| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7af19a5145a4ee99bdf18831bad04bfd 7bdd2a4785b999ef54a2644211d2b2b7190fb8e1 3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5181
Expires: Fri, 31 Mar 2023 12:16:46 GMT
Date: Fri, 31 Mar 2023 10:50:25 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb93010cbf31ba3ec785b4088e5d0f529 c0f1ab8a2aae3c445a8f24959a4eea433a345caf 2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20050
Expires: Fri, 31 Mar 2023 16:24:35 GMT
Date: Fri, 31 Mar 2023 10:50:25 GMT
Connection: keep-alive
|
|
| bccsagency.org/09292/boatest/login.php |  151.101.130.159 | 301 Moved Permanently | 162 B |
URL HTTP/1.1bccsagency.org/09292/boatest/login.php IP151.101.130.159:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
| Analyzer | Verdict | Alert |
|---|
| openphish | Generic/Spear Phishing | | | fortinet | Phishing | |
GET /09292/boatest/login.php HTTP/1.1
Host: bccsagency.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Content-Length: 162
Content-Type: text/html
Location: https://bccsagency.org/09292/boatest/login.php
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: h9mwf6ubi0
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Fri, 31 Mar 2023 10:50:25 GMT
X-Served-By: cache-bma1655-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1680259825.028502,VS0,VE131
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash76218c893040d958ae1c4231cdd2133c 6a7b336dee91d4aec26ace0a5883ecdfac52e68f d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14159
Expires: Fri, 31 Mar 2023 14:46:24 GMT
Date: Fri, 31 Mar 2023 10:50:25 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Retry-After, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 10:16:11 GMT
content-type: application/json
age: 2054
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Htq00t5v81GrG9FWYh/XMge0WeeBOyL6usvaUMy1clMizR3DwZCqas9m25jycwL2HE08/Z93elmhyjxdlm611Q==
x-amz-request-id: HDHBF5MFBFCFG3BG
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 10:12:08 GMT
age: 2297
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 10:50:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 10:14:39 GMT
age: 2146
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash782ca4845ea5e0ec981e33231b1e61cb 032116b75e124c57877524e9e4f523b6d7c65820 94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11468
Expires: Fri, 31 Mar 2023 14:01:33 GMT
Date: Fri, 31 Mar 2023 10:50:25 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 34.210.143.205 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.210.143.205:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: I/61I9k6hWI58ByejzhLlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1ZDpjRDKWxEB74L+oXE6EgVnxe4=
|
|
| bccsagency.org/09292/boatest/login.php | 151.101.130.159 | 302 Found | 114 B |
URL HTTP/2bccsagency.org/09292/boatest/login.php IP151.101.130.159:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Hash25f4889425b3c0b7b14fe7149c2575ad 5d096315fa8eba5aaf6d870e034a455914386293 77cf3a26f2ad6fd43cfa593d8d5dcf0c224b25a624e0e2f63e0947d02edf650b
| Analyzer | Verdict | Alert |
|---|
| openphish | Generic/Spear Phishing | | | fortinet | Phishing | |
GET /09292/boatest/login.php HTTP/1.1
Host: bccsagency.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://s.id/kY66E
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: h9mwf6ubi0
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Fri, 31 Mar 2023 10:50:26 GMT
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680259825.269896,VS0,VE1039
vary: Authorization
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 114
X-Firefox-Spdy: h2
|
|
| s.id/kY66E |  188.114.96.1 | 302 Found | 0 B |
IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 31 Mar 2023 10:50:26 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6WKl%2BQT2L%2B1T2zyFYfZYVsXqkk%2F4KBBv5d%2Bd6tJUn556zuMktEfRHBUacQlxQi%2FNCgFj0ylRcPx%2BxGIElF7jVpaKYn88AcV7Aglun1xGl7B8YAUCKNyC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b08080ad9d8b4f7-OSL
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6586
Expires: Fri, 31 Mar 2023 12:40:13 GMT
Date: Fri, 31 Mar 2023 10:50:27 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6586
Expires: Fri, 31 Mar 2023 12:40:13 GMT
Date: Fri, 31 Mar 2023 10:50:27 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6586
Expires: Fri, 31 Mar 2023 12:40:13 GMT
Date: Fri, 31 Mar 2023 10:50:27 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6586
Expires: Fri, 31 Mar 2023 12:40:13 GMT
Date: Fri, 31 Mar 2023 10:50:27 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68adff46-2278-4660-8b41-0719f5eb19f2.jpeg | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68adff46-2278-4660-8b41-0719f5eb19f2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaa4bea27e3e3b648176b5d87c919422d 1aa537444512644c9e5ddbb732cb310e5d3f3a26 28706ef531eabf37199ce8160884b6abe9220809e6217000883a0d9f0a23e93d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68adff46-2278-4660-8b41-0719f5eb19f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5108
x-amzn-requestid: 8d187151-2480-477a-82d9-fa5c96dd61db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA6THX9IAMFhrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424aea7-5e5a11746610faac7bb883bb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RC7BCyW_QitX-xaWwVn_7qcPD_Qu2dIwr2l_rD3HvHT_812xzmU8vw==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:27:36 GMT
age: 15771
etag: "1aa537444512644c9e5ddbb732cb310e5d3f3a26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashda174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 11:37:45 GMT
age: 83562
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8a2b8f737604b7983cf686c82599dc73 aa63be93c4cd641f09ce0d5144ef60aab21caed1 78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L6tgzFrj9t69Rnfd9bziAPiROAX0tvcj9Kcg8sXkto8qRFeKqiwkpg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:17:06 GMT
age: 45201
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg | 34.120.237.76 | 200 OK | 5.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8600e41520408df4865627256a0a0736 dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef 9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: WnrfQr57EWYnXt1xJt9tr5XCuM3gPYULlDdEVpv2Q2kz7MDIPxSPKA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 46957
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash39bdd16276747b1445a79e674a2a3347 d0676f63738484298a78b7abf7e4934c3d256065 67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 46957
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash45a4bac8a91b725def9099fd6f720285 134ace682a567c7e385817c8f8af0d49acfde847 3d60e54132cbbba19ce8ad4bdf79a4b3b6ae74573f45bf4f080a283aa250b53c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8358
x-amzn-requestid: 8069495f-4ea5-4975-8369-fc4db9199774
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllH2fIAMFdlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-2e5418a132076d0569e30de6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: z4Jd4oIn19s5lhDNYlrrh6RlxDz7mxCg1KJKUyFfJfqZsymvADn88g==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:02:05 GMT
age: 46102
etag: "134ace682a567c7e385817c8f8af0d49acfde847"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js | 188.114.96.1 | 200 OK | 103 kB |
URL HTTP/2home.s.id/_next/static/chunks/pages/_app-3d19a20011db3907.js IP188.114.96.1:0
File typeASCII text, with very long lines (65536), with no line terminators Size103 kB (102708 bytes) Hashe15e8bbdda37cd801ee69fb075a8ccd1 c3123583a39917b68a5ddeae4a22de8c9afe67e9 925015911244bfe02f7daec46b9c7937a9f1aed8f0b5d02333ee35ddc9ea7990
GET /_next/static/chunks/pages/_app-3d19a20011db3907.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"53e0c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sDw2ltDfLCVUdgKJjG%2BH7EfrCQuXv1s63jnFLgu%2B0WiikikWOqteDVw4mqsxSoyhUiaXEy62Adt4%2BsPc4ggqe2XO7GH77nJYApu2LurNryHTVTA1aevvFWH3CZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813cfc3b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d |  104.18.72.113 | 200 OK | 6.7 kB |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d IP104.18.72.113:0
File typeASCII text, with very long lines (23376), with no line terminators Hash567e7cb7f92a88f955e764a1a6d6dd8d d31dfdf42b69075d5d4a47742fd8580ce5c0af0d 49bd53398ceec3b635ec9d3d51b3dbc8d4fab92e1e5a9f896586705b8f2b3020
GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 52
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=momO2NliwYZzya0GdOi7utqeBgmwc9%2B8DBqDCy0VnOU7hKijCWwW%2BEjur8AvwI58jxIDh1t8XhycFIgggnj%2BoZ%2Fjnz5RzF1yJ5gf1oTnz2DMHYJa8OGpuNx0MCDBmUnqo%2BgLrD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0808140db80b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/main-bba3f19427abc986.js | 188.114.96.1 | 200 OK | 29 kB |
URL HTTP/2home.s.id/_next/static/chunks/main-bba3f19427abc986.js IP188.114.96.1:0
File typeASCII text, with very long lines (65536), with no line terminators Hashe7a111edcfc3832a7ecfcee7e50c3aad 54762eb7ab398b268b01325b5449b96a6e32d19f b678fbdeeeb10bac777685568d5bde8bbdce7868960167fb6a936ff9a75846c8
GET /_next/static/chunks/main-bba3f19427abc986.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"19458-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316171
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tjUUxFhZ1QyRnhYLFSK%2FCfzoxiK3enH06ukQ6ccbQN6bBgdEGHApHQYsLAdSyYoeUUfCXIlMvQc1ntRRWtCL6Ad40TEfdgdpKaf%2Bm9i9Ki%2FCWkaP3d6i08%2BU%2BPo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813cfafb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js | 188.114.96.1 | 200 OK | 2.1 kB |
URL HTTP/2home.s.id/_next/static/chunks/pages/forbidden-9c7287b02a773507.js IP188.114.96.1:0
File typeASCII text, with very long lines (3689), with no line terminators Hashbc621b44ff85f63e7452daf24f6ec9c1 c54c2a434c5f754205a112e43e347505e3344cba ba2594a0b71d317e217f09e9353d64130d4e755d1e5a200b2b61679f5105651a
GET /_next/static/chunks/pages/forbidden-9c7287b02a773507.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"e69-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 647990
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NeLk%2FvUxTZJo71BlfFMsiQ1j%2BwgXfwy8974MtUMYQh9%2BJnfn05%2FcmWBKC2%2B1VDnfgf1Joz1R1OcjYf9Ig6n8N3fOUUjHw%2BB24ktOR7rlOu6uBSayQ%2FrkmR2%2B6KY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813dfc8b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js | 188.114.96.1 | 200 OK | 2.9 kB |
URL HTTP/2home.s.id/_next/static/chunks/webpack-7410c5be2455f264.js IP188.114.96.1:0
File typeASCII text, with very long lines (5443), with no line terminators Hash564c83111f8b7878139c4dcd2f08324c 01e7f75d84a67d11298e87e2a4d23d82bf44a619 19dbac62a615f420c375efe067708ca724509350cc946e40461f1972aca68597
GET /_next/static/chunks/webpack-7410c5be2455f264.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1543-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qXznrI2jitCPJzTzwqo7kqgB0C1uPNjpNhSVETpGU9W2g%2F2jYfaOZmlb5XTzj7%2Fyz5nmL0z52f2vWLy%2BWKZZGWELaSkci1nv0Ejcdgvt%2BpaJcx%2BuSvW7TKfUeZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813cfa5b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-10823601447 | 142.250.74.168 | 200 OK | 69 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=AW-10823601447 IP142.250.74.168:0
File typeASCII text, with very long lines (8284) Hash7e4955753c96a898f964884952a9094a 69b27067a92e696fcd5179002ebcd44c4c358bb6 4ee65ac78414097ca27942daebeebe6529da20e502d7a25624d405fda72165a6
GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 10:50:27 GMT
expires: Fri, 31 Mar 2023 10:50:27 GMT
cache-control: private, max-age=900
last-modified: Fri, 31 Mar 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69324
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 | 142.250.74.168 | 200 OK | 79 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 IP142.250.74.168:0
File typeASCII text, with very long lines (19390) Hash1b407f163aa53a3f678fbcb0aaecef40 4ae2536c618ad4e51606672b5a009fced50374c8 c4e3a396fac37dd0f2e0fda43bb331ceef2f4f4d4edf2749a5944ec11e72109c
GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 10:50:27 GMT
expires: Fri, 31 Mar 2023 10:50:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78657
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 | 142.250.74.168 | 200 OK | 79 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7 IP142.250.74.168:0
File typeASCII text, with very long lines (21772) Hash09149ecd55e527fd5ff4e9d1e75821de 5329467e3c179d09a1aab78f4a7789083b0c21b0 ad2d085e78632aa0de33be687bfc2f23e8a28b21a5bd1381e221d1db04507fec
GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 10:50:27 GMT
expires: Fri, 31 Mar 2023 10:50:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79182
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash66d3c8a2dc7656b819dfe99dd74ef41b 9ac102973657c13264a7a17ad2e3ffc6f4d1f570 23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | | | 471 B |
IP:0
Hashbf29feb5d124115ffaf0b00e89ab0309 693d2ad3694d3171af6545ef4758855127b2e669 40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashbf29feb5d124115ffaf0b00e89ab0309 693d2ad3694d3171af6545ef4758855127b2e669 40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.35 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:16 GMT
expires: Wed, 27 Mar 2024 10:31:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 260352
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashbf29feb5d124115ffaf0b00e89ab0309 693d2ad3694d3171af6545ef4758855127b2e669 40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js | 188.114.96.1 | 200 OK | 79 kB |
URL HTTP/2home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js IP188.114.96.1:0
File typeASCII text, with no line terminators Hash8fee7b388d5d76f0206c303f220cb963 32d0c4eb39f96ac07a9c6033282a145534170c77 2b5d9a32c16784d8cbc3e2320f81fa2575bde918c158028bc4055efc5cfa1dec
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_middlewareManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5c-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2cCPludggrZiprHNe97loOEfw47tPEDl2Vdo6WLhS8BwwgIrGbyZLSVNP0DRpQdkxxcHvEAXPpZySu0DLlkD1V28BUGgKNlTZo4cKZuCGWm8KQWbTGThRSfLlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813dfdeb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd3f7da6c5369e6ae567fd3bb52260f38 7ee3052765e1f06206bd5b7bb109d8a7be5dffca 9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14990
Expires: Fri, 31 Mar 2023 15:00:18 GMT
Date: Fri, 31 Mar 2023 10:50:28 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd3f7da6c5369e6ae567fd3bb52260f38 7ee3052765e1f06206bd5b7bb109d8a7be5dffca 9ead825db977e570cf3becebe7e18149863c74716d7cb65e8a85beea5ce7be0c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EAD825DB977E570CF3BECEBE7E18149863C74716D7CB65E8A85BEEA5CE7BE0C"
Last-Modified: Wed, 29 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Fri, 31 Mar 2023 15:01:54 GMT
Date: Fri, 31 Mar 2023 10:50:28 GMT
Connection: keep-alive
|
|
| api.s.id/api/redirect |  45.126.58.78 | 204 No Content | 0 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:28 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| api.s.id/api/user/me | 45.126.58.78 | 204 No Content | 0 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:28 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| api.s.id/api/redirect | 45.126.58.78 | 200 OK | 469 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with very long lines (469), with no line terminators Hasha986c42aab43f215b2cff47a241682ad 6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b 81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149
GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680259828,jzr3yc,9090784d16b6b76c02db6358fe9384eb
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/json
content-length: 469
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 10:05:11 GMT
expires: Fri, 31 Mar 2023 12:05:11 GMT
cache-control: public, max-age=7200
age: 2717
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe8df31f5ac474adbf58cfa599304bcae c3001e355800deb24f04a565cc1ccb1131c1eadc da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| home.s.id/images/sid-logo-new-light.svg | 188.114.96.1 | 200 OK | 2.3 kB |
URL HTTP/2home.s.id/images/sid-logo-new-light.svg IP188.114.96.1:0
File typeSVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text Hashb519eeddcd40bdba915624fa1317ae0c b790919fa5a394524d11b7772eaf988952128990 4bb02b4eb9e2f0150df46d89db749eba038516d1aa4cf63bd23670502f71acf9
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"f40-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WcYE2D2%2FQzpImi9ApAJf1%2B9YQA3jkeG%2BPSnT3SOqR3r4e%2FX0W1J%2FV7Rd4ThNBNufw%2FuSnwXtFe64zy9H8qwLh%2BpBETLAprglqT5gSnQPU0gU1MSaov0UMFU%2Fvco%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813e815b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| api.s.id/api/user/me | 45.126.58.78 | 401 Unauthorized | 58 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with no line terminators Hashdc6337924fcba32afbaef2dc7a71ffcf 1bb7b761c6bf8bc117eddd9525d61844fa676190 4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b
GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1680259828,zb4qyc,a97720e3b5ed960625dce57e6a599cc6
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 401 Unauthorized
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680259827831&cv=11&fst=1680259827831&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=722853913.1680259828&data=event%3Dgtag.config&rfmt=3&fmt=4 | 142.250.74.130 | 200 OK | 1.2 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1680259827831&cv=11&fst=1680259827831&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=722853913.1680259828&data=event%3Dgtag.config&rfmt=3&fmt=4 IP142.250.74.130:0
File typeASCII text, with very long lines (2529), with no line terminators Hashbe01c972b7b27513129410318193e2e5 01cd48877804bc1f50c00b46b9d34f8ead9783aa e8878addc04e2d4c25e6fc72f92df83c090b3655793b732b9af0f8953c358eab
GET /pagead/viewthroughconversion/10823601447/?random=1680259827831&cv=11&fst=1680259827831&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&hn=www.googleadservices.com&frm=0&tiba=Forbidden%20-%20S.id&auid=722853913.1680259828&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1195
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 31-Mar-2023 11:05:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j99&a=74493668&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1830720745&gjid=981810767&cid=475490525.1680259828&tid=UA-225238330-2&_gid=1831221616.1680259829&_r=1>m=457e33t0&jsscut=1&z=661719976 | 142.250.74.110 | 200 OK | 1 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j99&a=74493668&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1830720745&gjid=981810767&cid=475490525.1680259828&tid=UA-225238330-2&_gid=1831221616.1680259829&_r=1>m=457e33t0&jsscut=1&z=661719976 IP142.250.74.110:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j99&a=74493668&t=pageview&_s=1&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&ul=en-us&de=UTF-8&dt=Forbidden%20-%20S.id&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YADAAUABAAAAACAAI~&jid=1830720745&gjid=981810767&cid=475490525.1680259828&tid=UA-225238330-2&_gid=1831221616.1680259829&_r=1>m=457e33t0&jsscut=1&z=661719976 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1&z=2012032775 | 216.58.207.227 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1&z=2012032775 IP216.58.207.227:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1&z=2012032775 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=1&ipr=y | 216.58.207.227 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=1&ipr=y IP216.58.207.227:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 10:50:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe8df31f5ac474adbf58cfa599304bcae c3001e355800deb24f04a565cc1ccb1131c1eadc da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc7445f8f9dbe44a0457ed584305727c4 0582edfdc9fe490bfeb72250c218af3cff3f6cab 8fa39260f96786df1a76e9896a1a9614fd3ab4aadb1a2f98b909c55caeb9eae1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js | 188.114.96.1 | 200 OK | 63 B |
URL HTTP/2home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js IP188.114.96.1:0
File typeASCII text, with no line terminators Hashcdf5ebc6f1ee5b21d091bdf1c9a1940d 7d74f1654889b68308db70d696f6793787bf5e19 b6ccb2f943602245483d29f8b3e699f11122fba9b6d26d6d8355c008b36ad294
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_ssgManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 07:00:27 GMT
etag: W/"5b-1873677b2f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9iQHgiwtkRPJgEx9%2FWcVQoTz83JR7NuIWtO7jHiDL%2BglS%2B9B4F6qxCX8FKYn76KS%2FvSBr99Kari%2B6SaZ8ZQ22OB3CO2Xbk0Hr27aQeKoQ27vpu%2B209FFW%2BxvLes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813dfd8b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashee15ff6931559991c58a51cbecf4c8c5 073267ce58de3587f3e1b80914852f6acd56921f 2c90a44d2191b0276c9e0d0571c263a48f2b74cb287f683517c08449bd815ea5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=74493668&_gaz=1&cid=475490525.1680259828&ul=en-us&sr=1280x1024&_s=1&sid=1680259828&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=74493668&_gaz=1&cid=475490525.1680259828&ul=en-us&sr=1280x1024&_s=1&sid=1680259828&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7>m=45je33t0&_p=74493668&_gaz=1&cid=475490525.1680259828&ul=en-us&sr=1280x1024&_s=1&sid=1680259828&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 10:50:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7ea999a491ab4009f8658e78af2bfb94 f0cbd3d48c9081acfdeb53adf55135dba5bbe08b d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=0&ipr=y | 142.250.74.164 | 200 OK | 42 B |
URL HTTP/2www.google.com/pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=0&ipr=y IP142.250.74.164:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1680259827831&cv=11&fst=1680256800000&bg=ffffff&guid=ON&async=1>m=45be33t0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhome.s.id%2Fforbidden&frm=0&tiba=Forbidden%20-%20S.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=385076270&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 10:50:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1 | 64.233.161.157 | 204 No Content | 0 B |
URL HTTP/2stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1 IP64.233.161.157:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7&cid=475490525.1680259828>m=45je33t0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Fri, 31 Mar 2023 10:50:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| home.s.id/cdn-cgi/rum? | 188.114.96.1 | 204 No Content | 0 B |
IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1084
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259828.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259828.60.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:29 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b08081bdbd5b4f7-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd9bccde084c491a04e52752f2af1e16d 5a7a761608a0d79d383e104a0455f76bb0d2248e aed5aade370f65d015700850f0a3a80c5f47066e82d200f5cf1d2d44657388dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7ea999a491ab4009f8658e78af2bfb94 f0cbd3d48c9081acfdeb53adf55135dba5bbe08b d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| sdotid.zendesk.com/embeddable_blip?type=pageView&data=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 | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable_blip?type=pageView&data=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 IP104.16.51.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embeddable_blip?type=pageView&data=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 HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 7b08081cd96db50b-NRT
last-modified: Fri, 31 Mar 2023 10:50:29 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=703OW0TnQJYqANEfF7iY4XxjFRYfJ1m2frR%2Fpdq6hSv2kbl00na614o0En2xoNk85Dm1bE5MLrRMrSDVPpYNHz26qtX2nD642tyhfpLfCzbPD6NjUAo3pn%2BdxmusL9l1IeY%2BNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=afa607b47c0805171f56e8823bf1110608c0917a-1680259829; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b08081cd96db50b-OSL
X-Firefox-Spdy: h2
|
|
| home.s.id/cdn-cgi/rum? | 188.114.96.1 | 204 No Content | 0 B |
IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 490
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:30 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b0808277ca4b4f7-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js | 172.67.223.143 | 200 OK | 48 kB |
URL HTTP/2blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js IP172.67.223.143:0
File typeASCII text, with no line terminators Hash9240f3712019c55401d4d9c05859e530 e794095cac525591175ac2bcb2c7ac33c6e812d4 04b1e4a9495bd8f7161ad867bc025b4351acc8005575e3d99453f2c56d327827
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4d-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XL9iiGyzqjH4hGbbFoHVdyHOAqF%2FkYXkzwHse3k1giRW8EQLNMxF8dTOce7KFDiqeAo2ZZZl%2FmZCqZGbDXkwZOOhP%2F59GquLI2IfvpVHs9Z6JKonN3Z8cVP9jUI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b90a0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/css/a784000e88d6fd7c.css | 172.67.223.143 | 200 OK | 95 kB |
URL HTTP/2blog.s.id/_next/static/css/a784000e88d6fd7c.css IP172.67.223.143:0
File typeASCII text, with very long lines (64934) Hash3f8149979e4c3399597df32fe12d22c3 c8da1772c863e751972f6b81ef636e96dbbf019d 45a477d5fff4223b1be60f7bb803b3484ab96a4b91141b48a7acf9e7a885cd48
GET /_next/static/css/a784000e88d6fd7c.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:30 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"18c4a-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oekCgvNH%2FzEcy4eM5kilJP9gebcoSX7OKaJyrBUDGWuinKqmqB6juxK%2FgS9i%2BsJ9PBnte4TlK8HR5%2BF0w6SUBmv564fxzATuYxl929K7mEulOV7XYbU7Gdjv72g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8e50b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js | 172.67.223.143 | 200 OK | 135 kB |
URL HTTP/2blog.s.id/_next/static/chunks/pages/_app-d23866c4997f9a6f.js IP172.67.223.143:0
File typeASCII text, with very long lines (65536), with no line terminators Size135 kB (135376 bytes) Hash5d4efc7e0df3134061c608d1f393ad2e 8bc3ace384977c2731cbfc9debf0636e4de8df68 4a666b17441d81c3cfaea67e4bec4ec28e6562c233b4f4b61189964f4ee6ed9d
GET /_next/static/chunks/pages/_app-d23866c4997f9a6f.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"2bf69-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hd%2BRwTi9LoEqKesryH3e5skYXmXLf1%2FdbGy1QIjYsNxV3yvhwQeIJUhmty7iMV6c8uBD93XAxK01LfSxzenuzXQvZMXBmmwjgmehOcQIJ0estyrEsKWIq6MiLyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8ed0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js | 172.67.223.143 | 200 OK | 42 kB |
URL HTTP/2blog.s.id/_next/static/chunks/framework-1d78b5852a861806.js IP172.67.223.143:0
File typeASCII text, with very long lines (65536), with no line terminators Hash4f033045b89ab2cb9f4c3f2cd0fabedb d8dc5ebf0a6c9732c9f658e6284a29b55964677e 4b4da9d8ca8594f866d2b760b686d891f7f9beec60924f493b0dc61fa0ffec1d
GET /_next/static/chunks/framework-1d78b5852a861806.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1fbbe-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qOR9loeetxKGbRciPF2WLLjc7FEpi35VuuqfrIpGmGK3RWfNAXf1mk4wpB9p4wHV7sDxmZqKdPm%2BrX1n7dOe%2BSa1u4ZjFC73JFtdBmgFMuOLHTFy%2B6CHDfueME0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8e90b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js | 104.18.72.113 | 200 OK | 52 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js IP104.18.72.113:0
File typeUnicode text, UTF-8 text, with very long lines (65535), with no line terminators Hash0045caa6871e412cdc3ec3ca84970ed4 907aeeea236b740e1099567165d52257a4037117 f388449f57dcd6ec6a94847eceb9b53151fb5400bcda61190860554d8b6b1e57
GET /web_widget/latest/web-widget-framework-17cde1f5c77e14173e98.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gNSA5Gt4/K0ICYGAzIy9UajPykspKEpvgbLnLyBqWhLEmVM/1g9YG17rW5MbJycWvulAOIOZzfs2bUov//fjlw==
x-amz-request-id: YJT0A6KT9BJN81GW
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:52:42 GMT
etag: W/"9a22523a174d61325929e2f2b3281227"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:52:41 GMT
x-amz-version-id: sF00I9ZP2P.ZPdpa8jMGTZwYs_mUbya7
cf-cache-status: HIT
age: 215632
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7cv%2BWAJXTcK2tHRd1MvXvmSBnhUlgdfWdUYw8hDYFkwLLB%2FX9mATbsmdPYPdfla9ZIu%2FRq%2B5Rg70n1D4Z2IzgbFkvdVVmRPFM7WR7UjVdXxEHh0rhrOa%2BGwRU5roDpX04vPta4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b0808184b2b0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f | 104.18.72.113 | 200 OK | 6.2 kB |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP104.18.72.113:0
File typeASCII text, with very long lines (23376), with no line terminators Hash7828a8e1e8145dc6a56cd7c2374a853d 30dd04b8ebe360d04177d302d98bbd88db7c4e96 c8ef84b2666ef51ae09c29261e6bca7927f3141211e3d4b0b2259fd86ffdd728
GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript
x-amz-id-2: vkl1julFjVVCeNmySgpr0CNRnNfJywI5yFKEAhmXoe/uWDYwbA4IhGFy+L8LmCWyQKx50gi/QJef+yScKd3Lnw==
x-amz-request-id: YZEQVQ41XEPXQ8NK
x-amz-replication-status: PENDING
last-modified: Fri, 17 Mar 2023 01:24:00 GMT
etag: W/"35755063f184195a50a9c07a2c71693a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: PBHdtxERTX7HUmm2o8dmki0ZTZF0krHp
cf-cache-status: HIT
age: 56
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2HiVa29HEkoWkBohVjdjGf5AV7%2Fkj171rPGSpe5jE5uuI%2FykRlHM4yT2EcDuY8Cs1m3jyss4V2abPPxXXV0pDLhOQGB2kcB5K2kNiETtvnnUYptjdfaRfMl%2BoR%2FA%2FAilouC8x%2B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08082a0d5f0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545 | 142.250.74.34 | 200 OK | 49 kB |
URL HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545 IP142.250.74.34:0
Hash5b20f625eb2064c06cfad460b1ec5fe9 29981339183729a049e74ed8e160469c25630bc9 060a871738dcf06ad8d533b5484878069c0de97a1e144f9daa1c62e8d01bceac
GET /pagead/js/adsbygoogle.js?client=ca-pub-2742216534640545 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 31 Mar 2023 10:50:31 GMT
expires: Fri, 31 Mar 2023 10:50:31 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8469208820250546232
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48347
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js | 172.67.223.143 | 200 OK | 3.0 kB |
URL HTTP/2blog.s.id/_next/static/chunks/30846afe-cfd475acf1f13fd6.js IP172.67.223.143:0
File typeASCII text, with very long lines (2565), with no line terminators Hashfe4be1c843b8654904bd994733676458 ec1a6389053bfe2955838da9208461e19b1e1cc5 8de8e855a618838b65424e24f2bb5b6dba8fdb933b675b983df16d08479bf618
GET /_next/static/chunks/30846afe-cfd475acf1f13fd6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"a05-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2XrXOf6PT1HI1QSmtRZjfnaFBYoSjqkgyithGlmZ%2FxmqT%2BZNlkxa03MHf0l4AErdvHapy%2BW3gTwTEKzlO2D3jD06hAAnSsuinyb0oMKzGE6Pj4eSlK6aqd2xyjc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8ef0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/images/adg-red-ring.svg | 172.67.223.143 | 200 OK | 2.7 kB |
URL HTTP/2blog.s.id/images/adg-red-ring.svg IP172.67.223.143:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6438), with no line terminators Hash2d76eb7993dcc418bfcb4efd093446e1 882fb2cc9c24d0e68d1c45ac31593230951c58bd 7677dd7abeb0cfd4319d27b34dda06c47c5eac9daadee1ef67aa119ad40fafba
GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zZW7gM7YsIAqoGkO74SWhF%2Bxqdvui1gSWiWl7ByjnvavK7xmT7dERz3slPUyZ2KMiTMSkguHZo7Xt3U5wWiX6UCVlvCaOsaeLmkc6BnNKAvMSkWYnVEhrzywMZw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827c9100b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash2f67dc9a5c95eca1b4911ccdfa024557 1c5fae325ebbec9280401bd05f68964e2d631afb efe6c92a3a27c6e0566b3889c0e2b56f284afaf91d106660cfe63bee6420d99a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 10:50:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| blog.s.id/_next/static/css/db96805030821792.css | 172.67.223.143 | 200 OK | 1.2 kB |
URL HTTP/2blog.s.id/_next/static/css/db96805030821792.css IP172.67.223.143:0
File typeASCII text, with very long lines (3997), with no line terminators Hash3fa6e6dd5347e5020816cde1d1dcf75c f070ee659f138639de900a887d5c4bda55f82fad 791ac91310eedafe68d5f92066ee1b3728802556c293261a678f2c9f43cb1384
GET /_next/static/css/db96805030821792.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:30 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"f9d-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DaZE4Yk3D9TbcqQXMUNQjulQSKLyxnG0imI9H24YXhHBFkmQ9SdNBdOKu%2FmVwOkSeyeDouZMYAZzOfj8Jq%2FBA65UbU7AgNs0DbATrGBAf5DsWZ5AvEfYd2cXCeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8e70b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| adservice.google.no/adsid/integrator.js?domain=blog.s.id | 142.250.74.34 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=blog.s.id IP142.250.74.34:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 10:50:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| adservice.google.com/adsid/integrator.js?domain=blog.s.id | 142.250.74.98 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=blog.s.id IP142.250.74.98:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 10:50:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/cdn-cgi/rum? | 172.67.223.143 | 204 No Content | 0 B |
IP172.67.223.143:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1242
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.1.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680259831.1.0.1680259831.60.0.0; _ga_GJLS9JMJCK=GS1.1.1680259831.1.0.1680259831.0.0.0; __gads=ID=35d943501731a636-221f5de4f1de0079:T=1680259832:RT=1680259832:S=ALNI_MaDqX-HwDn2kyN3L7Xv-nTKWrVdMg; __gpi=UID=00000bcef5992691:T=1680259832:RT=1680259832:S=ALNI_MaMxkpxH2UUG1g10nX3IlYQe9BDlg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:32 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b080830fac90b06-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| shortener.zendesk.com/embeddable/config | 162.159.138.6 | 404 Not Found | 490 B |
URL HTTP/2shortener.zendesk.com/embeddable/config IP162.159.138.6:0
File typeASCII text, with no line terminators Hashab91033357807a83188b3ca3795dd36e 6475ceca0d449e5e1e64373168d1f9220d80ae27 2291c517bc06e6a5edf8862dafd920e32bcdfe4a971557cec95bb1a196923380
GET /embeddable/config HTTP/1.1
Host: shortener.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Origin: https://blog.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Fri, 31 Mar 2023 10:50:32 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
vary: Accept, Origin, Accept-Encoding
strict-transport-security: max-age=0;
cache-control: public, max-age=3600
x-zendesk-origin-server: embeddable-app-server-769765b746-6bcg4
x-request-id: 7b08082ddd280b4d-ARN
x-runtime: 0.005483
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0CmQgLhTX93DpeGoF6AkLNB5S81Dt3rAZ6TSusn2huFT%2Fu4KSrmkYj7YpVOemisVD32fQlaMOHVq1cer95ANdPbvZ87GTqeKl9W9ycJbNKmEXkatO9FDV9RDl%2BMcGfVTSY5%2F2ZasQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=iI4C_Xgd1gI43A5Atn_R.DHxIGYijym3r5N5tHWgeo4-1680259832-0-AQEQN3z59yHiC/oMDc2OoFHJ5opVShID0ckvci2daoJa8TWTqyYQWiEh5YSaMJhS75Nrqru99OMZ2dpL9Cl2BRHRjushjMGfNNzhhwLmOJTq; path=/; expires=Fri, 31-Mar-23 11:20:32 GMT; domain=.zendesk.com; HttpOnly; Secure; SameSite=None
__cfruid=4efce8a2609e369cfa2d49d0b44faf948266f17b-1680259832; path=/; domain=.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b08082ddd280b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/sodar/sodar2.js | 142.250.74.161 | 200 OK | 6.4 kB |
URL HTTP/2tpc.googlesyndication.com/sodar/sodar2.js IP142.250.74.161:0
File typeASCII text, with very long lines (1321) Hashac906814ed812c4ecdbb624a3bd2f6c3 8e4547eaffaa66a1ee61b36028dbcd7091d0e7de 8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 31 Mar 2023 10:50:32 GMT
expires: Fri, 31 Mar 2023 10:50:32 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/sodar/sodar2/225/runner.html | 142.250.74.161 | 200 OK | 5.0 kB |
URL HTTP/2tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP142.250.74.161:0
File typeHTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020) Hashf530c16b248be97e10df228df6a41c24 ca3c3a38bbeef6906682b3e0b2a7be40c08b0925 f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 08:38:19 GMT
expires: Sat, 30 Mar 2024 08:38:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 7933
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| protagcdn.com/s/s.id/site.js | 104.26.6.142 | 200 OK | 242 kB |
URL HTTP/2protagcdn.com/s/s.id/site.js IP104.26.6.142:0
File typeUnicode text, UTF-8 text, with very long lines (65530), with no line terminators Size242 kB (241564 bytes) Hash9b60386a8bdfc215abc7940107364f61 6c9b1801e9ed9ce0e1a322ba525d030d9cb50691 4e328107cfb0abcf1371b4a0553440bc8b0c82c8c72e43cec6a57fdd8275ac6f
GET /s/s.id/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:32 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=396346
expires: Fri, 31 Mar 2023 11:20:32 GMT
last-modified: Tue, 28 Jun 2022 09:03:45 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JdDgrWnG1dMc4TA4x%2BOY5DdxdmP%2FHDyQRr9ICqVK50jwt3w0sXbnpa1YaL%2FWoroq1SUEw%2BCeB53FWsNE0PzOlvlztKmIao9KMQChTwMZ283LC3rXm%2F%2BWI%2BN%2BNyRpGJM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0808318c421c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| adservice.google.no/adsid/integrator.js?domain=blog.s.id | 142.250.74.34 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=blog.s.id IP142.250.74.34:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=blog.s.id HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 10:50:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js | 172.67.223.143 | 200 OK | 6.2 kB |
URL HTTP/2blog.s.id/_next/static/chunks/729-f86d647a9e9e1eed.js IP172.67.223.143:0
File typeHTML document, ASCII text, with very long lines (19443), with no line terminators Hash0d7f14a587a1c41be25172ab539cd251 8200a37b1610b13a2d1ef6a9172c0223386c0b57 8c5399442b260975aad4afb6cc35ff5ef2b71067f4d3087425fc5eb0c52a73d1
GET /_next/static/chunks/729-f86d647a9e9e1eed.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"4bf3-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yVDkQelG%2B%2Fsg4ub1ogZ6QZETH0V%2BPt8QXPI3Uts4TpDyd1gP5xxA03Bmrv4fWdqEbLh6%2BjIJRur2VDYi5PZ4R1I%2B%2BDYjMTLSUmP7DRJ4WJpHmnw9YhLzbdqInOQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b8f40b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js | 172.67.223.143 | 200 OK | 3.6 kB |
URL HTTP/2blog.s.id/_next/static/chunks/webpack-434fefa8f39d8fbc.js IP172.67.223.143:0
File typeASCII text, with very long lines (1755), with no line terminators Hash717ef43f7a6ddd886c7de4ba81f8ea79 4341259182751966d03602e663254dbc023d9711 686459b4b3696f2930d1749028665348343365da605e1c402918180131d771a1
GET /_next/static/chunks/webpack-434fefa8f39d8fbc.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:30 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"6db-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X8yWGyuybGA1r7x7oamw6AToK8csObMm2l8Og9QTxE%2BPVEnmc134ravSrop1T4JlRnfD2WDNPXW8OfLjRUVF4GA9bzi1UXAknkE8zu14JeI4dy1zlLC8XvPe1e8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8e80b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/cdn-cgi/rum? | 172.67.223.143 | 204 No Content | 0 B |
IP172.67.223.143:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 957
Origin: https://blog.s.id
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.1.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680259831.1.0.1680259833.58.0.0; _ga_GJLS9JMJCK=GS1.1.1680259831.1.0.1680259833.0.0.0; __gads=ID=35d943501731a636-221f5de4f1de0079:T=1680259832:RT=1680259832:S=ALNI_MaDqX-HwDn2kyN3L7Xv-nTKWrVdMg; __gpi=UID=00000bcef5992691:T=1680259832:RT=1680259832:S=ALNI_MaMxkpxH2UUG1g10nX3IlYQe9BDlg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 10:50:33 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7b080839bb830b06-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js IP172.67.223.143:0
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_middlewareManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:54 GMT
etag: W/"5c-187367647b0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPXfAxrZaK414ZxvndiOjLmtqlq4GlHsVsqlXG8rFv1sAZE%2BH7Ecp%2BqlpyZlpCQs6jDNDaPzuc3C0cK34Mh5FS4D1tDjbRGr%2B%2B%2BU0fMYknQ857hwKFZQk35jecw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b90b0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js IP172.67.223.143:0
GET /_next/static/chunks/pages/post/%5B...article%5D-9ffadfb59b43e923.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"46a4-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pcS9tEA6KSMbK6cGBqj16TStUQSAPdp6DLKXBJPuSvsOInOPuoqW3QrB3mIH2yFKkzjgZD4cEySSL8dpzP6vizzE%2FvRQrrnBMuKcW7w3wSxaGQKQa994yvDNASA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b8fb0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/769-cb3113076d7271e6.js IP172.67.223.143:0
GET /_next/static/chunks/769-cb3113076d7271e6.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"39455-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5xB1THFmkUufCHFTA2YKlpediW2pM14hcXkWO8rYfLGpBilMhE6r8u%2F6jCIdq2gY%2FmYyFTxM6Lr%2Brib6xPLMC9D5LU8sVGVvnLtgH3OubT4qxA%2B56BTEoTjsAVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b8f10b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/chunks/framework-8ff6c737ed443ded.js IP188.114.96.1:0
GET /_next/static/chunks/framework-8ff6c737ed443ded.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:10:43 GMT
etag: W/"1fbd0-186e41b5938"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316171
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Nk0GbU1NpMl2AZUbzHN5s1rqybZmDLM2or8kwiNM6azPrKE2%2BSHw7coM%2BujnVuQC9hHDkn97Y%2BmM4JDAqLjmATgmeKVujlEhX5a5D1bTS%2FrD8k1exbLEfjt1Rw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813cfa8b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/images/errors/403.svg | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2home.s.id/images/errors/403.svg IP188.114.96.1:0
GET /images/errors/403.svg HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Tue, 27 Dec 2022 03:47:41 GMT
etag: W/"1136-18551b16f48"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rQzZSxV0u8zNz5thrqPCZZ0q1O73zUtVqMoXXH59Fi1dE1PlG673fuSOuAOVRv%2B%2BSskPOET3TkXwXslsGvqvjqysL2cBIl1RRah2j8QPOfFL%2F5ioRlUovOzApSY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813eff4b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| sdotid.zendesk.com/embeddable/config | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable/config IP104.16.51.111:0
GET /embeddable/config HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-87c9df566-wqkw4
x-request-id: 7b080818fc9fb50b-NRT
x-runtime: 0.002194
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Fri, 31 Mar 2023 10:40:56 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WItQKMkmzRDRDyemWGNZZWN16UPVq6CQIoCG%2BIMLQwXv%2FiIzekaBZ9cf4JfpiXsUZzQpVtoesluPY5vCAzFqtdABQJBWCS%2F5XdJdmKrsRNIqf16nPyUWbGzM8ZwlHgLsgZIU0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=517af6efb51321d91739befc64655d8fac3fa39d-1680259828; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7b080818fc9fb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap IP142.250.74.74:0
GET /css2?family=Lily+Script+One&family=Playfair+Display:ital,wght@0,400;0,600;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 10:50:27 GMT
date: Fri, 31 Mar 2023 10:50:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-main-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-main-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 7CY4gNg1wuGSkXub6xt2qyCix3qJeiVH0Eqkb5tUk1phdDCcURWUJm4z0JJJ1wSAqvow3D8kOBY=
x-amz-request-id: 4ANA9WW213ARX0HB
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"2a7a35aeef02762e024fd5bff30dbdea"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: olOcPjsMbt2uLvftNUzm_18c3QOJ7v.2
cf-cache-status: HIT
age: 215622
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=88122StgDXWyBd30P9pHH5fOX1PitpvO2hY0dCyV4hVugFJ9X9PvzfxPLk46IPHzxfL4JXQmG9iPmRPP7Djev0Wi23fihqOQJWLqTjQLfkVY57m1JUmn3KwB8pCeFQTsLUis0xQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081aee340b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3487-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3487-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: TPPZjDfCmjIgXtYb5fSDMR7L65AWfnyeWlhCSR3APpCK8GeHCCV8dc9UUZnQKEyQo3at5Aoi280=
x-amz-request-id: VSW50D2CZ4WE372X
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"1ee21198c6e244c8d7bf3bacbc6faa0f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: oD6M2RuSVTp_VfDe7Mc22J.9_zrjrF1m
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BitBWYXCk%2FOosL0auRjiS7%2FWyI%2BBvG%2F8aHWHaC7x%2B8XrvR%2Bq7oddq8bjUF34S4aTGC4fxj%2FN0lL5x%2BAzAvOg1ZnB8GTEi9Hx71%2FSyKj8z66sLfyfPvcFrPB00yfuYfB460B0%2F44%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c8fd60b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js IP188.114.96.1:0
GET /_next/static/kkKwfCJ7VEcqU0ZO-iOFD/_buildManifest.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"23bd-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V1Idkv5ybG6xhGUGdP7Nu2FQgNOZKG%2F8R74u%2BTMiAtyP7OwWSpZohLhnGsgu5HzCRULLOTGBeb0LRs69qkW5iwdLBRPq9j5%2FjP%2FNeRPOsYxBa9KkFi5jnjFYbQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813dfceb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/forbidden | 188.114.96.1 | 200 OK | 0 B |
IP188.114.96.1:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /forbidden HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JH%2FNE%2FjlMqiek6zJT2IrKgMGyj8UNMeiKJB26jo3NEwqqZcF0VdO7hSQw0jYxlEHECNdYg%2BWmL58PzN5Roq%2BcfTi2SS1FPqAJ8NCHXG5zQ7YHwuNrpXYoL13eio%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b08080f3fe1b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3017-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3017-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Z0h1mXL70uJbSKY84MZUkL0ClBFu6c+nSOua+oCuPf20Sy5K231aBFbUuzVh55EY5fdYZgayqko=
x-amz-request-id: VSWBW6N0BZ8APV9P
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"40d0e2b632d1b990738af3991e0aecb1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ina_PZ0M7y.dw_MpptgwKDF7jcD.KIMt
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xs%2BLsTIoO6sYxkXUNbk6P%2Fw%2Bi%2BFIM4g1iVk7JZdduA48D8EKkvAp6jtLvKALMd7jRmVBzPtE8W81hwKQ6B1jWNOjY7dfJ8FFOwz87dMb5igfsPy4fwcwwzKxWBbnovGror3HkVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c8fd30b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3789-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-3789-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: DnRzO4kZ2aL67eSj6ZrzqbA2DVNEqw53EI4vbzriZWMXdTvk3wkEbNlUqPBX661//his2bZScKs=
x-amz-request-id: VSW6M9HMY3N8E7M0
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"6af06a25e69c609f5b52830fc5e8a62d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:24 GMT
x-amz-version-id: aES7C0WvHMN3603MIPwjba4g3yfMyK.E
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s6h0A25EB9fED3qcc8m23sXVs3SPAdaCCDa8WEXoxR4cL16WXAJOyFKXcTxXJS5aCT8TnXyNvsKdNETdTrQ9b4un%2BiC7qUSxwTJiC9T2bxJiKHtjdFsox8urjBYFPXptUkwDiTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c9fe90b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP172.67.223.143:0
GET /post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259828.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259828.60.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:30 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1ytgTuavYUyWPV%2BnVFgqkpMX59U0iilijJS700o8xGo4OgTsHUOb0wUVyK2jVUlLY0%2FUYlLRrwNWS4Beppg6EhcSbe18KlGN01nwBk0Fqin1UQly%2BsYi1Z5mBI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080822cb8b0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/images/sid-logo-new-light.svg | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/images/sid-logo-new-light.svg IP172.67.223.143:0
GET /images/sid-logo-new-light.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: image/svg+xml
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"f40-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nix5tsNMw1BV8iZQHeoUbY5xE9fcg3e9iQJlt%2FFX8ujgENY8fYxhqcn5E%2FxlAzl8FnisuegZP400aE5cn5IGosN3xo7qEBUVtjhdcVhLCnb13Qp8YNGAWJB69SY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827c90f0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: RYdXOOKy1HOtgMm47xOnJKo3dRijpuMMyO1zDXpqYGfBkoZqDJ87+CV25KodhDqSc/z8+nhbn44=
x-amz-request-id: PF8MPK7NAMWDBKEJ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:27 GMT
etag: W/"8340513af1527c72129bdfd58adc8b99"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:26 GMT
x-amz-version-id: t3AJIslMO6V4cKu0AIZXQursbNfEozLo
cf-cache-status: HIT
age: 215596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ATrarB3KgIux87CSv928voCGmIl9u7DrSrkWfnqcY%2BItMhxOrsEgs%2B2Vg%2FqGUQmDSrziFFkRadzuq1dxIYmTDEoNPVCpIVnBKR77In5pz0rRjbAdkrHJZNvMVorOd8Wd1xRio4Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c7fc00b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-6315-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-6315-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /cEGAu9qkZDaW3a0Y5R20PfFbxfSYD7jSNcAgIxGRTTC9uH5Z9u408u1+px6OjnWbbPVj03wtbA=
x-amz-request-id: VSWCSXJ998KTTHS2
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"f98270473d8b868d9890fe3be24a1a82"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: ZCYKjS6R0SvnZ2uXsM4yp4HqVDMCLho6
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vnyFrGXMnlZBihIKuR7giIoYV4NLzUAmqXt%2F1ibRNBX%2F78jg0JHog3c5A%2Bt0mPcNQavh2o6lM9OcTsXnWPHW9Ow86w%2BPCe2aMJcD8NSxp8edY2wS444CS7CPLxAbG05t%2FuHuWWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c8fda0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/favicon.ico | 188.114.96.1 | 200 OK | 0 B |
IP188.114.96.1:0
GET /favicon.ico HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259828.0.0.0; _ga=GA1.1.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259828.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Sun, 06 Feb 2022 05:21:36 GMT
etag: W/"171-17ecd7afb00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LeUCZU4X16kSuCW41A4NxHVcDAwXcKs3Ed22Y2KO00Dy%2BcctlwKRlYVaBlmwZzGdtPAjRM4aJWzfqiJlwihcZbShGqOEf5Mkp4kisy9albQhGFUt4PZaEhLNrsE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b08081a5a22b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d IP104.18.70.113:0
GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:28 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"5cdb822494faf4075722a9e5316d7499"
x-request-id: 7af38b537ad6069b-ARN, 7af38b537ad6069b-ARN
x-runtime: 0.003885
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tLu9CD0E%2FcC9BjYiqdxQC4O0n5Pg5Q0NuvOcGzSPKqMRG1pUnOiV5kYjmVpdVU3FU6NaB6PsgEZrsAgnOs18aGpSREgErRtPRPVjggh8YG1ux9o32tg0R8OOOngkIk38iFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b080814aafbb503-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-1707-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-1707-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: wlYGSfBfzT4930eGOYEEiDorzLzI8DYPV9uyonvr9pX1+o7s4eNzLSd0VcPhucSn3fzuNncSrss=
x-amz-request-id: VSW82Q446PP1D0VC
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"ae451f428ab96456490147d8abff0d53"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: H.l3YGbI.40aeaIkx3GMkICfAVRRG2d2
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ly9s7ISpwzaFJ4PABi30d1Fg8EW7j69GJv%2Bpu%2FRfWWa5A8Ph9BKrbMVLHOGo6OKothsS1pUqogAo9o%2FwndWgVW9ljmjv5fsqo3wgjYSX68bhbNrp39IZjcZpZ%2BWAH89ozcpottA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c7fc50b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js IP172.67.223.143:0
GET /_next/static/OgdUG0RVD4Y9xRurTIMyz/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:58:35 GMT
etag: W/"40f-1873675fd78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0IFFrqC04MMgHrnccsRSFG5PsNQgbyQM22oz3q%2FtMVdy1O7Nz0v7age7rKX5ysIDyA3XvnmDchmGwL%2FLd0hhavX3RFYfA6TOxzDifZCHzLpb8Q9DJ%2FSj%2BLTCOCA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b9080b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap IP142.250.74.74:0
GET /css2?family=Montserrat:wght@400;500;600;700;800&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 10:50:27 GMT
date: Fri, 31 Mar 2023 10:50:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 | 104.16.57.101 | 200 OK | 0 B |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 IP104.16.57.101:0
GET /beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.3.0
last-modified: Mon, 20 Mar 2023 17:58:49 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b080814ab5eb4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/main-42bee57ba94e9a13.js IP172.67.223.143:0
GET /_next/static/chunks/main-42bee57ba94e9a13.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"193b5-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZyZBZI6IhcEDewRIeyj87tWSVGohIHYV3wiglUwS8Hbh7z0KPUzVCMB3Gnu7HDGf0G8zLje2rwJqs8gcvxzubHrpQymlG%2Fba%2ByrZ9VleHBIp042En7LYY0ki3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827a8ec0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js | 172.67.223.143 | 200 OK | 0 B |
URL HTTP/2blog.s.id/_next/static/chunks/471-dd22a53f3091be72.js IP172.67.223.143:0
GET /_next/static/chunks/471-dd22a53f3091be72.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.2.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:31 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 15 Mar 2023 07:09:27 GMT
etag: W/"1ed84-186e41a3058"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1316170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qF0z7PziIZ%2Bl1%2FWtAJV6MHwhrmWeYcg2fN8WIcL4qbs1NSYpFGxbVqbjvmWxyABfyltMJ7SsWhQA24rkEVtEdZ3dKO29BchruTroj%2B0AXAoWJ40UQRkRRlJHA08%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080827b8f00b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| home.s.id/_next/static/css/71a6f00e7be8366a.css | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2home.s.id/_next/static/css/71a6f00e7be8366a.css IP188.114.96.1:0
GET /_next/static/css/71a6f00e7be8366a.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:27 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 31 Mar 2023 06:59:54 GMT
etag: W/"1dc1c-18736773210"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 5860
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NDRGhwfPaBbjOup8lOqoawEAF867PtIV1CD6Vv1IyH7TyQDtEBd%2FggzSP16F%2FT%2Fpeqd%2FozgCIH1%2BK95IiwY70yL6rsmzDBQ2lqRbuYRGuTJRspTYyIOA5ao2Sds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b080813cf90b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-4852-660d3cb.js IP104.18.72.113:0
GET /web_widget/latest/messenger/web-widget-4852-660d3cb.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:29 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: gmyPiIPiaHNKNt9QM+fEzjdKobmVbgGolEwOMh7QjVSuSpX4sqTR2CRhWSIOHLWuh6kEUWZy77g=
x-amz-request-id: VSWAP6674S1VA6CQ
x-amz-replication-status: COMPLETED
last-modified: Tue, 28 Mar 2023 00:58:26 GMT
etag: W/"b361c19a9af081b357568069aa583838"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 27 Mar 2024 00:58:25 GMT
x-amz-version-id: lCJr6G0FRoRJ3k9B7NLo_j8rphrHyr3h
cf-cache-status: HIT
age: 215623
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T2xQCZS3iQe8%2BtadX%2FD8dYaEg4Hj2Q3LnvA50ojyCUs9oT9rqhusPMrECUbrGGXTsJLd5H4eT9jubAWtjwVm1etlsb1acj1XCxE26jXHXdqGr0Xde1m%2FEuMY1yT48tnl74wMXlY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7b08081c7fc40b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| blog.s.id/favicon.ico | 172.67.223.143 | 200 OK | 0 B |
IP172.67.223.143:0
GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _gcl_au=1.1.722853913.1680259828; _ga_LJQ0V44EV5=GS1.1.1680259828.1.0.1680259830.0.0.0; _ga=GA1.1.475490525.1680259828; _ga_98MWVCBDD7=GS1.1.1680259828.1.0.1680259830.58.0.0; _gid=GA1.2.1831221616.1680259829; _gat_gtag_UA_225238330_2=1; _ga_LBWQJM5WLF=GS1.1.1680259831.1.0.1680259831.60.0.0; _ga_GJLS9JMJCK=GS1.1.1680259831.1.0.1680259831.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 10:50:32 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"171-17f53bdff78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1N6SHFKTOFZHRIHCn7CJsPnFKPjL%2BjYH%2BfKL7AYHZ2mxxx4NaxZ9S0aeapfLPjTrREKJR1n1hQW1kKwwMsXypCMgJ3yzrW0nxo%2F3NZh0HIRBRWrU%2B2CJTZ1mFWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b08082d2e3a0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|