urlquery - report: https://verifikasiiidentitas2022.weebly.com/

Overview

URL	https://verifikasiiidentitas2022.weebly.com/
IP	199.34.228.54
ASN	WEEBLY
Location	United States
Report completed	2022-07-03 09:01:06 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

Added / Verified	Severity	Host	Comment
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-03	2	verifikasiiidentitas2022.weebly.com/	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/files/theme/plugins.js?1573850854	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/uploads/1/4/1/5/141588604/whatsapp-imag (...)	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/files/theme/custom.js?1573850854	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?Cust (...)	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (18)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	www.gstatic.com (1)	0	2015-06-20 09:50:55 UTC	2015-11-29 15:55:55 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-03 05:03:35 UTC	52.89.17.198
[Mnemonic Passive DNS]	ajax.googleapis.com (1)	12905	2017-01-30 05:00:30 UTC	2019-10-16 05:01:16 UTC	142.250.74.10
[Mnemonic Passive DNS]	www.google.com (1)	7	2012-05-22 04:23:54 UTC	2022-07-03 03:15:57 UTC	142.250.74.164
[Mnemonic Passive DNS]	ocsp.sca1b.amazontrust.com (2)	1015	No data	No data	54.230.245.100
[Mnemonic Passive DNS]	ssl.google-analytics.com (1)	275	2017-01-30 05:00:07 UTC	2022-07-03 04:38:51 UTC	142.250.74.72
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-03 04:06:00 UTC	34.120.237.76
[Mnemonic Passive DNS]	verifikasiiidentitas2022.weebly.com (8)	0	2022-07-03 04:50:47 UTC	2022-07-03 04:50:51 UTC	199.34.228.53	Domain (weebly.com) ranked at: 4470
[Mnemonic Passive DNS]	cdn2.editmysite.com (12)	11564	2012-10-02 18:27:39 UTC	2022-07-03 08:17:23 UTC	151.101.85.46
[Mnemonic Passive DNS]	ec.editmysite.com (2)	12806	2017-01-29 21:50:35 UTC	2022-07-03 08:17:27 UTC	44.239.242.204
[Mnemonic Passive DNS]	ocsp.pki.goog (15)	175	2017-06-14 07:23:31 UTC	2022-07-03 04:43:22 UTC	142.250.74.3
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-03 05:07:31 UTC	54.230.111.7
[Mnemonic Passive DNS]	r3.o.lencr.org (3)	344	2020-12-02 08:52:13 UTC	2022-07-03 04:49:06 UTC	23.36.76.226
[Mnemonic Passive DNS]	ocsp.digicert.com (2)	86	2012-11-29 12:49:49 UTC	2022-07-03 04:05:41 UTC	93.184.220.29
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	fonts.googleapis.com (1)	8877	2017-01-30 04:59:43 UTC	2019-10-16 05:12:41 UTC	216.58.211.10
[Mnemonic Passive DNS]	fonts.gstatic.com (4)	0	2017-01-30 04:59:51 UTC	2022-07-03 04:33:25 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.35

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.34.228.54

Date	UQ / IDS / BL	URL	IP
2022-08-11 08:10:13 +0000	0 - 0 - 0	chuyentienquoctebank.weebly.com	199.34.228.54
2022-08-11 04:29:35 +0000	0 - 0 - 0	westernunionmoneytransfer247.weebly.com	199.34.228.54
2022-08-11 03:38:22 +0000	0 - 0 - 0	westernunionmoneytransfer247.weebly.com	199.34.228.54
2022-08-11 03:36:43 +0000	0 - 0 - 0	https://westernunionmoneytransfer247.weebly.com	199.34.228.54
2022-08-11 03:29:29 +0000	0 - 0 - 0	quocteusd-jp.weebly.com	199.34.228.54
2022-08-10 01:34:25 +0000	0 - 0 - 0	chuyentienquoctebank.weebly.com	199.34.228.54
2022-08-10 01:33:02 +0000	0 - 0 - 0	https://chuyentienquoctebank.weebly.com	199.34.228.54
2022-08-09 06:51:35 +0000	0 - 0 - 2	https://at4t56y7y-i.weebly.com/	199.34.228.54
2022-08-08 17:56:57 +0000	0 - 0 - 10	https://verifikasiiaakunnts.weebly.com/	199.34.228.54
2022-08-08 17:45:55 +0000	0 - 0 - 17	office365faxescloud.weebly.com/	199.34.228.54

Last 10 reports on ASN: WEEBLY

Date	UQ / IDS / BL	URL	IP
2022-08-12 10:47:46 +0000	0 - 0 - 8	alltriciashomemadegoodies.com/	199.34.228.160
2022-08-12 09:17:10 +0000	0 - 0 - 13	teazedl.com/	199.34.228.71
2022-08-12 09:02:06 +0000	0 - 0 - 1	www.oamco.net/	199.34.228.76
2022-08-12 08:35:20 +0000	0 - 0 - 12	https://btinternetghdf.weebly.com/	199.34.228.53
2022-08-12 08:14:02 +0000	0 - 0 - 2	https://hsabankjnonnk.square.site/	199.34.228.40
2022-08-12 08:13:38 +0000	0 - 0 - 3	12mailupdateattyahoo100921132243445464.square (...)	199.34.228.40
2022-08-12 07:56:59 +0000	0 - 0 - 3	https://att105594-102317.square.site/	199.34.228.39
2022-08-12 07:54:40 +0000	0 - 0 - 2	https://currently-att-106799teamservice.squar (...)	199.34.228.39
2022-08-12 07:54:22 +0000	0 - 0 - 3	residentialserver.square.site/	199.34.228.39
2022-08-12 03:37:31 +0000	0 - 0 - 3	onrymusic.com/	199.34.228.66

No other reports on domain: weebly.com

JavaScript

Executed Scripts (26)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (64)

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sun, 03 Jul 2022 08:52:01 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: tqZ79BWDiukLs9pAQZjHLVHs7S1xpvbDpsI7LTq5tsx70-EpggtTcA== Age: 532 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.7 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sun, 03 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: E9_DqGqUPjasY5ER4FeqPziJQ8yXwcYmZ8uK_FGw12kcbFBo541ZiQ== age: 20052 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575" Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5664 Expires: Sun, 03 Jul 2022 10:35:17 GMT Date: Sun, 03 Jul 2022 09:00:53 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a7e37e80f3a67a41ff567648c1f2d285 Sha1: 7ce66e5153f2d4a7b14ccba49fd1a4b70ae274f5 Sha256: 8e263e6763753f5659ac0fc2d11daf8ece9720988153c38cb40631af26c86575
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5067 Cache-Control: max-age=102271 Date: Sun, 03 Jul 2022 09:00:53 GMT Etag: "62c03379-1d7" Expires: Mon, 04 Jul 2022 13:25:24 GMT Last-Modified: Sat, 02 Jul 2022 12:00:57 GMT Server: ECS (ska/F70C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 6e0cdcedf70bb3615365fe9426d3aaa2 Sha1: 93847ced4856217e49b1b8806cd703c9842a6cf0 Sha256: 0f1bdd6fa282554b857f3bc575fa55c2313179f6993876a470f7be1c648ec1f8
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Sun, 03 Jul 2022 09:00:53 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Sun, 03 Jul 2022 08:52:22 GMT Cache-Control: max-age=3600 Expires: Sun, 03 Jul 2022 08:57:42 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: oCqm9sureUXzv7lMVnq1z4gjpXNEZPKytkJpDxjA79Dsmv6UTbbozw== Age: 513 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET / HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260), with CRLF, LF line terminators Size: 6834 Md5: f20dd0adb885271abdf3885d917b4ea7$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sun, 03 Jul 2022 09:00:53 GMT Server: Apache Vary: X-W-SSL,Accept-Encoding,User-Agent Set-Cookie: is_mobile=0; path=/; domain=verifikasiiidentitas2022.weebly.com language=en; expires=Sun, 17-Jul-2022 09:00:53 GMT; Max-Age=1209600; path=/ Cache-Control: private ETag: W/"09999266c4209ce5bed7fe5dd5ce1955-gzip" Content-Encoding: gzip X-Host: blu105.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 6834 Keep-Alive: timeout=10, max=74 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260), with CRLF, LF line terminators Size: 6834 Md5: f20dd0adb885271abdf3885d917b4ea7 Sha1: 413da689ada17eb89e6d92e2c70df4ad5117fa4c Sha256: 2ee3b5f5540f48d096a1f001f5582376a7ef31497669bdfe112d27530a10b690 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3575 Cache-Control: 'max-age=158059' Date: Sun, 03 Jul 2022 09:00:54 GMT Last-Modified: Sun, 03 Jul 2022 08:01:20 GMT Server: ECS (ska/F70C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 1bbeee0af8ba2baaa7ba2cfd41d985fe Sha1: b8ebc12a31a06bb371e40a11190af4a51efa169d Sha256: 12f4813aabd9a8839077cfa09cf1115f357f7772d4544ecad4be03f1d13fee1c
GET /files/main_style.css?1650715057 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sun, 03 Jul 2022 09:00:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: grn65.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (936) Size: 8132 Md5: 5398438f2ba563fbf6311defc400cfd6 Sha1: d666da9195d4463ba5750772014a430b58d18f3b Sha256: 68fbb65c4f7cd8092cbca746f69b73fc91cae7fb8f912e7f5fd1a858c0664d0c
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /js/site/footerSignup.js?buildTime=1656620022 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Thu, 30 Jun 2022 19:06:58 GMT etag: "62bdf452-e10" expires: Thu, 14 Jul 2022 20:17:35 GMT cache-control: max-age=1209600 x-host: grn92.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 218599 x-served-by: cache-sjc10040-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 267 x-timer: S1656838854.473210,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1372 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3600), with no line terminators Size: 1372 Md5: 121a5b9688d8e70ee7bb06cc79491f76 Sha1: 3a28220baa7d8879270c8311bed7dddefa7e43e9 Sha256: 181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Nt9KjsqfmXih7RyNWVBR7A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.89.17.198 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 40jYZgQZMzFizfnBvCXBaNBnNAM= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/site/theme-plugins.js?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:09:28 GMT etag: "62b25db8-314e" expires: Thu, 07 Jul 2022 12:50:44 GMT cache-control: max-age=1209600 x-host: blu88.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 850210 x-served-by: cache-sjc10025-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1656838854.473131,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 3747 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (12622), with no line terminators Size: 3747 Md5: 326fac3bf2f5a48ddb695ce00260efd8 Sha1: 824134c8f3cbfc5b0ce818dcb0befc99842e4fa6 Sha256: 8fa81dbf4afb7142ee09f89d14e23fd44928c782bced6ef6c44fe9515429af50
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data Size: 9677 Md5: 6e0f7ad31bf187e0d88fc5787573ba71$ 151.101.85.46 HTTP/2 200 OK x-guploader-uploadid: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8 x-goog-generation: 1549995548326466 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 9677 x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ== x-goog-storage-class: STANDARD server: UploadServer expires: Sun, 17 Apr 2022 00:19:21 GMT cache-control: public, max-age=86400, s-maxage=259200 last-modified: Tue, 12 Feb 2019 18:19:08 GMT etag: "6e0f7ad31bf187e0d88fc5787573ba71" content-type: image/png accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT via: 1.1 varnish age: 203629 x-served-by: cache-bma1656-BMA x-cache: HIT x-cache-hits: 616 x-timer: S1656838854.473489,VS0,VE0 access-control-allow-origin: * content-length: 9677 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data Size: 9677 Md5: 6e0f7ad31bf187e0d88fc5787573ba71 Sha1: 14e8b85cc32a01c8901e4ac0160582d29a45e9e6 Sha256: 580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 33593 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Jul 2022 03:45:32 GMT expires: Mon, 03 Jul 2023 03:45:32 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 age: 18922 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65483) Size: 33593 Md5: a54a444f20643b131117dc2112cca05f Sha1: 074964746b12ff1d30f7656310d6154ae1cc98b5 Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /files/theme/plugins.js?1573850854 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 09:00:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 28 Jan 2022 02:17:25 GMT x-rgw-object-type: Normal ETag: W/"86db86f3ec46612c95a552a133cf2501" x-amz-request-id: tx0000000000000000445bc-006258b627-4d62951-las X-Storage-Bucket: z8a29 X-Storage-Object: 8a295e631b0d74ebc6b734fdd9a2d5b29653da10a362599b0004ee135c115ce9 X-Host: blu56.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 18075 Md5: 35f647b2742c690703076a35ee299d33 Sha1: d8f040a94a3db61a2eb9c4d22906dd515b85fa75 Sha256: 89b301a048d2d58d670d3f1767422cc357dd9e66a0b0a1fd047b5165c30c87c2 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /css/old/fancybox.css?1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Tue, 28 Jun 2022 23:57:23 GMT etag: "62bb9563-f47" expires: Wed, 13 Jul 2022 07:44:35 GMT cache-control: max-age=1209600 x-host: blu97.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 350179 x-served-by: cache-sjc10036-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 2 x-timer: S1656838854.481981,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1218 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3910) Size: 1218 Md5: b644e92258f4c7c0b4270047652d1e60 Sha1: 93734d52ee9e86a768159e514076051813c39cd9 Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/social-icons.css?buildtime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Fri, 17 Jun 2022 16:30:59 GMT etag: W/"62acac43-3319" expires: Tue, 05 Jul 2022 12:44:44 GMT cache-control: max-age=1209600 x-host: blu103.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 1023370 x-served-by: cache-sjc10065-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 3, 2 x-timer: S1656838854.482745,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1640 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (13080) Size: 1640 Md5: e28c5221da1212ddb24c7dfac9bd2b71 Sha1: ed66d8a6d25f9c602daf0064a479351de253c320 Sha256: 539d483410c07abe67073b07dbaa9c6bd73a45905a6f2becb60467c93e9f03df
GET /css/sites.css?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Fri, 24 Jun 2022 16:10:02 GMT etag: W/"62b5e1da-347ac" expires: Fri, 08 Jul 2022 19:37:05 GMT cache-control: max-age=1209600 x-host: blu87.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 739429 x-served-by: cache-sjc10042-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 12, 2 x-timer: S1656838854.478627,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 29746 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 29746 Md5: d10158b22b553f723d99dc78eaee6390 Sha1: 80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6 Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /js/lang/en/stl.js?buildTime=1650559948& HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:08:08 GMT etag: "62b25d68-2c140" expires: Thu, 07 Jul 2022 10:29:45 GMT cache-control: max-age=1209600 x-host: grn95.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 858670 x-served-by: cache-sjc10027-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 2, 2 x-timer: S1656838854.476916,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 32651 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, Unicode text, UTF-8 text, with very long lines (64997) Size: 32651 Md5: 787fe93eafe30968817ce9ee7be00491 Sha1: 829e082e2477a98a667b394fdf7002b5b0bd4d1b Sha256: f91b4f3130263bc656f0f041fbed43f321daa5a78d97a00dccf863ca9de8134f
GET /js/site/main-customer-accounts-site.js?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Tue, 28 Jun 2022 23:57:40 GMT etag: "62bb9574-82588" expires: Wed, 13 Jul 2022 13:27:27 GMT cache-control: max-age=1209600 x-host: grn88.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 329607 x-served-by: cache-sjc10054-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1656838854.473299,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 159020 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32007) Size: 159020 Md5: 19fd4a473c58275a9e8110c598292a56 Sha1: 3ff56cbf5a3677387aef743acdf1a8abf822d28d Sha256: 89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /js/site/main.js?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Mon, 27 Jun 2022 20:12:09 GMT etag: "62ba0f19-74804" expires: Tue, 12 Jul 2022 10:34:21 GMT cache-control: max-age=1209600 x-host: grn89.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 426393 x-served-by: cache-sjc10024-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1656838854.474904,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 146400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32147) Size: 146400 Md5: 81b8673c5d3aa3ab8c0574f2a8f0e3b4 Sha1: 2e0661bc7907d9e2703b3347c3fec579f0aef5d6 Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /uploads/1/4/1/5/141588604/whatsapp-image-2021-07-28-at-23-52-33-orig_orig.jpeg HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 450x180, components 3\012- data Size: 7984 Md5: d9361c063a428090b092596925d56e0d$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Sun, 03 Jul 2022 09:00:54 GMT Content-Length: 7984 Connection: keep-alive Last-Modified: Wed, 28 Jul 2021 16:54:20 GMT x-rgw-object-type: Normal ETag: "d9361c063a428090b092596925d56e0d" x-amz-request-id: tx000000000000001f5c738-006284c289-b9fbc20-sfo1 X-Storage-Bucket: z5ca8 X-Storage-Object: 5ca8dec12bc5b5f96edacac316f984899e0d6ff4e5fad9a1e0fde04062c54724 X-Host: grn65.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 450x180, components 3\012- data Size: 7984 Md5: d9361c063a428090b092596925d56e0d Sha1: f4559a79456cfef12aa7fcc124830caf102c8e13 Sha256: 5ca8dec12bc5b5f96edacac316f984899e0d6ff4e5fad9a1e0fde04062c54724 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /files/theme/custom.js?1573850854 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 09:00:54 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Tue, 10 May 2022 00:14:12 GMT x-rgw-object-type: Normal ETag: W/"167b5f2a55a6ac2775d799bf9a87343d" x-amz-request-id: tx000000000000001da853b-006284a8cb-b9fbc77-sfo1 X-Storage-Bucket: za16d X-Storage-Object: a16df105a4c2f66f83e36051a5d4b3e7399fadc9046f779b7f373a5dc46b2361 X-Host: blu40.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 2637 Md5: 0ebe47e011abac0beb0353c38e6fe5f6 Sha1: c234e549ad5d546b3901f209a50639352dfd23db Sha256: 8f6c0204657565452ae33714fa329826c79cbea1af9ab891e70abfc9cd66e5fa Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /uploads/1/4/1/5/141588604/c3b4e6e5-051b-4956-b18a-a32337c4cca6.jpg HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data Size: 1660 Md5: b69386a72c02bb1cf3bb6be2f7cb845c$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Sun, 03 Jul 2022 09:00:54 GMT Content-Length: 1660 Connection: keep-alive Last-Modified: Wed, 16 Jun 2021 05:28:37 GMT x-rgw-object-type: Normal ETag: "b69386a72c02bb1cf3bb6be2f7cb845c" x-amz-request-id: tx000000000000001d57610-0062849827-b9fbc29-sfo1 X-Storage-Bucket: zc51d X-Storage-Object: c51dda443a30920a58b6764eaff6f5301dbdd82051b08a696e2969bea019e0b7 X-Host: blu43.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data Size: 1660 Md5: b69386a72c02bb1cf3bb6be2f7cb845c Sha1: a4296987c45c89690a85e963b807cfb9c0742453 Sha256: c51dda443a30920a58b6764eaff6f5301dbdd82051b08a696e2969bea019e0b7 Alerts: Blocklists: - openphish: Facebook, Inc.
GET /js/wsnbn/snowday262.js HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:08:55 GMT etag: "62b25d97-124fe" expires: Thu, 07 Jul 2022 08:38:41 GMT cache-control: max-age=1209600 x-host: blu100.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:54 GMT age: 865333 x-served-by: cache-sjc10076-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 1, 1244 x-timer: S1656838855.971269,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 25752 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2512) Size: 25752 Md5: 234327230add9a5a5d61a48829ea4565 Sha1: 7966cc0e4bd76f88ff193c8a99a067de804b7129 Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /css/free-footer-v3.css?buildtime=1656620022 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Thu, 30 Jun 2022 19:06:31 GMT etag: "62bdf437-a49" expires: Thu, 14 Jul 2022 20:17:35 GMT cache-control: max-age=1209600 x-host: grn89.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:55 GMT age: 218599 x-served-by: cache-sjc10021-SJC, cache-bma1656-BMA x-cache: HIT, HIT x-cache-hits: 2, 238 x-timer: S1656838855.035051,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 886 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2632) Size: 886 Md5: 5c465ace654da8d0e367f91e7751ae62 Sha1: f218f483eccbba5be90abf97eff819569329f8b7 Sha256: 0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
GET /images/landing-pages/global/logotype.svg HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1656620022 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858) Size: 1488 Md5: 0d1c9fb7005532e7b245cfdf1280d805$ 151.101.85.46 HTTP/2 200 OK x-guploader-uploadid: ADPycdu3WKYd9ihxZuRayD6zmSn-Rh8hU-WhLx9GBozTTJsb87kK47MR6siKtjK0iSd4SSX9DCkFdQpI7nLFZ-DLDWoTdA x-goog-generation: 1539207420450301 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 3507 x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg== x-goog-storage-class: STANDARD server: UploadServer expires: Sun, 12 Jun 2022 23:57:38 GMT cache-control: public, max-age=86400, s-maxage=259200 last-modified: Wed, 10 Oct 2018 21:37:00 GMT etag: "bc61dcb431a14c508075eeff4f74523a" content-type: image/svg+xml content-encoding: gzip accept-ranges: bytes date: Sun, 03 Jul 2022 09:00:55 GMT via: 1.1 varnish age: 205327 x-served-by: cache-bma1656-BMA x-cache: HIT x-cache-hits: 500 x-timer: S1656838855.163836,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1488 X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858) Size: 1488 Md5: 0d1c9fb7005532e7b245cfdf1280d805 Sha1: 2466421992f1fb0e44829833aaee7afc0e5ac7cc Sha256: 8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 334d91ba472c54fd5eafb6b129bce0b7 Sha1: c7ab329648d0afa86a127c18ae236fdba080be4c Sha256: 8d4b7dec0d711308c68a1aa5e6e23c798bb0845997ca751e4ddc5f2d6b5381fe
GET /css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	216.58.211.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 03 Jul 2022 09:00:54 GMT date: Sun, 03 Jul 2022 09:00:54 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 31414 Md5: c70d4e4d91ce2eb86f0e703d4d61410f Sha1: 4d2f8c1f0d5d23be86e5cc2b218012adceebdd8b Sha256: 336f14957ba8219c4d577fbd8b596e0cc71a3efda6a18e3bab47584d2f70c00d
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size: 23580 Md5: e1b3b5908c9cf23dfb2b9c52b9a023ab$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:10:21 GMT expires: Wed, 28 Jun 2023 17:10:21 GMT cache-control: public, max-age=31536000 age: 402634 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size: 23580 Md5: e1b3b5908c9cf23dfb2b9c52b9a023ab Sha1: fcd4136085f2a03481d9958cc6793a5ed98e714c Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /recaptcha/api.js?_=1656838855302 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.164 HTTP/2 200 OK expires: Sun, 03 Jul 2022 09:00:55 GMT date: Sun, 03 Jul 2022 09:00:55 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 552 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (850), with no line terminators Size: 552 Md5: 00ff0428801937984aafe2651afd9233 Sha1: 2aaa4a675188b3597e42f22836fbcf90f0453675 Sha256: 20fb3d5aa68e643049e8473446df82c45f5793a29f27db526daed8719e0d425e
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data Size: 23236 Md5: 716309aab2bca045f9627f63ad79d0bf$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:17:24 GMT expires: Wed, 28 Jun 2023 17:17:24 GMT cache-control: public, max-age=31536000 age: 402211 last-modified: Tue, 26 Apr 2022 16:04:12 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data Size: 23236 Md5: 716309aab2bca045f9627f63ad79d0bf Sha1: 38804233a29aaf975d557fe14e762c627bef76e0 Sha256: 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/montserrat/v24/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 12804, version 1.0\012- data Size: 12804 Md5: eb7d03ac4d0688b70a1b20d09ddac526$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12804 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:14:56 GMT expires: Wed, 28 Jun 2023 17:14:56 GMT cache-control: public, max-age=31536000 age: 402359 last-modified: Tue, 26 Apr 2022 14:39:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 12804, version 1.0\012- data Size: 12804 Md5: eb7d03ac4d0688b70a1b20d09ddac526 Sha1: 3664d3efad896b6280b3737d21d3b63ce65a80a8 Sha256: 1efb6b34aee777f657af03fc18ab7ec444bcb7025b175edbd489c3c984035f34
GET /s/montserrat/v24/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Size: 12708 Md5: c2a023838175cc9990e4f9a8e3ef341b$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12708 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:15:48 GMT expires: Wed, 28 Jun 2023 17:15:48 GMT cache-control: public, max-age=31536000 age: 402307 last-modified: Tue, 26 Apr 2022 14:37:36 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Size: 12708 Md5: c2a023838175cc9990e4f9a8e3ef341b Sha1: 61d8759dbe3e921dee73c41d8b0646a0b06ebdbb Sha256: 59d09721ef5d6a8a6aa8cf8100a1eaa2ef1644bd196fc1a788ad31e16a505734
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 7cd39809fa6bac4d3aebebe798838ba2 Sha1: 3245a3a54f902f442be7c93767f040eb84ee3b1e Sha256: feb42208c3d99db1af1cdc36d080117240720493d3259aa96b6040569e262b6b
GET /recaptcha/releases/4rwLQsl5N_ccppoTAwwwMrEN/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	142.250.74.163 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 146545 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 01 Jul 2022 18:51:46 GMT expires: Sat, 01 Jul 2023 18:51:46 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Jun 2022 04:02:51 GMT content-type: text/javascript age: 137349 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (618) Size: 146545 Md5: edbca8e066da9cd6310dada3c125ccf4 Sha1: 22f45ed309e828212484a03cc7d0e629834e8a76 Sha256: fcab033160e1ba423ad7a42e0bd67ec5820e1ed6751765de935960e502e623f0
GET /favicon.ico HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.8ad7=*; _snow_id.8ad7=ad45582c-67d7-4760-8b2d-45a610ffeb4a.1656838855.1.1656838855.1656838855.cb8ce02b-8e23-4e82-9f05-297e53d6f5f4 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/x-icon Server: nginx Date: Sun, 03 Jul 2022 09:00:55 GMT Content-Length: 4286 Connection: keep-alive Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT x-rgw-object-type: Normal ETag: "4d27526198ac873ccec96935198e0fb9" x-amz-request-id: tx000000000000000c7f3c4-0061a705d8-a9f6a62-sfo1 X-Storage-Bucket: z40a2 X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 X-Host: grn40.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9 Sha1: b98d8b73ad6a0f7477c3397561b4aab37bf262aa Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 Alerts: Blocklists: - openphish: Facebook, Inc.
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=150524 Date: Sun, 03 Jul 2022 09:00:55 GMT Etag: "62c10227-1d7" Expires: Tue, 05 Jul 2022 02:49:39 GMT Last-Modified: Sun, 03 Jul 2022 02:42:47 GMT Server: ECS (nyb/1D24) X-Cache: Miss from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Z2yXds8NptqEvflJ-N_IboJmlNxK9y72ZjGr58gZoHNA4WWiWz_rQg== Age: 412 --- Additional Info --- Magic: data Size: 471 Md5: 0bfd31d049656acbb231b94d97111f56 Sha1: 765cf05c0b7932efcc278d36b15f7fdea9a6c291 Sha256: 9972e02909bc1a40ef651057de549fc0d01fc7d6364c872930fc96e30013cc25
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=154384 Date: Sun, 03 Jul 2022 09:00:55 GMT Etag: "62c10227-1d7" Expires: Tue, 05 Jul 2022 03:53:59 GMT Last-Modified: Sun, 03 Jul 2022 02:42:47 GMT Server: ECS (nyb/1D1B) X-Cache: Miss from cloudfront Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: hPVWWuJJ41Ky1L5wm6M6m7hCgHoW7k4UikwMxPWhR4rg-1ajQrJbrw== Age: 4273 --- Additional Info --- Magic: data Size: 471 Md5: 0bfd31d049656acbb231b94d97111f56 Sha1: 765cf05c0b7932efcc278d36b15f7fdea9a6c291 Sha256: 9972e02909bc1a40ef651057de549fc0d01fc7d6364c872930fc96e30013cc25
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 232e4a3508854795a20fba8c00190a29 Sha1: af408f331e1d452c03edf0163c994202b0b04211 Sha256: e094102b87f88dd0869aa3bf289457d72580d135bccdd5b47d474f30b1fa6030
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 83 Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.8ad7=*; _snow_id.8ad7=ad45582c-67d7-4760-8b2d-45a610ffeb4a.1656838855.1.1656838855.1656838855.cb8ce02b-8e23-4e82-9f05-297e53d6f5f4 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	$Magic: JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size: 348 Md5: a944dd688c99d2901d6719be713271c0$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: application/json Date: Sun, 03 Jul 2022 09:00:55 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn85.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 348 Keep-Alive: timeout=10, max=72 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size: 348 Md5: a944dd688c99d2901d6719be713271c0 Sha1: 4f5454d5d434829baf46671638610791758725d9 Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /ga.js HTTP/1.1 Host: ssl.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.72 HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 17168 date: Sun, 03 Jul 2022 07:14:18 GMT expires: Sun, 03 Jul 2022 09:14:18 GMT cache-control: public, max-age=7200 age: 6397 last-modified: Wed, 13 Apr 2022 21:02:38 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1305) Size: 17168 Md5: 01d5892e6e243b52998310c2925b9f3a Sha1: 58180151b6a6ee4af73583a214b68efb9e8844d4 Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://verifikasiiidentitas2022.weebly.com/ Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	44.239.242.204 HTTP/2 200 OK date: Sun, 03 Jul 2022 09:00:55 GMT content-length: 0 server: nginx access-control-allow-origin: https://verifikasiiidentitas2022.weebly.com access-control-allow-credentials: true access-control-allow-headers: Content-Type, SP-Anonymous access-control-max-age: 5 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 09:00:55 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 232e4a3508854795a20fba8c00190a29 Sha1: af408f331e1d452c03edf0163c994202b0b04211 Sha256: e094102b87f88dd0869aa3bf289457d72580d135bccdd5b47d474f30b1fa6030
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8962 Expires: Sun, 03 Jul 2022 11:30:17 GMT Date: Sun, 03 Jul 2022 09:00:55 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8962 Expires: Sun, 03 Jul 2022 11:30:17 GMT Date: Sun, 03 Jul 2022 09:00:55 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1807 Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	44.239.242.204 HTTP/2 200 OK date: Sun, 03 Jul 2022 09:00:55 GMT content-type: text/plain; charset=UTF-8 content-length: 2 server: nginx set-cookie: sp=b36c6a39-5a07-4c8c-b156-cc4f506719d5; Expires=Mon, 03 Jul 2023 09:00:55 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://verifikasiiidentitas2022.weebly.com access-control-allow-credentials: true X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92bd5624-393a-4d06-96d1-03958c1149ae.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13900 Md5: 7f1b5c593eedeb23e419e89dbf02db3f$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 13900 x-amzn-requestid: 478579e3-1b8d-482a-af9a-6b166044093f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UdtuGF9voAMFneQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbc326-2730918408ed751a42ab6665;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 03:12:38 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: d_rZOYTohwe3MvgKQJbn-fMXmn5pIcTo8HuV7CIdKUseMubZymTpWw== via: 1.1 497370ec058751eb0d9251f66d50af5e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 16:16:04 GMT age: 60291 etag: "3511239bf80ba6b88ee3cd15391c2f30bf793a83" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13900 Md5: 7f1b5c593eedeb23e419e89dbf02db3f Sha1: 3511239bf80ba6b88ee3cd15391c2f30bf793a83 Sha256: a3f538ae3932859e5cd95baf9770d81b2b6e936750a1ad8317fd7ba09e9b5275
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0972b268-f4d1-450c-a4fb-9c028283bc9a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10919 Md5: b7bb856907b42548036082ab66b18020$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10919 x-amzn-requestid: 23b6304d-6914-4b7c-9546-51a0cc618047 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Udsy_HypoAMFjpQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbc1ac-3609a3fa574884a612eb1430;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 03:06:20 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: NYiOOnweelCp0-DKbA2Z_bItDA3jpetk97Engp4BpzxahJsDdkP3HA== via: 1.1 11c8673f8a48dc627eaa83c99e9efedc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 23:18:23 GMT age: 34952 etag: "ca5bbf12904de3b5b04917d7acec94313b09fb87" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10919 Md5: b7bb856907b42548036082ab66b18020 Sha1: ca5bbf12904de3b5b04917d7acec94313b09fb87 Sha256: 00f04c1600388f435b3100709ebbd3c36e2f4d50d65fa6126d477f769cfb3f10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27c91804-20e6-462f-aedb-bdf209d6a7ff.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7435 Md5: bff84dbfeb7d2cb2edcb367e84ed0f7e$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7435 x-amzn-requestid: b40cee49-550f-4039-97ef-1b46de576522 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UqJBtE5voAMFWCg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c0bba4-63212eaf06fb7d291ff9e6da;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 21:41:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 2471PJrEUC3dKtVzv8vDMiY53Zt7tLMbYHGk6cNyWmN9eL42S7VYQA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 22:03:00 GMT age: 39475 etag: "9b4f9ba34e26b13aef71dd9125dd3878dc2f9105" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7435 Md5: bff84dbfeb7d2cb2edcb367e84ed0f7e Sha1: 9b4f9ba34e26b13aef71dd9125dd3878dc2f9105 Sha256: 0a760e8b512c0b81c732721e1e0fae54b14b8387aa0d214ce7f325ba128d7a05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ea1212f-c856-478b-8478-e81dd7306820.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10143 Md5: eebebd88b9e7ba3d94e19e6a20be4fd5$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 10143 x-amzn-requestid: 7b198982-763e-427b-9abb-2d533f346821 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UaZt7HBnIAMFtOA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ba6ff2-30284cbe4fa5a0906070335e;Sampled=0 x-amzn-remapped-date: Tue, 28 Jun 2022 03:05:22 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: lTKF2-OdgSohMRk07yAFIDTy8eaebXdLG3Yjwp1h6tEuWANw9ZmYHg== via: 1.1 f94de31c777bc3bf7b8976bac21b4482.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 13:49:14 GMT age: 69101 etag: "e64381fdfedbede9788ae6b82affd78ceaf56284" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10143 Md5: eebebd88b9e7ba3d94e19e6a20be4fd5 Sha1: e64381fdfedbede9788ae6b82affd78ceaf56284 Sha256: 9a7950214124312b6f80394ea72d0f29773d11f223173c1343c9669e3723247b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd82a5d63-f405-4f54-ad9a-a423aeae09c9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7184 Md5: dbf74d25f8acb3f6b249386ce5e55871$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7184 x-amzn-requestid: 5bea16e3-4d08-4511-afc7-be12e1bdf693 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Uk06uGnEIAMFlhA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be9b77-5aedba11418da4ae48e2b501;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 07:00:07 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: hA0TBCiyjTV0oJ95__nF6-t_K0j37WbuzW1-2z_gZ5qqn62WiajC0g== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 18:34:39 GMT age: 51976 etag: "984498975a9424217a161f11ea66660a441ef6d4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7184 Md5: dbf74d25f8acb3f6b249386ce5e55871 Sha1: 984498975a9424217a161f11ea66660a441ef6d4 Sha256: bf666960a2f1d4d8c96a0b3c21bdee73a345a24916d96197d4566f925ecefedd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8553 Md5: e6f97e6b64100081e8bed56216564854$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8553 x-amzn-requestid: af8b913f-5eac-4e16-9afa-42b22b9fd6ef x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UaDuIEpAIAMFv8g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62ba4cc0-29637a607cd815ef0080c235;Sampled=0 x-amzn-remapped-date: Tue, 28 Jun 2022 00:35:12 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: cJeOg5uZyKlrsa7XqpngVUr13fqslxDpFmXr-4pTfqqB46xREdv68Q== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 09:54:26 GMT age: 83189 etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8553 Md5: e6f97e6b64100081e8bed56216564854 Sha1: 303f4efaa9b98e39a935fc6514d3731d40d2977c Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c