1.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323124.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:26 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"171-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GgEp5RFYEleOv4k5%2FA%2FGV4F%2FB7prfHRwnWcQj8hJmOwNnfBVQJ%2B7UIp1mvfNiE8th8vTI%2BJ%2BqdBhVY9ieJtwUEomgiLtAPO6hGr3kKzypKwP%2F4YdNyeGFrJQ%2B1c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1172ac4eb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/css/a784000e88d6fd7c.css

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/css/a784000e88d6fd7c.css
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/css/a784000e88d6fd7c.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"18c4a-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=msUCc1U9bRLoEwi3yR5VPhKPn6%2BvIN9k6bOONar4oWweGyI2k2cKhJLa647QYuhAk4PRNkxCwZD0IjKn%2BIhW2JwhzUD7mRkcow1Rz7ZEF5qKfQoQLSMTxN0ZpfM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ddddb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/_app-d23866c4997f9a6f.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"2bf69-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 68878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Mx7FC8s7F1hSXZ2%2BKY1jChf9UQD7FKPk5KzBFmqd4FvbAT0ocBSJbrJ%2BcHxAi1ZcFmti2L3s8ELN6FLlw9uOylN1m%2BJhdAf5ovPpnkgeaIB%2FYoxeAgxlZjGozo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede5b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js

188.114.96.1

200 OK

0 B

URL HTTP/2
blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/471-dd22a53f3091be72.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.246390862.1680323124; _ga_98MWVCBDD7=GS1.1.1680323124.1.0.1680323127.57.0.0; _ga=GA1.2.597335184.1680323124; _ga_LJQ0V44EV5=GS1.1.1680323124.1.0.1680323127.0.0.0; _gid=GA1.2.334898335.1680323125; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:28 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1ed84-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1379467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2BZvNI4pDDuWx0ALG1%2BQPtqfS8B%2FhaBsHvkNdyeiiX1LN3%2BfUU%2Fg8QXLsleft6NDioQ1qKPFvQzfXU7y2GzZEj6NN%2BG0ZJhYyIhVYCFQtYr5gJz6hw4nF1n9TYA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1182ede9b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/forbidden

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/forbidden
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bHQp%2F0uCiyxgw5Baa2KAsN5CKFZwPXeIxdOo3g0Gn2lw%2B%2Bvfh91gLRsH6WE7ZnxdLtNjKAvxC82dCuEcSEQgLNYpGGMqNQMhzbXSTbiUwCYKSRnDCjMzCBDjI1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e1169ae60b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js

188.114.96.1

200 OK

0 B

URL HTTP/2
home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:25:25 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5b-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 69158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vxNYXsurPq8%2BfX3lr2sATTb6mapcMOv0DhznhLBOrAULSAvQ53raumbe2BdNYvHDpZX%2FaybIG3pS8JrOl4A52qUBCyZXG9lVLBn4oS9RsWRnyEWhHPMqkVmkCAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b0e116e59e6b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 04:25:25 GMT
date: Sat, 01 Apr 2023 04:25:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML