urlquery - report: https://verifikasiiidentitas2022.weebly.com/

Overview

URL	https://verifikasiiidentitas2022.weebly.com/
IP	199.34.228.54
ASN	WEEBLY
Location	United States
Report completed	2022-07-03 11:48:56 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

Added / Verified	Severity	Host	Comment
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.
2022-07-02	2	verifikasiiidentitas2022.weebly.com/	Facebook, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-03	2	verifikasiiidentitas2022.weebly.com/	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/files/theme/plugins.js?1573850854	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/files/theme/custom.js?1573850854	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/uploads/1/4/1/5/141588604/whatsapp-imag (...)	Phishing
2022-07-03	2	verifikasiiidentitas2022.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?Cust (...)	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (18)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	ocsp.sca1b.amazontrust.com (1)	1015	No data	No data	54.230.245.100
[Mnemonic Passive DNS]	ec.editmysite.com (2)	12806	2017-01-29 21:50:35 UTC	2022-07-03 08:17:27 UTC	52.41.81.16
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (4)	1631	2017-09-01 03:40:57 UTC	2022-07-03 04:06:00 UTC	34.120.237.76
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.65
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-07-03 04:49:06 UTC	23.36.77.32
[Mnemonic Passive DNS]	ocsp.digicert.com (2)	86	2012-11-29 12:49:49 UTC	2022-07-03 08:50:17 UTC	93.184.220.29
[Mnemonic Passive DNS]	www.gstatic.com (1)	0	2015-06-20 09:50:55 UTC	2015-11-29 15:55:55 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-03 05:07:31 UTC	54.230.111.64
[Mnemonic Passive DNS]	ocsp.pki.goog (17)	175	2017-06-14 07:23:31 UTC	2022-07-03 04:43:22 UTC	142.250.74.3
[Mnemonic Passive DNS]	ajax.googleapis.com (1)	12905	2017-01-30 05:00:30 UTC	2019-10-16 05:01:16 UTC	142.250.74.106
[Mnemonic Passive DNS]	fonts.gstatic.com (4)	0	2017-01-30 04:59:51 UTC	2022-07-03 04:33:25 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	www.google.com (1)	7	2012-05-22 04:23:54 UTC	2022-07-03 03:15:57 UTC	142.250.74.164
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-03 05:03:35 UTC	35.161.136.21
[Mnemonic Passive DNS]	cdn2.editmysite.com (12)	11564	2012-10-02 18:27:39 UTC	2022-07-03 08:17:23 UTC	151.101.85.46
[Mnemonic Passive DNS]	fonts.googleapis.com (3)	8877	2017-01-30 04:59:43 UTC	2019-10-16 05:12:41 UTC	142.250.74.10
[Mnemonic Passive DNS]	ssl.google-analytics.com (1)	275	2017-01-30 05:00:07 UTC	2022-07-03 04:38:51 UTC	142.250.74.136
[Mnemonic Passive DNS]	verifikasiiidentitas2022.weebly.com (8)	0	2022-07-03 04:50:47 UTC	2022-07-03 09:00:53 UTC	199.34.228.53	Domain (weebly.com) ranked at: 4470

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 199.34.228.54

Date	UQ / IDS / BL	URL	IP
2022-08-18 04:33:31 +0000	0 - 0 - 0	xacnhanquydoisgd.weebly.com	199.34.228.54
2022-08-17 08:02:34 +0000	0 - 0 - 0	quydoi24h365d.weebly.com	199.34.228.54
2022-08-17 06:52:23 +0000	0 - 0 - 12	2roundpploansignatge.weebly.com/	199.34.228.54
2022-08-17 06:48:03 +0000	0 - 0 - 2	https://33oq-mailhostchiameritechnegslcpcgdnd (...)	199.34.228.54
2022-08-17 06:45:39 +0000	0 - 0 - 8	https://logsfr30.weebly.com/	199.34.228.54
2022-08-15 19:09:44 +0000	0 - 0 - 11	https://frontiersetuplinkupdate.weebly.com/	199.34.228.54
2022-08-14 19:49:03 +0000	0 - 0 - 1	https://layanan-pembatalan-pemblokiran2022.we (...)	199.34.228.54
2022-08-13 19:52:02 +0000	0 - 0 - 18	consulated.weebly.com/	199.34.228.54
2022-08-12 19:12:20 +0000	0 - 0 - 4	https://logon-unil-ch.weebly.com/	199.34.228.54
2022-08-11 08:10:13 +0000	0 - 0 - 0	chuyentienquoctebank.weebly.com	199.34.228.54

Last 10 reports on ASN: WEEBLY

Date	UQ / IDS / BL	URL	IP
2022-08-18 20:08:21 +0000	0 - 0 - 3	aol-mail-incworld.square.site/	199.34.228.40
2022-08-18 20:02:58 +0000	0 - 0 - 11	my-businessss123445.square.site/	199.34.228.39
2022-08-18 20:02:44 +0000	0 - 0 - 3	att-106501.square.site/	199.34.228.39
2022-08-18 19:06:01 +0000	0 - 0 - 2	https://btinternet-104129.weeblysite.com/	199.34.228.96
2022-08-18 18:58:19 +0000	0 - 0 - 2	https://bt-108392.weeblysite.com/	199.34.228.96
2022-08-18 18:57:41 +0000	0 - 0 - 2	https://bttqghhxsgw.weeblysite.com/	199.34.228.96
2022-08-18 18:55:04 +0000	0 - 0 - 3	https://dfghfdrtygfdbdsdfghbvcxdfghgfdsdfgt.w (...)	199.34.228.96
2022-08-18 18:37:24 +0000	0 - 0 - 5	att-yahoo101.square.site/	199.34.228.40
2022-08-18 18:37:03 +0000	0 - 0 - 2	https://yahoo-mail-108320.square.site/	199.34.228.40
2022-08-18 07:55:23 +0000	0 - 0 - 2	https://advcxc.weebly.com/	199.34.228.53

No other reports on domain: weebly.com

JavaScript

Executed Scripts (26)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (67)

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sun, 03 Jul 2022 10:52:03 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: F2djRUeXRVtD3kFcbByq7SHd_ePsU4bog0jBoM9KpJZkzUC39SQU4Q== Age: 3400 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.64 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sun, 03 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Sp-5hf7fDWB3hWu-HfzZ9qnZ7yJgOgQaFv6AzQt3-FSR5OLlwxMJWg== age: 30122 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575" Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2595 Expires: Sun, 03 Jul 2022 12:31:58 GMT Date: Sun, 03 Jul 2022 11:48:43 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a7e37e80f3a67a41ff567648c1f2d285 Sha1: 7ce66e5153f2d4a7b14ccba49fd1a4b70ae274f5 Sha256: 8e263e6763753f5659ac0fc2d11daf8ece9720988153c38cb40631af26c86575
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2026 Cache-Control: max-age=89160 Date: Sun, 03 Jul 2022 11:48:43 GMT Etag: "62c03379-1d7" Expires: Mon, 04 Jul 2022 12:34:43 GMT Last-Modified: Sat, 02 Jul 2022 12:00:57 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 6e0cdcedf70bb3615365fe9426d3aaa2 Sha1: 93847ced4856217e49b1b8806cd703c9842a6cf0 Sha256: 0f1bdd6fa282554b857f3bc575fa55c2313179f6993876a470f7be1c648ec1f8
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Sun, 03 Jul 2022 11:48:43 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET / HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260), with CRLF, LF line terminators Size: 6834 Md5: f20dd0adb885271abdf3885d917b4ea7$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sun, 03 Jul 2022 11:48:43 GMT Server: Apache Vary: X-W-SSL,Accept-Encoding,User-Agent Set-Cookie: is_mobile=0; path=/; domain=verifikasiiidentitas2022.weebly.com language=en; expires=Sun, 17-Jul-2022 11:48:43 GMT; Max-Age=1209600; path=/ Cache-Control: private ETag: W/"09999266c4209ce5bed7fe5dd5ce1955-gzip" Content-Encoding: gzip X-Host: grn97.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 6834 Keep-Alive: timeout=10, max=63 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2260), with CRLF, LF line terminators Size: 6834 Md5: f20dd0adb885271abdf3885d917b4ea7 Sha1: 413da689ada17eb89e6d92e2c70df4ad5117fa4c Sha256: 2ee3b5f5540f48d096a1f001f5582376a7ef31497669bdfe112d27530a10b690 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 430 Cache-Control: 'max-age=158059' Date: Sun, 03 Jul 2022 11:48:43 GMT Etag: "62c14e0e-1d7" Last-Modified: Sun, 03 Jul 2022 11:41:33 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 7fd2d0b8a7d70d0ecba887cdda2718ba Sha1: ed72cc0ceecee82915fbf166f522bffdf1ec6f4f Sha256: e6e616ccdfd9456f384da253d83ec625df3bb41575f61649638575e1bb09b1a9
GET /files/main_style.css?1650715057 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sun, 03 Jul 2022 11:48:44 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: grn49.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (936) Size: 8132 Md5: 5398438f2ba563fbf6311defc400cfd6 Sha1: d666da9195d4463ba5750772014a430b58d18f3b Sha256: 68fbb65c4f7cd8092cbca746f69b73fc91cae7fb8f912e7f5fd1a858c0664d0c
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: IXEtLzinEaLpZ0Qv4X3poQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	35.161.136.21 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: pRfyGHTUFemK+LdQ2EIbdmpuXJQ= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.65 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Sun, 03 Jul 2022 10:59:27 GMT Cache-Control: max-age=3600 Expires: Sun, 03 Jul 2022 10:56:42 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: hhmcBZuSwFgu_cdunXp9kZOAidtVymWqSMWp3NMGDKSd4ZttcPH5bg== Age: 3384 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /files/theme/plugins.js?1573850854 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 11:48:44 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 28 Jan 2022 02:17:25 GMT x-rgw-object-type: Normal ETag: W/"86db86f3ec46612c95a552a133cf2501" x-amz-request-id: tx000000000000001c43785-0062848e36-b9fbc20-sfo1 X-Storage-Bucket: z8a29 X-Storage-Object: 8a295e631b0d74ebc6b734fdd9a2d5b29653da10a362599b0004ee135c115ce9 X-Host: blu38.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 18075 Md5: 35f647b2742c690703076a35ee299d33 Sha1: d8f040a94a3db61a2eb9c4d22906dd515b85fa75 Sha256: 89b301a048d2d58d670d3f1767422cc357dd9e66a0b0a1fd047b5165c30c87c2 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /css/sites.css?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Fri, 24 Jun 2022 16:10:02 GMT etag: W/"62b5e1da-347ac" expires: Fri, 08 Jul 2022 19:37:05 GMT cache-control: max-age=1209600 x-host: blu87.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 749498 x-served-by: cache-sjc10042-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 12, 1 x-timer: S1656848925.516890,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 29746 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 29746 Md5: d10158b22b553f723d99dc78eaee6390 Sha1: 80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6 Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /js/site/footerSignup.js?buildTime=1656620022 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Thu, 30 Jun 2022 19:06:58 GMT etag: "62bdf452-e10" expires: Thu, 14 Jul 2022 20:17:35 GMT cache-control: max-age=1209600 x-host: grn92.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 228670 x-served-by: cache-sjc10040-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 367 x-timer: S1656848925.518359,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1372 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3600), with no line terminators Size: 1372 Md5: 121a5b9688d8e70ee7bb06cc79491f76 Sha1: 3a28220baa7d8879270c8311bed7dddefa7e43e9 Sha256: 181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.106 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 33593 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 03 Jul 2022 04:21:19 GMT expires: Mon, 03 Jul 2023 04:21:19 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 age: 26845 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65483) Size: 33593 Md5: a54a444f20643b131117dc2112cca05f Sha1: 074964746b12ff1d30f7656310d6154ae1cc98b5 Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /css/old/fancybox.css?1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Tue, 28 Jun 2022 23:57:23 GMT etag: "62bb9563-f47" expires: Wed, 13 Jul 2022 07:44:35 GMT cache-control: max-age=1209600 x-host: blu97.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 360249 x-served-by: cache-sjc10036-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1656848925.521016,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 1218 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (3910) Size: 1218 Md5: b644e92258f4c7c0b4270047652d1e60 Sha1: 93734d52ee9e86a768159e514076051813c39cd9 Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/social-icons.css?buildtime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Fri, 17 Jun 2022 16:30:59 GMT etag: W/"62acac43-3319" expires: Tue, 05 Jul 2022 12:44:44 GMT cache-control: max-age=1209600 x-host: blu103.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 1033440 x-served-by: cache-sjc10065-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 3, 1 x-timer: S1656848925.521484,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 1640 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (13080) Size: 1640 Md5: e28c5221da1212ddb24c7dfac9bd2b71 Sha1: ed66d8a6d25f9c602daf0064a479351de253c320 Sha256: 539d483410c07abe67073b07dbaa9c6bd73a45905a6f2becb60467c93e9f03df
GET /js/site/theme-plugins.js?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:09:28 GMT etag: "62b25db8-314e" expires: Thu, 07 Jul 2022 12:50:44 GMT cache-control: max-age=1209600 x-host: blu88.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 860280 x-served-by: cache-sjc10025-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1656848925.520733,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * content-length: 3747 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (12622), with no line terminators Size: 3747 Md5: 326fac3bf2f5a48ddb695ce00260efd8 Sha1: 824134c8f3cbfc5b0ce818dcb0befc99842e4fa6 Sha256: 8fa81dbf4afb7142ee09f89d14e23fd44928c782bced6ef6c44fe9515429af50
GET /files/theme/custom.js?1573850854 HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.53 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sun, 03 Jul 2022 11:48:44 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Tue, 10 May 2022 00:14:12 GMT x-rgw-object-type: Normal ETag: W/"167b5f2a55a6ac2775d799bf9a87343d" x-amz-request-id: tx000000000000001b1cbb4-0062847a59-b9fbc7f-sfo1 X-Storage-Bucket: za16d X-Storage-Object: a16df105a4c2f66f83e36051a5d4b3e7399fadc9046f779b7f373a5dc46b2361 X-Host: grn77.sf2p.intern.weebly.net Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 2637 Md5: 0ebe47e011abac0beb0353c38e6fe5f6 Sha1: c234e549ad5d546b3901f209a50639352dfd23db Sha256: 8f6c0204657565452ae33714fa329826c79cbea1af9ab891e70abfc9cd66e5fa Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /js/lang/en/stl.js?buildTime=1650559948& HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:08:08 GMT etag: "62b25d68-2c140" expires: Thu, 07 Jul 2022 10:29:45 GMT cache-control: max-age=1209600 x-host: grn95.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 868740 x-served-by: cache-sjc10027-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 2, 1 x-timer: S1656848925.521161,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * content-length: 32651 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, Unicode text, UTF-8 text, with very long lines (64997) Size: 32651 Md5: 787fe93eafe30968817ce9ee7be00491 Sha1: 829e082e2477a98a667b394fdf7002b5b0bd4d1b Sha256: f91b4f3130263bc656f0f041fbed43f321daa5a78d97a00dccf863ca9de8134f
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data Size: 9677 Md5: 6e0f7ad31bf187e0d88fc5787573ba71$ 151.101.85.46 HTTP/2 200 OK x-guploader-uploadid: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8 x-goog-generation: 1549995548326466 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 9677 x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ== x-goog-storage-class: STANDARD server: UploadServer expires: Sun, 17 Apr 2022 00:19:21 GMT cache-control: public, max-age=86400, s-maxage=259200 last-modified: Tue, 12 Feb 2019 18:19:08 GMT etag: "6e0f7ad31bf187e0d88fc5787573ba71" content-type: image/png accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT via: 1.1 varnish age: 213699 x-served-by: cache-bma1664-BMA x-cache: HIT x-cache-hits: 722 x-timer: S1656848925.518987,VS0,VE0 access-control-allow-origin: * content-length: 9677 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data Size: 9677 Md5: 6e0f7ad31bf187e0d88fc5787573ba71 Sha1: 14e8b85cc32a01c8901e4ac0160582d29a45e9e6 Sha256: 580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /uploads/1/4/1/5/141588604/whatsapp-image-2021-07-28-at-23-52-33-orig_orig.jpeg HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 450x180, components 3\012- data Size: 7984 Md5: d9361c063a428090b092596925d56e0d$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Sun, 03 Jul 2022 11:48:44 GMT Content-Length: 7984 Connection: keep-alive Last-Modified: Wed, 28 Jul 2021 16:54:20 GMT x-rgw-object-type: Normal ETag: "d9361c063a428090b092596925d56e0d" x-amz-request-id: tx000000000000001e54b93-006284ae9c-b9fbc7f-sfo1 X-Storage-Bucket: z5ca8 X-Storage-Object: 5ca8dec12bc5b5f96edacac316f984899e0d6ff4e5fad9a1e0fde04062c54724 X-Host: grn49.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 450x180, components 3\012- data Size: 7984 Md5: d9361c063a428090b092596925d56e0d Sha1: f4559a79456cfef12aa7fcc124830caf102c8e13 Sha256: 5ca8dec12bc5b5f96edacac316f984899e0d6ff4e5fad9a1e0fde04062c54724 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
GET /uploads/1/4/1/5/141588604/c3b4e6e5-051b-4956-b18a-a32337c4cca6.jpg HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data Size: 1660 Md5: b69386a72c02bb1cf3bb6be2f7cb845c$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Sun, 03 Jul 2022 11:48:44 GMT Content-Length: 1660 Connection: keep-alive Last-Modified: Wed, 16 Jun 2021 05:28:37 GMT x-rgw-object-type: Normal ETag: "b69386a72c02bb1cf3bb6be2f7cb845c" x-amz-request-id: tx000000000000001e5b1f4-006284b163-b9fbc20-sfo1 X-Storage-Bucket: zc51d X-Storage-Object: c51dda443a30920a58b6764eaff6f5301dbdd82051b08a696e2969bea019e0b7 X-Host: blu38.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data Size: 1660 Md5: b69386a72c02bb1cf3bb6be2f7cb845c Sha1: a4296987c45c89690a85e963b807cfb9c0742453 Sha256: c51dda443a30920a58b6764eaff6f5301dbdd82051b08a696e2969bea019e0b7 Alerts: Blocklists: - openphish: Facebook, Inc.
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 50bf00baabe836e747b2179f89462254 Sha1: fc146531ddc64b70bffed634748a0ed22640c23a Sha256: 4c5af299053fa5c875c145bf28d71d77bdda07066d2dac0d2a06a2e1187b171a
GET /js/site/main-customer-accounts-site.js?buildTime=1650559948 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Tue, 28 Jun 2022 23:57:40 GMT etag: "62bb9574-82588" expires: Wed, 13 Jul 2022 13:27:27 GMT cache-control: max-age=1209600 x-host: grn88.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:44 GMT age: 339677 x-served-by: cache-sjc10054-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 510 x-timer: S1656848925.518440,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 159020 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32007) Size: 159020 Md5: 19fd4a473c58275a9e8110c598292a56 Sha1: 3ff56cbf5a3677387aef743acdf1a8abf822d28d Sha256: 89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884
GET /js/wsnbn/snowday262.js HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 22 Jun 2022 00:08:55 GMT etag: "62b25d97-124fe" expires: Thu, 07 Jul 2022 08:38:41 GMT cache-control: max-age=1209600 x-host: blu100.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:45 GMT age: 875404 x-served-by: cache-sjc10076-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 1522 x-timer: S1656848925.175861,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 25752 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2512) Size: 25752 Md5: 234327230add9a5a5d61a48829ea4565 Sha1: 7966cc0e4bd76f88ff193c8a99a067de804b7129 Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /css/free-footer-v3.css?buildtime=1656620022 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	151.101.85.46 HTTP/2 200 OK server: nginx content-type: text/css last-modified: Thu, 30 Jun 2022 19:06:31 GMT etag: "62bdf437-a49" expires: Thu, 14 Jul 2022 20:17:35 GMT cache-control: max-age=1209600 x-host: grn89.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:45 GMT age: 228669 x-served-by: cache-sjc10021-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 2, 284 x-timer: S1656848925.264148,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 886 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2632) Size: 886 Md5: 5c465ace654da8d0e367f91e7751ae62 Sha1: f218f483eccbba5be90abf97eff819569329f8b7 Sha256: 0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
GET /images/landing-pages/global/logotype.svg HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1656620022 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858) Size: 1488 Md5: 0d1c9fb7005532e7b245cfdf1280d805$ 151.101.85.46 HTTP/2 200 OK x-guploader-uploadid: ADPycdu3WKYd9ihxZuRayD6zmSn-Rh8hU-WhLx9GBozTTJsb87kK47MR6siKtjK0iSd4SSX9DCkFdQpI7nLFZ-DLDWoTdA x-goog-generation: 1539207420450301 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 3507 x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg== x-goog-storage-class: STANDARD server: UploadServer expires: Sun, 12 Jun 2022 23:57:38 GMT cache-control: public, max-age=86400, s-maxage=259200 last-modified: Wed, 10 Oct 2018 21:37:00 GMT etag: "bc61dcb431a14c508075eeff4f74523a" content-type: image/svg+xml content-encoding: gzip accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:45 GMT via: 1.1 varnish age: 215397 x-served-by: cache-bma1664-BMA x-cache: HIT x-cache-hits: 523 x-timer: S1656848925.363849,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * content-length: 1488 X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858) Size: 1488 Md5: 0d1c9fb7005532e7b245cfdf1280d805 Sha1: 2466421992f1fb0e44829833aaee7afc0e5ac7cc Sha256: 8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data Size: 30768 Md5: 2344124773c71bf4fa4ad407e7c3a467$ 151.101.85.46 HTTP/2 200 OK server: nginx content-type: font/woff2 last-modified: Tue, 21 Jun 2022 17:19:15 GMT etag: "62b1fd93-7830" expires: Wed, 06 Jul 2022 08:35:38 GMT cache-control: max-age=1209600 x-host: grn86.sf2p.intern.weebly.net via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Sun, 03 Jul 2022 11:48:45 GMT age: 961987 x-served-by: cache-sjc10052-SJC, cache-bma1664-BMA x-cache: HIT, HIT x-cache-hits: 1, 258 x-timer: S1656848925.370290,VS0,VE0 access-control-allow-origin: * content-length: 30768 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data Size: 30768 Md5: 2344124773c71bf4fa4ad407e7c3a467 Sha1: 3394a43ab1efab8a22a1f07222f7f02a9e12cbb8 Sha256: bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size: 23580 Md5: e1b3b5908c9cf23dfb2b9c52b9a023ab$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:10:21 GMT expires: Wed, 28 Jun 2023 17:10:21 GMT cache-control: public, max-age=31536000 age: 412704 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size: 23580 Md5: e1b3b5908c9cf23dfb2b9c52b9a023ab Sha1: fcd4136085f2a03481d9958cc6793a5ed98e714c Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data Size: 23236 Md5: 716309aab2bca045f9627f63ad79d0bf$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:17:24 GMT expires: Wed, 28 Jun 2023 17:17:24 GMT cache-control: public, max-age=31536000 age: 412281 last-modified: Tue, 26 Apr 2022 16:04:12 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data Size: 23236 Md5: 716309aab2bca045f9627f63ad79d0bf Sha1: 38804233a29aaf975d557fe14e762c627bef76e0 Sha256: 115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/montserrat/v24/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Size: 12708 Md5: c2a023838175cc9990e4f9a8e3ef341b$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12708 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:15:48 GMT expires: Wed, 28 Jun 2023 17:15:48 GMT cache-control: public, max-age=31536000 age: 412377 last-modified: Tue, 26 Apr 2022 14:37:36 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Size: 12708 Md5: c2a023838175cc9990e4f9a8e3ef341b Sha1: 61d8759dbe3e921dee73c41d8b0646a0b06ebdbb Sha256: 59d09721ef5d6a8a6aa8cf8100a1eaa2ef1644bd196fc1a788ad31e16a505734
GET /s/montserrat/v24/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 12804, version 1.0\012- data Size: 12804 Md5: eb7d03ac4d0688b70a1b20d09ddac526$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12804 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 28 Jun 2022 17:14:56 GMT expires: Wed, 28 Jun 2023 17:14:56 GMT cache-control: public, max-age=31536000 age: 412429 last-modified: Tue, 26 Apr 2022 14:39:58 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 12804, version 1.0\012- data Size: 12804 Md5: eb7d03ac4d0688b70a1b20d09ddac526 Sha1: 3664d3efad896b6280b3737d21d3b63ce65a80a8 Sha256: 1efb6b34aee777f657af03fc18ab7ec444bcb7025b175edbd489c3c984035f34
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 334d91ba472c54fd5eafb6b129bce0b7 Sha1: c7ab329648d0afa86a127c18ae236fdba080be4c Sha256: 8d4b7dec0d711308c68a1aa5e6e23c798bb0845997ca751e4ddc5f2d6b5381fe
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 334d91ba472c54fd5eafb6b129bce0b7 Sha1: c7ab329648d0afa86a127c18ae236fdba080be4c Sha256: 8d4b7dec0d711308c68a1aa5e6e23c798bb0845997ca751e4ddc5f2d6b5381fe
GET /css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 03 Jul 2022 11:48:44 GMT date: Sun, 03 Jul 2022 11:48:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 942 Md5: 362530090e56302ea1a88b0eee6fc604 Sha1: 716536a69d6bf168ae16a8581a166c631998545e Sha256: 94af8064450f16210fb64e8eac156545a5e3f66f94998d13152ed097cacd4542
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=146402 Date: Sun, 03 Jul 2022 11:48:45 GMT Etag: "62c10227-1d7" Expires: Tue, 05 Jul 2022 04:28:47 GMT Last-Modified: Sun, 03 Jul 2022 02:42:47 GMT Server: ECS (nyb/1D20) X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: N21MFnkzFHUcmzcWSwIH0ohhsDDjXFSQuxsJ1jsAzvFWek9FuyBLGg== Age: 6360 --- Additional Info --- Magic: data Size: 471 Md5: 0bfd31d049656acbb231b94d97111f56 Sha1: 765cf05c0b7932efcc278d36b15f7fdea9a6c291 Sha256: 9972e02909bc1a40ef651057de549fc0d01fc7d6364c872930fc96e30013cc25
GET /recaptcha/api.js?_=1656848925633 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.164 HTTP/2 200 OK expires: Sun, 03 Jul 2022 11:48:45 GMT date: Sun, 03 Jul 2022 11:48:45 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 552 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (850), with no line terminators Size: 552 Md5: 00ff0428801937984aafe2651afd9233 Sha1: 2aaa4a675188b3597e42f22836fbcf90f0453675 Sha256: 20fb3d5aa68e643049e8473446df82c45f5793a29f27db526daed8719e0d425e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:45 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 58c9a905ba0e63a0f49ea7b68213f8f7 Sha1: 33ea5222c1ec8c766b30ceba68b14ae8f74da9bb Sha256: 9ba366f9beb7d4a29126acdfa6e9d789590a0b6ae995b80eba19f0297e507b22
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://verifikasiiidentitas2022.weebly.com/ Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	52.41.81.16 HTTP/2 200 OK date: Sun, 03 Jul 2022 11:48:45 GMT content-length: 0 server: nginx access-control-allow-origin: https://verifikasiiidentitas2022.weebly.com access-control-allow-credentials: true access-control-allow-headers: Content-Type, SP-Anonymous access-control-max-age: 5 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.8ad7=*; _snow_id.8ad7=7c826eb7-82e9-4ed2-ab5b-995c6c187207.1656848926.1.1656848926.1656848926.7b9ded88-672a-44e2-908b-265cf4bae0f5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	$Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: image/x-icon Server: nginx Date: Sun, 03 Jul 2022 11:48:46 GMT Content-Length: 4286 Connection: keep-alive Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT x-rgw-object-type: Normal ETag: "4d27526198ac873ccec96935198e0fb9" x-amz-request-id: tx000000000000001b2998c-006284778e-b9fbc63-sfo1 X-Storage-Bucket: z40a2 X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 X-Host: blu19.sf2p.intern.weebly.net Accept-Ranges: bytes --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size: 4286 Md5: 4d27526198ac873ccec96935198e0fb9 Sha1: b98d8b73ad6a0f7477c3397561b4aab37bf262aa Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 Alerts: Blocklists: - openphish: Facebook, Inc.
GET /recaptcha/releases/4rwLQsl5N_ccppoTAwwwMrEN/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	142.250.74.163 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 146545 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 01 Jul 2022 18:51:46 GMT expires: Sat, 01 Jul 2023 18:51:46 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Jun 2022 04:02:51 GMT content-type: text/javascript age: 147419 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (618) Size: 146545 Md5: edbca8e066da9cd6310dada3c125ccf4 Sha1: 22f45ed309e828212484a03cc7d0e629834e8a76 Sha256: fcab033160e1ba423ad7a42e0bd67ec5820e1ed6751765de935960e502e623f0
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 Host: verifikasiiidentitas2022.weebly.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 83 Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.8ad7=*; _snow_id.8ad7=7c826eb7-82e9-4ed2-ab5b-995c6c187207.1656848926.1.1656848926.1656848926.7b9ded88-672a-44e2-908b-265cf4bae0f5 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	$Magic: JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size: 348 Md5: a944dd688c99d2901d6719be713271c0$ 199.34.228.53 HTTP/1.1 200 OK Content-Type: application/json Date: Sun, 03 Jul 2022 11:48:46 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: grn108.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 348 Keep-Alive: timeout=10, max=54 Connection: Keep-Alive --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size: 348 Md5: a944dd688c99d2901d6719be713271c0 Sha1: 4f5454d5d434829baf46671638610791758725d9 Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49 Alerts: Blocklists: - openphish: Facebook, Inc. - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 232e4a3508854795a20fba8c00190a29 Sha1: af408f331e1d452c03edf0163c994202b0b04211 Sha256: e094102b87f88dd0869aa3bf289457d72580d135bccdd5b47d474f30b1fa6030
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7735 Expires: Sun, 03 Jul 2022 13:57:41 GMT Date: Sun, 03 Jul 2022 11:48:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7735 Expires: Sun, 03 Jul 2022 13:57:41 GMT Date: Sun, 03 Jul 2022 11:48:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7735 Expires: Sun, 03 Jul 2022 13:57:41 GMT Date: Sun, 03 Jul 2022 11:48:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7735 Expires: Sun, 03 Jul 2022 13:57:41 GMT Date: Sun, 03 Jul 2022 11:48:46 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1807 Origin: https://verifikasiiidentitas2022.weebly.com Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	52.41.81.16 HTTP/2 200 OK date: Sun, 03 Jul 2022 11:48:46 GMT content-type: text/plain; charset=UTF-8 content-length: 2 server: nginx set-cookie: sp=6bec0ccb-09d3-45cf-b352-090084433ba8; Expires=Mon, 03 Jul 2023 11:48:46 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://verifikasiiidentitas2022.weebly.com access-control-allow-credentials: true X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 444bcb3a3fcf8389296c49467f27e1d6 Sha1: 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 7cd39809fa6bac4d3aebebe798838ba2 Sha1: 3245a3a54f902f442be7c93767f040eb84ee3b1e Sha256: feb42208c3d99db1af1cdc36d080117240720493d3259aa96b6040569e262b6b
GET /ga.js HTTP/1.1 Host: ssl.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.136 HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 17168 date: Sun, 03 Jul 2022 10:17:10 GMT expires: Sun, 03 Jul 2022 12:17:10 GMT cache-control: public, max-age=7200 age: 5496 last-modified: Wed, 13 Apr 2022 21:02:38 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1305) Size: 17168 Md5: 01d5892e6e243b52998310c2925b9f3a Sha1: 58180151b6a6ee4af73583a214b68efb9e8844d4 Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 03 Jul 2022 11:48:44 GMT date: Sun, 03 Jul 2022 11:48:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 9199 Md5: deaca03794df2809253adf3cf4f1484c Sha1: cc3e7959870f0dfb888803f6234f8a4d3af991c4 Sha256: 91487de8867082835fbbc30a8b0cd89ddc0aef7150d49032bd8d0d36b18992ce
GET /css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://verifikasiiidentitas2022.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 03 Jul 2022 11:48:44 GMT date: Sun, 03 Jul 2022 11:48:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 7729 Md5: ffa7956744e5cdb696f2a59642d98cbc Sha1: dae0087718a567f7c18fe7f788634f510a6e23fa Sha256: bc7851c2ce0fc32091acbe499bcb60838a47b6d9fda2371db8a9f66104c97bb0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8609313-2166-40d9-90ec-6341379c3fee.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7338 Md5: 432a79bdc37c3a8426f75c44b7ee239b$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7338 x-amzn-requestid: 869697e6-0d3d-494f-9bd4-599ba8fb82b0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UhCw0HRyIAMFw8w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bd1805-57e7ce3e54cc61c8719cc84b;Sampled=0 x-amzn-remapped-date: Thu, 30 Jun 2022 03:27:01 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: pVdbsBmFW9hqJSM-RLiz9AfblZPeK-PvP8Nyj6G1_xBQ-EOo0nfpAA== via: 1.1 6328d32449cd285f3f7c7b3c41dbe9ac.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Sun, 03 Jul 2022 07:25:50 GMT age: 15776 etag: "c0a0f3da9a66c00197d4135196b6685ff977ba3c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7338 Md5: 432a79bdc37c3a8426f75c44b7ee239b Sha1: c0a0f3da9a66c00197d4135196b6685ff977ba3c Sha256: 4c7ebcf38e0bf5c4c4bbd97a5f02ea76e21e1812595980100b39158e5af96bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c97a45-9072-4fac-84b3-a7c1dccc7ed9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7820 Md5: 27d70fd408502fae2c7f4bc35d3399b0$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7820 x-amzn-requestid: 33d023ab-1554-4f91-8c7a-c46a79f5947d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeP9QGFFIAMFn2g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbf9ee-5466f7b04561e6ab548ec9a0;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:22 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: b9zZ-zlLBng1jtbak2rQ-IG5RtUPR3K0EU4z298TzqH9q-V_8DAl0Q== via: 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 21:04:48 GMT age: 53038 etag: "228ea63d5d888e3b60c5da9d87c558bb4d269028" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7820 Md5: 27d70fd408502fae2c7f4bc35d3399b0 Sha1: 228ea63d5d888e3b60c5da9d87c558bb4d269028 Sha256: 13e88146f01a851d089f8b2519f637a106e12d29f6a9d2cb6d3f27cbfd3dc274
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e713d79-0b04-4c97-97dc-cb4d75177793.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7830 Md5: fe985a82bb86a8713835ae05d8f4ba73$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7830 x-amzn-requestid: 48ec2221-6c19-4903-9f86-03a2149b7535 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UXpzpEEfoAMF0QQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b9567d-28ef2a266b7f89450d3b8a1e;Sampled=0 x-amzn-remapped-date: Mon, 27 Jun 2022 07:04:29 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: q5e4ZmEXMoubGc1VdXAdd-ct85XvfXXG_x-vwlF8DaH7Dp_SazaATw== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 19:57:03 GMT age: 57103 etag: "186170c73ed22db33a3bd376a67a656f52433c73" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7830 Md5: fe985a82bb86a8713835ae05d8f4ba73 Sha1: 186170c73ed22db33a3bd376a67a656f52433c73 Sha256: 81b345cf57e0f45ddda8e6f3e5df3f341d04997b49619d7f00a338bdbc476878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2189b33-2a7f-4855-bf26-2a2141a3c2af.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12710 Md5: 1664f9d198d7f3bc50703cb9b9cd6001$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12710 x-amzn-requestid: b6ba1a4d-c56a-483f-be18-9d77ff931066 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UqIfuHyyIAMF7cg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c0baca-0f90e6cf7b53051055825cdb;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 21:38:18 GMT x-amz-cf-pop: SEA73-P2, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: wpNmVnYb8-wEAY52dm7tO4VRT583XcWISzmmIfiRNzapvu_mrg6-CA== via: 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 21:44:08 GMT age: 50678 etag: "2cdd2061cdb1e8d1243e549973f56d6322d9266f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12710 Md5: 1664f9d198d7f3bc50703cb9b9cd6001 Sha1: 2cdd2061cdb1e8d1243e549973f56d6322d9266f Sha256: 4e4543c8fe957cd6099fb3d6baa6025c78a8a50e4ec0c6747b2823619381a962
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 03 Jul 2022 11:48:46 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 232e4a3508854795a20fba8c00190a29 Sha1: af408f331e1d452c03edf0163c994202b0b04211 Sha256: e094102b87f88dd0869aa3bf289457d72580d135bccdd5b47d474f30b1fa6030