| s.id/zafrika43 | 104.22.57.77 | 301 Moved Permanently | 0 B |
IP104.22.57.77:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zafrika43 HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Dec 2022 07:15:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Dec 2022 08:15:20 GMT
Location: https://s.id/zafrika43
Server-Timing: cf-q-config;dur=6.0000020312145e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77c696167bf5b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash460af93786e1eaa666f135e6c3fdc634 bc8aeba36225c79718f5de73d79928fe817c5490 471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4084
Expires: Tue, 20 Dec 2022 08:23:24 GMT
Date: Tue, 20 Dec 2022 07:15:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9f3cf7e36f17a535e53e5213c02cf2b4 e65acbc03135ce135b9e91b4f74b3e1439faa6f6 a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3265
Expires: Tue, 20 Dec 2022 08:09:45 GMT
Date: Tue, 20 Dec 2022 07:15:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbcade8542361774f13ecd22557ff8fb8 5e67a3753b0856c765f3b17f1742d3ed684ffb6d 647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11846
Expires: Tue, 20 Dec 2022 10:32:46 GMT
Date: Tue, 20 Dec 2022 07:15:20 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb44c4b5daa307a355e7bab1c83c1ca82 dbd14cd873f1dd4502f277b3f51cb7bc8da0c080 fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 20 Dec 2022 06:45:44 GMT
content-type: application/json
age: 1776
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +q5GnOC72y8M09BWk+usYhbF5i7eAXNeo1e9VHGW9JelzUdrB97JGoJoyYCTG5XgJfTEhJgoCkM=
x-amz-request-id: BGXARQY8Q2D82405
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 20 Dec 2022 06:54:53 GMT
age: 1227
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 07:15:21 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/yDnpw_rRtoI | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/yDnpw_rRtoI IP142.250.74.131:0
Hashd316c3518c0e5cda3dc9a237e8816edc 7a59edd1416fba7070d96fedfd25ff1374b9121b f24d1c63800e865221bdebbf6e30fdb1e6afeaa87dce45b2fa27712cc8c5c908
POST /s/gts1p5/yDnpw_rRtoI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 20 Dec 2022 06:33:24 GMT
age: 2517
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4df678b16094ceafefdbbd55707f4dbe 39a68e051456a8ab6c782502a94e8b95ccb0a71d 00561de9683c69a89e084b685df25c6ea4d3a38654a40554f127814200aadf6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2519
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:21 GMT
Last-Modified: Tue, 20 Dec 2022 06:33:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 34.208.31.97 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.208.31.97:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LsPQnEBXglxLDWwC+0s4rA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Nz/GWiu/+VdSLBeiMlyaSbWlMOQ=
|
|
| s.id/zafrika43 | 172.67.20.136 | 302 Found | 0 B |
IP172.67.20.136:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zafrika43 HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 20 Dec 2022 07:15:21 GMT
content-length: 0
location: https://home.s.id/forbidden
cache-control: private, max-age=30
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77c6961a18a8b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/yDnpw_rRtoI | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/yDnpw_rRtoI IP142.250.74.131:0
Hashd316c3518c0e5cda3dc9a237e8816edc 7a59edd1416fba7070d96fedfd25ff1374b9121b f24d1c63800e865221bdebbf6e30fdb1e6afeaa87dce45b2fa27712cc8c5c908
POST /s/gts1p5/yDnpw_rRtoI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74619c8a7d32d46fc91cc86f793f107c 3f2b1390ef4f7cd385f513d57297fa482f7dd43c 6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Tue, 20 Dec 2022 11:05:21 GMT
Date: Tue, 20 Dec 2022 07:15:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74619c8a7d32d46fc91cc86f793f107c 3f2b1390ef4f7cd385f513d57297fa482f7dd43c 6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Tue, 20 Dec 2022 11:05:21 GMT
Date: Tue, 20 Dec 2022 07:15:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74619c8a7d32d46fc91cc86f793f107c 3f2b1390ef4f7cd385f513d57297fa482f7dd43c 6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Tue, 20 Dec 2022 11:05:21 GMT
Date: Tue, 20 Dec 2022 07:15:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74619c8a7d32d46fc91cc86f793f107c 3f2b1390ef4f7cd385f513d57297fa482f7dd43c 6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Tue, 20 Dec 2022 11:05:21 GMT
Date: Tue, 20 Dec 2022 07:15:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash74619c8a7d32d46fc91cc86f793f107c 3f2b1390ef4f7cd385f513d57297fa482f7dd43c 6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13798
Expires: Tue, 20 Dec 2022 11:05:21 GMT
Date: Tue, 20 Dec 2022 07:15:23 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35d10a39-d4a4-4dab-a6c5-b26190cd8d9c.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35d10a39-d4a4-4dab-a6c5-b26190cd8d9c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7954c03ff4f2bade4a70f50c5aa46b14 576056e8336ae400a1652be8073a2a20e41cec85 00803b3df8b4b876b7fd205008a407f08c40519c32dcb07b3b99b30528d1215f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35d10a39-d4a4-4dab-a6c5-b26190cd8d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5325
x-amzn-requestid: 1b391874-5da9-44eb-ad08-d8fc05a5e709
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da4QKEceIAMF4fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10734-2b19a25a181c2c1b25f00952;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:52:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 1pAbr4nwgpvYMXoNkGmDV3-tsK-AWQqoTw1I5f2Qj-yAUNzWefrrFg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 1d0860167e2100a6d1cd9c0213c2b8e8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:14:37 GMT
etag: "576056e8336ae400a1652be8073a2a20e41cec85"
content-type: image/jpeg
age: 21646
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg | 34.120.237.76 | 200 OK | 2.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashac396f580b50a626abbeb37c0ec5f005 626262a7313aeb54bcdbcaf682f73d9ff4a4cfcb 3546f7a2be3f578ad9d8b8f57b89a69b6ece9b08da63fb9448e5e6dde4d3332c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2054
x-amzn-requestid: 5072b75c-7455-45cc-a35e-be7e0ed77496
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabqhHE6IAMFrxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d976-026c95822615b2550edb00e7;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: XxmrTTAq667e3H9thY8MDXLqO2QWJXuLKm0YvmyNm96fd8DTs8tvwQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:45:54 GMT
age: 34169
etag: "626262a7313aeb54bcdbcaf682f73d9ff4a4cfcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc7ac0b5738bab6b4ed770c26ca922250 e56fd4ee2f5354a54a6271db2be528f98eecd3d7 5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _nupdrdRDG-S085FRNoJgzDQVg9Ngb_nYDR5C1AkkterWy8vlXBxGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:45:54 GMT
age: 34169
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4017f13d-fc40-4034-9f27-d4af3c2f16f8.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4017f13d-fc40-4034-9f27-d4af3c2f16f8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4535f00ed3710172a5f7debc715cb36f b176b458d20465245409f5b442fd4ad50c6a11f9 ad0fbd8a82b0859dc9c36053d8190bc20b3759ffa5971f55b0faedf8ba7ec001
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4017f13d-fc40-4034-9f27-d4af3c2f16f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10533
x-amzn-requestid: 31f0445f-d7e5-4d9d-98c7-60441253c2be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da6p9EVToAMFoBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b0c-5e2b65513b791ea728b8e2a0;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:08:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: xxdUvP80nnpsxvuekSouVB84wNHLNisCIQBAoULLrnPiBlks1qHUdA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:08:58 GMT
age: 21985
etag: "b176b458d20465245409f5b442fd4ad50c6a11f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash84e85f3a4daeb77e25284f4de2b00256 b35012945ac389811096ebfc33eb40ba49e847ce 35a3249554b7c5de0c6353588bcd10b2959c0a747ce9b68e9cfe10c2a4a4a3da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7611
x-amzn-requestid: 08a2a94d-c9f8-4361-8f6d-034507884738
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da2JtFUsIAMFWSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a103d7-26ee95b76a432f2668376037;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: svxqyV4nSQ-WUEplxPsCo9dmQbSUOQL60hUaXpzbtdf1DYglsC5zdA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 00:44:27 GMT
age: 23456
etag: "b35012945ac389811096ebfc33eb40ba49e847ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb5da803c751be159f0f5b3c2f65bd2b6 39139480cfc2ed0781b51745bfaabed4490aa0db 920ee464843101c638327866fbfcc9c7f00fc19b7cdbc8948fbe53d2b6fb4ed3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 668c95f2-a1b1-4abd-9f4e-23d05c4998a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da270EFlIAMFR5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10518-56d6db4f4cff1b4e08b87046;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: U9cES2VDr79vF5gBfhG-5ZyHa8WVqEti4ZGHsBerkxIkeSWsPhC-jA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:06:15 GMT
age: 22148
etag: "39139480cfc2ed0781b51745bfaabed4490aa0db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash33b3e9caf6728c5b916ec1ffee5ce0b3 06dccffaf379bc6709ca42d408ae530d8a14ef83 2ed45ebc478006d7657cd42f5779635c871a5919efa7a6d7ed3a3fa344089360
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 27 kB |
IP142.250.74.131:0
Hashdebab64b467667ba96ecf1886b84fc6e 2f1268e15ff0b2ad0d5ceb1d25053c073f67ac48 88d06e568ce8f1c087596ec6c7705562789a191506878e1ce5b5d0e742e49ff3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 2.9 kB |
IP142.250.74.131:0
Hash58bb551ea85780440a448f825bce366a 2b76d5e4d7933e772288b7670f61f876a302dfe9 8aa784311d4f12b00279bcb02a61249f26adf3f2b9e57f2be6232438f32537c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash33b3e9caf6728c5b916ec1ffee5ce0b3 06dccffaf379bc6709ca42d408ae530d8a14ef83 2ed45ebc478006d7657cd42f5779635c871a5919efa7a6d7ed3a3fa344089360
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=AW-10823601447 | 142.250.74.168 | 200 OK | 72 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=AW-10823601447 IP142.250.74.168:0
File typeASCII text, with very long lines (7724) Hashc3a94cceca7f645f9f101ec07008b1eb 37309dd9bb90d3fd1c9d90d1059ae4cc4bea5a9c 2df2f85186e423b3ea953847fac4e6679ce3bfc24c70edc1c1983035b4b2397c
GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Dec 2022 07:15:23 GMT
expires: Tue, 20 Dec 2022 07:15:23 GMT
cache-control: private, max-age=900
last-modified: Tue, 20 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71599
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 | 142.250.74.168 | 200 OK | 76 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5 IP142.250.74.168:0
File typeASCII text, with very long lines (20080) Hash571429226ee883ab4d6de61d915eedbf 880e85cc6d3b3cc85681810655978a82d4aaf7d4 178eddd84c04e110fb23c519677a0ffc2550c15667f02fabc8c1998c0438fb1a
GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Dec 2022 07:15:23 GMT
expires: Tue, 20 Dec 2022 07:15:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76328
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash33b3e9caf6728c5b916ec1ffee5ce0b3 06dccffaf379bc6709ca42d408ae530d8a14ef83 2ed45ebc478006d7657cd42f5779635c871a5919efa7a6d7ed3a3fa344089360
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 19 kB |
IP142.250.74.131:0
Hashbfff2a29c2058e1cb0c6ee84a203dbf3 9854e630ef204c9038d3e8d1c6985f8f036eab42 5d973493ae45153c212fb3cfe955373da4ab36334ea32100b23441b3e822582b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash7e08038d231a36017eeb34e196503abf e4193f43a66e1b9629caf42da570867ad215b98d 303d1ca3c56a97f9a12768b7ffee3332119f9df795c87045d21561e311173013
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 349
Cache-Control: max-age=171194
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:23 GMT
Etag: "63a15968-116"
Expires: Thu, 22 Dec 2022 06:48:37 GMT
Last-Modified: Tue, 20 Dec 2022 06:42:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
|
|
| static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 | 104.16.56.101 | 200 OK | 82 kB |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP104.16.56.101:0
Hash5420c6d2cc4da6e3ea97c3c4a3add249 bcd03624a828f64d3d80f5e47549f672d6176a56 e406f924715844c13cc80b5d2b33ef8073c5622c97ff1e4ee0a892fd4560f0cd
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:24 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6962aed12b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash384a2b2f97397ee2741922068da5bdcd 256bcaf0f153a739623feb917ad1c8745b7a3651 541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash384a2b2f97397ee2741922068da5bdcd 256bcaf0f153a739623feb917ad1c8745b7a3651 541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL HTTP/2fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data Hashb1581ddd77372ceb06eb14adfd1bea07 1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8 97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 19:22:23 GMT
expires: Wed, 13 Dec 2023 19:22:23 GMT
cache-control: public, max-age=31536000
age: 561181
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash384a2b2f97397ee2741922068da5bdcd 256bcaf0f153a739623feb917ad1c8745b7a3651 541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 4.2 kB |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9748fcb0d735ed3d861ab3c18d1367c9 fed84a3d40978cf1bfeb4345e0e506d17c0d978a a254912a0d01168d4dd4b6a50eb0763ff1914241cc14cab3635de66c6d2a7525
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AD68D8546866C199A1B642997359BE47FFF85DA115885121995F2E3B96303F9"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20329
Expires: Tue, 20 Dec 2022 12:54:13 GMT
Date: Tue, 20 Dec 2022 07:15:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashada960f2191ee08893c647ea8c5a6f6e 5e523349e38ecf60bdcfa6b509fdb092934a13bc 4ad68d8546866c199a1b642997359be47fff85da115885121995f2e3b96303f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AD68D8546866C199A1B642997359BE47FFF85DA115885121995F2E3B96303F9"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17032
Expires: Tue, 20 Dec 2022 11:59:16 GMT
Date: Tue, 20 Dec 2022 07:15:24 GMT
Connection: keep-alive
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 25 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
Hash374505a30061fd12788f24bc3b34cd85 70447f3e4d44ce598b68f43771b5c5de75221d23 7cd506c96ed0c957853a6d740ad14b3ecba0d93f48087e00707a5967cdfce0ef
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 20 Dec 2022 06:41:08 GMT
expires: Tue, 20 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 2056
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashbe7309a6dfa8db252ac8fd6073aac94c 38033b2600be25b208ab0eef5bc88eba0f6f50aa 28592dab98ba5b84b973c7db59360406a6490b505bf1c6dd4f1b54dabf509622
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash95181902ad63c207f21a6e84780a7cf6 c7c93eab9ab4e7fdba0c874ce3b9336cd2356646 3fea1d64a4b16da52435b3a9766c1db7b11dcf7cd063add81c9d47427e24db83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1&z=1453524874 | 142.250.74.163 | 200 OK | 931 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1&z=1453524874 IP142.250.74.163:0
Hash8a3f2495a89a536a8c3898722314eb28 9575aa41bb565cf889b468799704e725a2b063b7 1369e500615e9167bce1b5c4d06d741959c16fbbcccc7be38343c28323280712
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1&z=1453524874 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 07:15:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1671520533290&cv=11&fst=1671520533290&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&auid=1973698401.1671520533&data=event%3Dgtag.config&rfmt=3&fmt=4 | 142.250.74.66 | 200 OK | 20 kB |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/10823601447/?random=1671520533290&cv=11&fst=1671520533290&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&auid=1973698401.1671520533&data=event%3Dgtag.config&rfmt=3&fmt=4 IP142.250.74.66:0
File typeASCII text, with very long lines (47861), with no line terminators Hash74b61aa7416e943bf70a07ce502aef12 ee011e82e0820afb2e6167f78815689a4f5e8f59 70aa9f69930f5e91181e415344469d0673b548cbd45b84e973788bbfb939f1c8
GET /pagead/viewthroughconversion/10823601447/?random=1671520533290&cv=11&fst=1671520533290&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&auid=1973698401.1671520533&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 07:15:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 876
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 20-Dec-2022 07:30:24 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash9bda26008f5066dcdd4b2c866ce359e2 ffbb6b9f6078b26cf1430e0aa90ebef9f17b4ddd b681276df62fbbbf3d8177612c6590299fa097bff33041bfbd2e065ff0f5b537
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=144957
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Etag: "63a0f449-116"
Expires: Wed, 21 Dec 2022 23:31:21 GMT
Last-Modified: Mon, 19 Dec 2022 23:31:21 GMT
Server: nginx
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashbe7309a6dfa8db252ac8fd6073aac94c 38033b2600be25b208ab0eef5bc88eba0f6f50aa 28592dab98ba5b84b973c7db59360406a6490b505bf1c6dd4f1b54dabf509622
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash95181902ad63c207f21a6e84780a7cf6 c7c93eab9ab4e7fdba0c874ce3b9336cd2356646 3fea1d64a4b16da52435b3a9766c1db7b11dcf7cd063add81c9d47427e24db83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| api.s.id/api/sync | 45.126.58.78 | 204 No Content | 63 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
Hashcdf5ebc6f1ee5b21d091bdf1c9a1940d 7d74f1654889b68308db70d696f6793787bf5e19 b6ccb2f943602245483d29f8b3e699f11122fba9b6d26d6d8355c008b36ad294
OPTIONS /api/sync HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Tue, 20 Dec 2022 07:15:24 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 2.7 kB |
IP142.250.74.131:0
Hash5edf5ba90feb0c3b71de22be5b22a6b2 35c888b46fb205661eddd11603ed66f0d049e713 2c097ee5ac4dfc8f633d390001b057a6df800600a1d7c7dd7415a5a289c22ced
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=2oebu0&_p=486453187&_gaz=1&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7>m=2oebu0&_p=486453187&_gaz=1&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7>m=2oebu0&_p=486453187&_gaz=1&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Tue, 20 Dec 2022 07:15:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1 | 209.85.233.154 | 204 No Content | 0 B |
URL HTTP/2stats.g.doubleclick.net/g/collect?v=2&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1 IP209.85.233.154:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-98MWVCBDD7&cid=2085216237.1671520534>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Tue, 20 Dec 2022 07:15:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=2oebu0&_p=486453187&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 74 kB |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-LJQ0V44EV5>m=2oebu0&_p=486453187&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1 IP216.239.34.36:0
Hash127425e0ff577972d58ea32e17089165 815b4895c11ac70e4edc5d4974b793005a22b76b a6710fda365018cb76f2c7260c1d79f122449a650aaa4c59bd30c5575d52e3d8
POST /g/collect?v=2&tid=G-LJQ0V44EV5>m=2oebu0&_p=486453187&cid=2085216237.1671520534&ul=en-us&sr=1280x1024&_s=1&sid=1671520533&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=403%20Forbidden%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Tue, 20 Dec 2022 07:15:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/1p-user-list/10823601447/?random=1671520533290&cv=11&fst=1671519600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2878267983&rmt_tld=0&ipr=y | 142.250.74.132 | 200 OK | 42 B |
URL HTTP/2www.google.com/pagead/1p-user-list/10823601447/?random=1671520533290&cv=11&fst=1671519600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2878267983&rmt_tld=0&ipr=y IP142.250.74.132:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10823601447/?random=1671520533290&cv=11&fst=1671519600000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fhome.s.id%2Fforbidden&tiba=403%20Forbidden%20-%20s.id&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2878267983&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 07:15:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4f05977a009dd740d1f82894bb649d6f a6e1a419deff5fc86ffa4fc7991435ec1578233a 6cc36a336c232d9d1823ea0bec9acaf4744f0f1b9648cdd21ce44d294e9cb576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 07:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| api.s.id/api/sync | 45.126.58.78 | 200 OK | 19 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with no line terminators Hashe03bbb15281fd31498d2066d18c6fce6 38a5f0f670735ce3b56d3d0534886787dcfe8abb 65fa612863a4e2f6d52a804f2d1d8102f536049b99f0460bb41429d71c6f5003
GET /api/sync HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1671520533,46fci6,b8dbd8dc320453a4658906eaf479a10f
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.1973698401.1671520533
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/json; charset=utf-8
content-length: 19
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-9809-81a3de7.js | 104.18.70.113 | 200 OK | 9.3 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-9809-81a3de7.js IP104.18.70.113:0
File typeASCII text, with very long lines (28582), with no line terminators Hash48f84909b030e38cc2e07552bfef4de0 871f5fef2ec99be8940b1b214577f1418d0bb3e6 cb7402a8669331cbaccc23b7a2c3fbe6281b9a512196fbd57347f2e7d6cfdd7b
GET /web_widget/latest/messenger/web-widget-9809-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rndR26W7uILFxjTdp3xHU6421sh1FCnlovooeEfb3+p4ZVi8/+APbtsfl301sf7qv61D9vhTonI=
x-amz-request-id: MPRBEXKSZ13KR3DX
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"7f90e3a97a3bcf5c1aab74f58af70fcf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: Lmbz_.H27pG.wEda9OyMjKnMPLEAkNf1
cf-cache-status: HIT
age: 360608
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2FRkWN13pcSwwyAQYahQIwIl8MVeuGy7yyVYWsZ4mH6JmHvMo457XzX7ZLM9RW62nrCU7cZvi1Uis5ZccFGAREBkaEU40Hmk25menLCQLRA9jHfJOaW5WG88lN3g%2FqXFDwWjEfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696348b21b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-5614-81a3de7.js | 104.18.70.113 | 200 OK | 3.2 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-5614-81a3de7.js IP104.18.70.113:0
File typeASCII text, with very long lines (10813), with no line terminators Hash25105b750a33d152ea50a9e75942f9f8 2ccd137382f432a5a2dfeb079ac2ae1d642a81c0 b4ef94007c5553b7c3a92ad29eea5d3ba99e0a3f914e720255037da9fdcb6b04
GET /web_widget/latest/messenger/web-widget-5614-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: oSwKg5r8o3fykotrNMIkMMQ/wWXWYDRqL7EfyFhRwmvQSCie2LouStwqZh7XRbsYQBXOa8SMAhc=
x-amz-request-id: MPRFVR3BJRM9M1KD
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"719f990fafee92dfdd57b3143a3b0a43"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: z2use60rlP4OrHi0L2obdpNm7zgbjI_0
cf-cache-status: HIT
age: 360608
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O69KLVhY3OVPYH3ll00uWhFJGLpJmBe%2FT%2BeWuZyGIZZpx7d5pbyv8w3tGS992WvLfIOd0xgQ%2FWd3ZGHl3liR%2BMIYuSCTUwBk7JxfiKqx5zk0UVDTjJRFcYc1QEUNVGdsxO8Einc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696349b2eb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| sdotid.zendesk.com/embeddable_blip?type=pageView&data=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 | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable_blip?type=pageView&data=eyJjaGFubmVsIjoid2ViX21lc3NlbmdlciIsInBhZ2VWaWV3Ijp7InRpbWUiOjU0LCJsb2FkVGltZSI6MTgsIm5hdmlnYXRvckxhbmd1YWdlIjoiZW4tVVMiLCJwYWdlVGl0bGUiOiI0MDMgRm9yYmlkZGVuIC0gcy5pZCIsInVzZXJBZ2VudCI6Ik1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQ7IHJ2OjEwNS4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94LzEwNS4wIiwiaXNNb2JpbGUiOmZhbHNlLCJpc1Jlc3BvbnNpdmUiOnRydWUsInZpZXdwb3J0TWV0YSI6IndpZHRoPWRldmljZS13aWR0aCIsImhlbHBDZW50ZXJEZWR1cCI6ZmFsc2UsInJlZmVycmVyIjoiaHR0cHM6Ly9ob21lLnMuaWQvZm9yYmlkZGVuIn0sImJ1aWQiOiI1OTI1NjYxNjljMzE0ZDdiYjcxM2YyYmY2YmI1ZGUxYyIsInN1aWQiOiIwNjEwNWU0MWM3OWQ0ZWZmOGU4MTUyYzY5ZmE4OTIxYiIsInZlcnNpb24iOiI4MWEzZGU3IiwidGltZXN0YW1wIjoiMjAyMi0xMi0yMFQwNzoxNTozNC43NThaIiwidXJsIjoiaHR0cHM6Ly9ob21lLnMuaWQvZm9yYmlkZGVuIn0= IP104.16.51.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embeddable_blip?type=pageView&data=eyJjaGFubmVsIjoid2ViX21lc3NlbmdlciIsInBhZ2VWaWV3Ijp7InRpbWUiOjU0LCJsb2FkVGltZSI6MTgsIm5hdmlnYXRvckxhbmd1YWdlIjoiZW4tVVMiLCJwYWdlVGl0bGUiOiI0MDMgRm9yYmlkZGVuIC0gcy5pZCIsInVzZXJBZ2VudCI6Ik1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDEwLjA7IFdpbjY0OyB4NjQ7IHJ2OjEwNS4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94LzEwNS4wIiwiaXNNb2JpbGUiOmZhbHNlLCJpc1Jlc3BvbnNpdmUiOnRydWUsInZpZXdwb3J0TWV0YSI6IndpZHRoPWRldmljZS13aWR0aCIsImhlbHBDZW50ZXJEZWR1cCI6ZmFsc2UsInJlZmVycmVyIjoiaHR0cHM6Ly9ob21lLnMuaWQvZm9yYmlkZGVuIn0sImJ1aWQiOiI1OTI1NjYxNjljMzE0ZDdiYjcxM2YyYmY2YmI1ZGUxYyIsInN1aWQiOiIwNjEwNWU0MWM3OWQ0ZWZmOGU4MTUyYzY5ZmE4OTIxYiIsInZlcnNpb24iOiI4MWEzZGU3IiwidGltZXN0YW1wIjoiMjAyMi0xMi0yMFQwNzoxNTozNC43NThaIiwidXJsIjoiaHR0cHM6Ly9ob21lLnMuaWQvZm9yYmlkZGVuIn0= HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: 77c69634af0eb524-ULN
last-modified: Tue, 20 Dec 2022 07:15:25 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M%2B0vu6MpzQu2%2BqWjhTmdFLFZMLOr8oif1KqhZbNv5CH%2B3AcLIH32A0YMEVa6FGS%2Bub699XhdGIQsY0Y8h74FJq1GOwEKcOzRiwkSQLXCSjRFqIe8bKk2DkopPftJmfiePFDADg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=afab117a3b04c7f81929a87e7a0534d250d81b03-1671520525; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77c69634af0eb524-OSL
X-Firefox-Spdy: h2
|
|
| api.s.id/api/redirect | 45.126.58.78 | 200 OK | 469 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with very long lines (469), with no line terminators Hasha986c42aab43f215b2cff47a241682ad 6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b 81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149
GET /api/redirect HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1671520525,50uefm,3ebb53d570c1fa30ae4988b6cf751de5
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.1973698401.1671520533; _ga_98MWVCBDD7=GS1.1.1671520533.1.0.1671520533.60.0.0; _ga=GA1.2.2085216237.1671520534; _ga_LJQ0V44EV5=GS1.1.1671520533.1.0.1671520533.0.0.0; _gid=GA1.2.1449438490.1671520534; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/json; charset=utf-8
content-length: 469
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| api.s.id/api/user/me | 45.126.58.78 | 401 Unauthorized | 46 B |
IP45.126.58.78:0 ASN#132647 Pengelola Nama Domain Internet Indonesia
File typeJSON data\012- , ASCII text, with no line terminators Hash3e045f8140311a5d93b18caf7bb5a22a eba94f022a58ac7b4949627ffa44219ae16abff2 6cbc48a7eca00d019c32182594b66b4ed31b8e1d129a77738cae8d2de28097ba
GET /api/user/me HTTP/1.1
Host: api.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1671520525,i2o8mf,e916bc0131a5dfa5692ff8982293e15f
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _gcl_au=1.1.1973698401.1671520533; _ga_98MWVCBDD7=GS1.1.1671520533.1.0.1671520533.60.0.0; _ga=GA1.2.2085216237.1671520534; _ga_LJQ0V44EV5=GS1.1.1671520533.1.0.1671520533.0.0.0; _gid=GA1.2.1449438490.1671520534; _gat_gtag_UA_225238330_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 401 Unauthorized
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/json; charset=utf-8
content-length: 46
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
access-control-allow-origin: https://home.s.id
www-authenticate: JWT realm=sid-user
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-6940-81a3de7.js | 104.18.70.113 | 200 OK | 5.4 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-6940-81a3de7.js IP104.18.70.113:0
File typeUnicode text, UTF-8 text, with very long lines (18058), with no line terminators Hash7204712b8cf763b4dc21ff1096ba41db 1db55505d35aee363aa18086fbb3bc32211d357b 371e0ba63675261aa69f7cf502cfa14377f97e930ce28db8f8b1dcd3e2c704b8
GET /web_widget/latest/messenger/web-widget-6940-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: yCr5rBUfh/CC18s2E/xmBMzFS9MIKggTW2HtR/Hr7nASIBLSf2Zxi2Hz6wiYTKwtkSJJpx+ozt0=
x-amz-request-id: MPR20Q5ZRDH669B7
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:13 GMT
etag: W/"34cbf9d7d5ef9f40b8aa81166145ba28"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:12 GMT
x-amz-version-id: Eu97sB.ew2legJp.fqzZyEVzsMd2S7OZ
cf-cache-status: HIT
age: 360608
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8OaQfiyRaEkgLzLfxPNQm%2FVJ9w6AjJjjvdhwyPEJoMDdQ7Em1nFnFiH5rUBloT89SwRe8u5P1BCgEgsWSGwqEuMXOpoA8UO8wM62qT8bGEtvL2rSHwqo3xFFay0WM4j41I2nirY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696349b33b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/web-widget-framework-80d26f4cc026ac520e65.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/web-widget-framework-80d26f4cc026ac520e65.js IP104.18.70.113:0
GET /web_widget/latest/web-widget-framework-80d26f4cc026ac520e65.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:24 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: flXT3MjZXq9WFSWpPRs+IiSkjkX3+v9E8zHvt24+o/uXfRysJbOibD4IZBfnohBYxkCwc++Rpqo=
x-amz-request-id: F6CCGSFWY28CB4TK
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:41:53 GMT
etag: W/"34fbbf22dcbdf81917dd5b3e02a125e4"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:41:52 GMT
x-amz-version-id: BijG1SZtZft6iu4XfUmwnaVs.g5q2jvS
cf-cache-status: HIT
age: 360619
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=khP9DBBA1NQGo%2B7mnx5PP7NUU9eoMfmZmGAgIm4XNTI8akHoT4zoO%2Bc5qhiCAVCKQkJnFyHeLSjJz1ry5fEcK7egtfQUp7hDW60Zn874RckFjVD%2BnuT3qiMzN8AaGALfIRqRy9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6962eed8ab4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-7551-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-7551-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-7551-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 5yAmXmH9idRXWaIhjWtmfa8lpXZhwBiFMnwf5iSRi8OPBDtn8ByrSwhHLAr6+G0ynOE6AGSwuxI=
x-amz-request-id: MPR0FD1K0S9PT378
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"b6375fecac03a35b22cde2f004c0fa57"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: QVGFyHFdNKrQH8rqCgFzY27qe_zbvnmR
cf-cache-status: HIT
age: 360608
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5UAuqhQilNx8MoOG5UYLX2fvQpWrFYf%2FxmmvTli0CrMvwtGpSGt9aAMuP%2F44C5u4OCWcY9q70QtVIv5LmCfWH2c43YgMmB%2FEg%2BEzbzY%2B784myWnUinC5B9MQW7wSZNX%2FrXtrzc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696348b20b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d IP104.18.70.113:0
GET /ekr/snippet.js?key=4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:23 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 22
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZDz%2FfyHZk9R9d8gAdkztg719AASdjl93VRoN7HTyS%2B1ikFecoNpA10Ol4zju1aJRCPQaretafCWx0byX3O0FLvw43gzEGf%2FzWaoNoQpg4CULH%2BYMe1bXbvrim5AwRZL3mp6m3VY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c69629b82eb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-3646-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-3646-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-3646-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: PqlCiCT1ww08FEqG4nfoZl2PiXKyqjneRXzhJ0VmpcnGogETKMFdSUmSZBwUCUF0qv1/WQ6EeS4=
x-amz-request-id: FXYTZAFEE97D9A5H
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:13 GMT
etag: W/"23723dc5c045908a7f7d98e48fe51a9e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:12 GMT
x-amz-version-id: APSrj88OyLLzhpl5LbAGKXsdZ9qkz9Rd
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IJhWSeRvyyePDvbloIVWXGOCPG%2FWNx5Uc%2BCk7YrmhOUqCn6ecE%2BkxHgMBBi2Tf%2FZbk%2FeJ7feS%2FB%2BomuA8sPcIKPFyMfw1NC5rTWy0B2iZN2NWzUU92E%2BvILJywE10fv9SJH94pM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6963359c1b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: K5XGIAbvPHLdprEgcP+XylAz2TkG8AIzWsYTurrqFae7JrUq4X9VGU2hFtLNw4UaUY+jCeqCJbI=
x-amz-request-id: MPR73581G94G1GPC
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:15 GMT
etag: W/"86cfffaa8181570aac3c26f437235deb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:14 GMT
x-amz-version-id: 7yr6AO.Xvfu7zupwB09kcO2mvjizgA.c
cf-cache-status: HIT
age: 360564
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ABMrJbyLEd85tGAh4DrK0xsiWFflUElYjYYyj7B%2F7%2FaVLBfDOtK0HXKeteFMZ76pQPGY5hJ0mdFCd3h%2B7zt98E9TKFJBdpBg1A7znbX7KlgfwBY%2B5uHn2v8M7zCy0UyHyY1JDJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696344ad0b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d | 104.18.72.113 | 200 OK | 0 B |
URL HTTP/2ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d IP104.18.72.113:0
GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:24 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"820fe47f6251cefd23f03f13d9252533"
x-request-id: 77bf28f9ef1f35b3-ARN, 77bf28f9ef1f35b3-ARN
x-runtime: 0.001902
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LBcT3oXDKi6g60WukxgygqGReK9ZZbj%2Fu0gTU4wVDFHLBhGIk6nZFgqt%2FCQZ%2BWSKb8lN%2FNWQQkQ8MuMnkPKvA71FMwOfn6L1yUwi99hmn6giOxldZYbDUHqOZDib0rDx1mk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6962a9c30b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-9524-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-9524-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9524-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: +ZHDAlYFodqStE1214JPAQoJBpcFUskxBug1A7wSP75/1IED5T5yItbt92eNIuBRFFcRv6lf7I4=
x-amz-request-id: FXYWBZCRP0MK0ZQ2
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"8368a7ac9bda15d64ba1686611ee7347"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: 5QtlkmVUqZLas..XUvJk903BvhpkaY6O
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgM46aQ7bTyiX6y%2FAnoFvsgwWRjMIahqst6g3VZqniy7QzZFau4H6E7BkWXYhlhfNfr%2BQNamXmvnQ3TwkYqU%2BKBmESUq10wME2OKEqD2pXApMvaoKbUlkUOk0CCCc7fl4IG9e4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6963359bbb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-9352-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-9352-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9352-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 6HOV0cSM0hxpzMG8nhPyWMgHjcJhqWeYJbpoQgKMSn9hL2p/L18vPnZO9oev5dZlx+HtNGWv62s=
x-amz-request-id: FXYSGAC7VWM1DXCZ
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"75cbe5d2f9523420cd75ea3f672b4a58"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: oV03Il1AW7Zvi4zUBl7Xz64GP1tcljeF
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aCeb4w8mw5ngYLny2YubexNkT8AblQVQCBf1hSUsiiB6RC8SW910j3wNBGEUdXhSamjHfIk2QmFiipvJcAODBwq92GN4p3uQK4PgvkcUcL0hEBZiel7lb0uUavFvaQSwLLiS%2FPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6963359b9b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| sdotid.zendesk.com/embeddable/config | 104.16.51.111 | 200 OK | 0 B |
URL HTTP/2sdotid.zendesk.com/embeddable/config IP104.16.51.111:0
GET /embeddable/config HTTP/1.1
Host: sdotid.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
Origin: https://home.s.id
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-559bbcc5db-55scn
x-request-id: 77c6957e1d61a307-JOG
x-runtime: 0.001690
vary: Origin, Accept-Encoding
x-cached: HIT
last-modified: Tue, 20 Dec 2022 05:04:01 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gSqxU26fbWsdjnxzRlpdFmIGnl3HisN6kOyiRWPXL9L%2BsqJ%2F8UnXjLf%2B7X5LNSig3%2FiRMzid1fm9E6JckyZ7xQErNzm92RKHudF%2BYzLOBuHsSawC%2BHZQGzLjjuuA7GPJ9mGrVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=afab117a3b04c7f81929a87e7a0534d250d81b03-1671520525; path=/; domain=.sdotid.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77c696309bcfb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-966-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-966-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-966-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Z8VaJy/cvGYCza9v0oC9pAiTPC4GQV528/MwU8icDKarA7WjGf6zUt+uGtRPJNZagBLJcQXf76E=
x-amz-request-id: FXYZP4RKHMGMG7ZW
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"ecc227c96b068cad8aa6b5e12d2b3a1c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: Cl98y07rdBmu1p874ttBrzHlT4NJFD7p
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V9gTLx1ZOlpzB7hcq8HFGdnUORy97LS1BT6dlPWVn7RE1ha5SJZTH2GNbLawsTF6fzXMmb3L3YRhzs8azIBjibQ3y60sBjUkPrW%2BQssGxU8K7gocOEWPtHIxteq6yMxn%2ByCWDlg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6963359beb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-9948-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-9948-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-9948-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: q5+ukoms7vHSxhoBAUr+o4hn+W0LkXy73XSdTTBLSUw3lA7sr9uFMgHBmrWjbHz3lL3TmiAqdeg=
x-amz-request-id: FXYKDE25DF0926Q9
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:14 GMT
etag: W/"a432cca8f92f351c91bfa3d18713dc76"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:13 GMT
x-amz-version-id: i2XY7xo6z029AWzD3.HjYqY.kJBBey67
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TATEdPWJhNHURLnuFU9xj5%2BXPs%2Bnl%2FiEQUlEgDUOONFuysISOt%2FUgwYBQ7r2wM4VASB6edL3jxQVfNhpawQdYT3K3S59XmRPBx83h0C1Avk%2FdotnchvkCzrlQSfUJ3HuevJmdEM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c6963359b5b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-81a3de7.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-81a3de7.js IP104.18.70.113:0
GET /web_widget/latest/messenger/web-widget-messenger-81a3de7.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 07:15:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: L8UQuhvfba6g/RNtl7Yqt7qre0KHE9Is5ain2skrymWwIrjuTtc3S+zgzNVQvrfG/+716OXAlPE=
x-amz-request-id: FXYN8M40E04G29KZ
x-amz-replication-status: COMPLETED
last-modified: Wed, 14 Dec 2022 15:47:13 GMT
etag: W/"8195b9026081fca868fd94fc8fc09632"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 14 Dec 2023 15:47:12 GMT
x-amz-version-id: sctCVXVaDNsjFXoFznsI_96sZu47Ktzl
cf-cache-status: HIT
age: 360609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kvmVV2IRlU5%2BS1SOAD3ANUi9789pvP37e4%2BO34zyZAyQ3nqkOfUmfStU1UsaRbLgQ21L4nRQa9lIqK1B%2FJT91yFqtiZ4x7MxsciCBkSILC1pMU4Lt%2FsFqiBI%2BBBBHUVHGeevxKo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77c696332986b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|