r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5235
Expires: Mon, 06 Feb 2023 17:07:51 GMT
Date: Mon, 06 Feb 2023 15:40:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8304
Expires: Mon, 06 Feb 2023 17:59:00 GMT
Date: Mon, 06 Feb 2023 15:40:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2605
Expires: Mon, 06 Feb 2023 16:24:01 GMT
Date: Mon, 06 Feb 2023 15:40:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 15:36:28 GMT
content-type: application/json
age: 248
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dvEpmvt1qDNl9G+owsH0/qHCpbx1EiMlYEMmm+Bm7SuKytQp4VjDIpgejqZSOYuN06rOpqZROrU=
x-amz-request-id: G2RYDVM36QDAGKR6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 15:24:59 GMT
age: 937
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
134.209.96.191301 Moved Permanently 162 B URL HTTP/1.1 solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /uiux/assets/css/login/auth/login.php?myaccount HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 06 Feb 2023 15:40:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:36 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 14:51:19 GMT
age: 2957
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15146
Expires: Mon, 06 Feb 2023 19:53:02 GMT
Date: Mon, 06 Feb 2023 15:40:36 GMT
Connection: keep-alive
push.services.mozilla.com/
52.10.3.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.3.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: T/dyKywWJalMi8y2m7/I8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Sbs2riAYZHkNNk/+P+schHQDJtA=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3641
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Last-Modified: Mon, 06 Feb 2023 14:39:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3552
Cache-Control: max-age=107021
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Etag: "63e010a2-117"
Expires: Tue, 07 Feb 2023 21:24:18 GMT
Last-Modified: Sun, 05 Feb 2023 20:25:06 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/moment.min.js?ver=154037
104.17.24.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/moment.min.js?ver=154037
IP 104.17.24.14:0
File type ASCII text, with very long lines (58823)
Hash 48342f85265e1ef95883b48352d8a901
4aca39aa1a6059cd73a3c6c8e8db6e704d5f6172
8d42979137cc37cb51593048aa96e73d7035948b75d4152fcd352052fb3c49ed
GET /ajax/libs/moment.js/2.29.1/moment.min.js?ver=154037 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 16919
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7c5ca4-e5ee"
last-modified: Tue, 06 Oct 2020 12:01:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1545735
expires: Sat, 27 Jan 2024 15:40:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYOo0WDoleFRfUClpRbb7G4JF%2F8HWSSqWBDpzYjAF6oL2y%2FUaiAfX7dnPtErkdXD1SL4VQMyRTyfarcbsFB8dUMCKZU71ZN4li34rDujHlJWN%2BnfcbinQ6gl%2BhH0C1uAz54jFMBO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7954fc3dba04b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=154037
104.17.24.14200 OK 666 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=154037
IP 104.17.24.14:0
File type ASCII text, with very long lines (1386), with no line terminators
Hash b8e89e3d496f42b6683e85c4490bd3d6
5576d394c1bda87f9b65bfe310e98ffc1faadd7d
d8280ec34d9683e83b11bd3c50f114fc1f659f08f9a97effae40166ac6a9a42c
GET /ajax/libs/moment.js/2.29.1/locale/id.min.js?ver=154037 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 666
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7c5cac-56a"
last-modified: Tue, 06 Oct 2020 12:01:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 95007
expires: Sat, 27 Jan 2024 15:40:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6NdMJgh8RFty2dAGG2mnu2YIabwSlATU7GvuKUricUMMMypNumxNNm5QeFGLDbPqJt0PHD8%2FqQnK29ztUnhRZkAbMUJPSYgy%2BpW8DHys%2FA4pf0qKtgr%2BuXhO4avSVrka%2FxQSR6Mp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7954fc3dba03b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-130934886-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-130934886-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash df59bed2d017fffe6ae9ddbffc8ab9f6
6332c4c7f1c0b420c4c05a1cd7caaa824501876c
25f04cd90bfb011fe9a0d39b10723667c362069646c6fba12f1c84544134988c
GET /gtag/js?id=UA-130934886-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 15:40:37 GMT
expires: Mon, 06 Feb 2023 15:40:37 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43930
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 370e74ead61664d84985db7a9087c0e4
7c55daf6c9231e1586a0c9d48375766e7f02405f
ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3641
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Last-Modified: Mon, 06 Feb 2023 14:39:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtm.js?id=GTM-MCCNN84
142.250.74.168200 OK 62 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MCCNN84
IP 142.250.74.168:0
File type ASCII text, with very long lines (2916)
Hash 2f110ecb19abeaf38e1907ef5d90d6d9
246bf488a297b4372c1a199d0d691176cd153ad5
9d41b0dac5e81baa39852bf09b2180fc0deb97f1b9a686b1a291cd61c821dff7
GET /gtm.js?id=GTM-MCCNN84 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 15:40:37 GMT
expires: Mon, 06 Feb 2023 15:40:37 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61660
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5
134.209.96.191200 OK 887 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash 241857a833edcd37981422b54b492f7a
f4c9db541834354fcf2b4c44f9d99e07917cfb53
15f65aa2a9a3f66c376b2571b6171d9b7a1d4f2051f227ce611583b45d272a66
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/jssocials.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:20:57 GMT
vary: Accept-Encoding
etag: W/"619e5859-51b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
134.209.96.191200 OK 7.6 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash c2afbcb780d74b97f07e8eb98cb0c1ee
5809bcf5825ccfb88a7fc7cfd6488176051f63ac
f565e2a563764db16995f724bbfd1dd9d772e2f75aaee77217985f86e958261e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:05:55 GMT
vary: Accept-Encoding
etag: W/"619e54d3-7918"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0
134.209.96.191200 OK 950 B URL HTTP/2 solusipeduli.org/wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash a87665f8d1050fbac8ce74bbb08b48a9
94c7712af975d19d86260816eff4c2c876b9599f
9ddd70496e037086954011c8367eeb36031bf8076596797ba577145799e56bf9
GET /wp-content/plugins/sign-in-with-google/src/public/css/sign-in-with-google-public.css?ver=1.8.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Mon, 11 Apr 2022 05:14:01 GMT
vary: Accept-Encoding
etag: W/"6253b919-3a5"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
134.209.96.191200 OK 32 kB URL HTTP/2 solusipeduli.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash e97f0af0cd0c6aeafa687b294e4ebe7d
b0599c0c7e386efe43fe2494e35a5e4c47bd77f3
557bd6eb496e0bde3de801bb631602e13e51ea8d1fce1408326013b24a82bf6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:23 GMT
vary: Accept-Encoding
etag: W/"61a05277-15db1"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11283
Expires: Mon, 06 Feb 2023 18:48:41 GMT
Date: Mon, 06 Feb 2023 15:40:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0f48a44e1aece8d271028a7b0684cac
9f7247a3bb9248cd281c568ebba6e52b38b00149
0a34b5dc66f170403e79b2315a7cacef1703ce3777a20914525f86d46c0cd637
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3e78aa-f2de-4a48-82bf-952d0a22f875.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11481
x-amzn-requestid: b50de2d1-c23b-4908-8fc3-e84eea0382a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRFL-oAMFnSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-0254cda141886e0f39e8f8b3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KIJ6iTpVC0gVV6Q0dd_-ZTWkwm3q0vP52N3088Rd7O9pb8D39XfnBg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 64235
etag: "9f7247a3bb9248cd281c568ebba6e52b38b00149"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 64229
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 64235
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dbe304b5138a360ff07a9842bcf6a7f
00572f7667e322c9ef34bc35b7998c1c172dd34c
d63c58d6c96e23c61b92272de8c2aab01f4cf85f3420cc434c05447d355b1c77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: 47a7d6da-229b-4fcc-a2c0-823f9c5e4224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f0QLAGXgoAMFv6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de60ac-5b8ee53114e58a056306067f;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 13:42:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6oyg-X-GTV3HeKzW4a6Sa99JNjWcZFnE8okoqeAtp6ZgkTKCDtSoAw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:46:53 GMT
age: 64425
etag: "00572f7667e322c9ef34bc35b7998c1c172dd34c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FRZf4nkQyttwihy5BBbuHzT9lYQvBPqcOTdT5esu46vqMTvXAi5aQw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 18:39:44 GMT
age: 75654
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6107217bc206ebf204dfcf832cffc04
4f370e81106ef09ce9294eaa074ff6922197ded0
2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZRVPNp0hKlSBXYjgbVfF8MGqNMHCKF2T4fAqflvZz8z-Uy9bKR9HhA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:18:54 GMT
age: 30104
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png
134.209.96.191200 OK 7.2 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 0292d292ab80dc14a126335c0bec1b27
9c137697d2124c3798344e5804b67a67e401d191
350d76a80ed3f7fb8c5223a3f4bb5af600ba7b81f10ba345a505d30027ef60f2
GET /wp-content/themes/solusipeduli-mobile/assets/img/favicon/android-icon-144x144.png HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: image/png
content-length: 7201
last-modified: Wed, 24 Nov 2021 15:14:52 GMT
etag: "619e56ec-1c21"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq
23.36.79.32200 OK 1.3 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2665)
Hash 575e7466b5d7ab5a58c27bfb3542be99
d708324b396a0c06c470b55fa1b99822186964f6
7258dce0673e80b8fe6f77493974226041a4e770d7081c1609cf70658f91a834
GET /i18n/pixel/events.js?sdkid=C90K4QE6LEB679H46CPG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202302061540388CCCB340EBE52B5E0684
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1197c7a24f18ebfcb4efb1f877a557ab1dfda609c3cc0ea6e9bb7066ccd8b0a4848d6337b379ced30ab17ce114c048772ea4482b0ebb427a1db604a4137a3145e
content-encoding: gzip
expires: Mon, 06 Feb 2023 15:40:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Feb 2023 15:40:38 GMT
content-length: 1319
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LN47QLMKGLCacP74vv6VfZk7pw; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=0, origin; dur=101
x-origin-response-time: 101,23.36.79.28
x-akamai-request-id: 1e4eaf4b
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
23.36.79.32200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 09e9bdc02bd94387901641c0b3a1f8f0
7bf30498ae27e11f7fc60b438b090f15b67ca113
d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LN47QLMKGLCacP74vv6VfZk7pw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
date: Mon, 06 Feb 2023 15:40:38 GMT
content-length: 68605
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
x-akamai-request-id: 1e4eb077
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LN47QLMKGLCacP74vv6VfZk7pw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Mon, 06 Feb 2023 15:40:38 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1e4eb133
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 812
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Cookie: _ttp=2LN47QLMKGLCacP74vv6VfZk7pw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302061540380BE079DC63CD685EB85D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1ba46ab71339159a9bd6f8a94934234df2525afa95c2f30282bc24a103beb7a3c287ceb69e2c14ed867ae3b34d9511336e0fad895ca297f9e186fac613661bd5f
expires: Mon, 06 Feb 2023 15:40:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Feb 2023 15:40:38 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=18, cdn-cache; desc=MISS, edge; dur=4, origin; dur=115
x-origin-response-time: 115,23.36.79.28
x-akamai-request-id: 1e4eb15e
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 06 Feb 2023 13:45:20 GMT
expires: Mon, 06 Feb 2023 15:45:20 GMT
cache-control: public, max-age=7200
age: 6919
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Last-Modified: Mon, 06 Feb 2023 13:52:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
solusipeduli.org/wp-includes/js/clipboard.min.js?ver=5.9.5
134.209.96.191200 OK 4.3 kB URL HTTP/2 solusipeduli.org/wp-includes/js/clipboard.min.js?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash b992f39b355e7a3f4930d6ad1ac0ab25
391aedc2e25dc359932eae9123071aafade59807
68333a4bdcfebb89ca3a149b0afec1bbc64292d308c8c52f98f01005db4031d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/clipboard.min.js?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:02 GMT
vary: Accept-Encoding
etag: W/"61a05262-296f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=584711485&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1607173391&gjid=1539825511&cid=216742724.1675698085&tid=UA-130934886-1&_gid=628101232.1675698085&_r=1&_slc=1>m=457e3210&z=2142140622
142.250.74.46200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=584711485&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1607173391&gjid=1539825511&cid=216742724.1675698085&tid=UA-130934886-1&_gid=628101232.1675698085&_r=1&_slc=1>m=457e3210&z=2142140622
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=584711485&t=pageview&_s=1&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20SolusiPeduli.org&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1607173391&gjid=1539825511&cid=216742724.1675698085&tid=UA-130934886-1&_gid=628101232.1675698085&_r=1&_slc=1>m=457e3210&z=2142140622 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=154037
134.209.96.191200 OK 5.6 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash 39a584acc83acf02f8eb0b407c12d1fa
4e8118b0837b456d6589f85e67eb018c9e62d68f
746906ef7ce3ad8fbe634bc2482d1697658ec4966e037be41be99c7fa77a42fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/solusipeduli.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 04:20:01 GMT
vary: Accept-Encoding
etag: W/"63d0adf1-4cf3"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: W66L792nM8kMHQceRJpYkzTqU94WqAOTKYJZdJRGhklJN0sJdfxUcVWE1mBQHS1dPHl1hhyBvwfhcBsa6//HWw==
content-length: 27843
x-fb-trip-id: 1679558926
date: Mon, 06 Feb 2023 15:40:39 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Last-Modified: Mon, 06 Feb 2023 13:52:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DWCTA3_uZFU22VlQwrNkTt6vEB1PlgpFVOjTEokN12OVdrYhMixheQ==
age: 268233
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
134.209.96.191200 OK 77 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/font-awesome.min.css?ver=5.9.5
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i; _gcl_au=1.1.2117339757.1675698083
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:38 GMT
content-type: application/font-woff2
content-length: 77160
last-modified: Wed, 24 Nov 2021 14:50:01 GMT
etag: "619e5119-12d68"
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=154037
134.209.96.191200 OK 72 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash ce98a9c1c8597ca277053844849411f6
7a0c4d23a2bb73eb36ecec09ef37578fb30e5965
7401876374278583b284b17a1ef5f01b77da45b23408d606573dfd963fd18d8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/simple.money.format.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:06 GMT
vary: Accept-Encoding
etag: W/"61a051ee-54b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=154037
134.209.96.191200 OK 3.5 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash 6860231e2e41657e7089a00460bb2ed8
b29426dc5031e6f597c98f292389ad8dcef2b7fb
8aac468dad67174554049a19703c3d626ce011a8ad47c5686d88ae11d647800a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/jssocials.min.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-2264"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=495838360&gjid=1219842605&_gid=628101232.1675698085&_u=YEDAAUABAAAAACAAI~&z=1569697890
64.233.165.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=495838360&gjid=1219842605&_gid=628101232.1675698085&_u=YEDAAUABAAAAACAAI~&z=1569697890
IP 64.233.165.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=495838360&gjid=1219842605&_gid=628101232.1675698085&_u=YEDAAUABAAAAACAAI~&z=1569697890 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=1607173391&gjid=1539825511&_gid=628101232.1675698085&_u=YEBAAUAAAAAAACAAI~&z=42606802
64.233.165.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=1607173391&gjid=1539825511&_gid=628101232.1675698085&_u=YEBAAUAAAAAAACAAI~&z=42606802
IP 64.233.165.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130934886-1&cid=216742724.1675698085&jid=1607173391&gjid=1539825511&_gid=628101232.1675698085&_u=YEBAAUAAAAAAACAAI~&z=42606802 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://solusipeduli.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675698083113&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3504412418&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/757309559/?random=1675698083119&cv=11&fst=1675695600000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&tiba=Page%20not%20found%20-%20SolusiPeduli.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4282666099&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 15:40:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 13c11bf978a848b4b66626cad6c40934
88432642b0d51e3ba20182a79ce1124e9f41f62c
2c4215e1ee11284b83c109f04998a95f7786a2d2c45d4a40afe4c5afe0ba4854
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 06 Feb 2023 15:40:39 GMT
Last-Modified: Mon, 06 Feb 2023 14:32:44 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4cFgi-VCYypXPXjB__reqv7tNQFCLBlqoyiSpZM8ej3N7FerIIZ6eg==
Age: 4075
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=154037
134.209.96.191200 OK 17 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash 64ade8c683880ca7e267dd1042404ebc
ba66fb71929d104de1123e372200db5ca04a0a0b
6404b4e0a03455330c2b45c5d167695730d94c51ba52112c32cdb81709a8a1a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/popper.min.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-5309"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=154037
134.209.96.191200 OK 1.5 kB URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Hash a91e8bb2dcaa8689963c2dc10af71941
d37de33bc108ed377a203a86d8ff80e2a24707f3
9ed1238ff27fa785511a32d3d8eb16312d404c95a86c7917e029dd2e6231fb5f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/dropdown-bootstrap.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-369"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash ef602c84b4b46b55175b85a170f30840
b19b32cc70354d80ada4102e55411abcd7e03c65
67af1488ab44f14007dca97a2c9f73a96f71da0f489b3b3e28fa5d026439ac44
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91540
Date: Mon, 06 Feb 2023 15:40:40 GMT
Etag: "63dfca5c-1d7"
Expires: Tue, 07 Feb 2023 17:06:20 GMT
Last-Modified: Sun, 05 Feb 2023 15:25:16 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CQDgAtGAKdnmyp0LmKmjXBYzt8WoglhQm6GlCyvVsXtdLWNcv23RFg==
Age: 6064
www.facebook.com/tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085876&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085876&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=426250868253801&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085876&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22504448566851546%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22615936532297785%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22195887168369673%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221107897726215934%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%223022863451098028%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22536064130652206%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 15:40:40 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085879&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085879&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=204988793928567&ev=PageView&dl=https%3A%2F%2Fsolusipeduli.org%2Fuiux%2Fassets%2Fcss%2Flogin%2Fauth%2Flogin.php%3Fmyaccount&rl=&if=false&ts=1675698085879&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22122210349982967%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22IDR%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22610660336560376%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675698085876.462651146&it=1675698085110&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 15:40:40 GMT
X-Firefox-Spdy: h2
s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/qismo-v4.js
52.219.132.122200 OK 25 kB URL HTTP/1.1 s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/qismo-v4.js
IP 52.219.132.122:0
File type ASCII text, with very long lines (25131), with CRLF line terminators
Hash 7b1d06335ac82d4612ad5ff4248ff02b
100797c27fc22567d8097a9eb0b1d463a5254f26
319e7edfb7e35da625c0cd1e725679cb44d5fc54aa582673d6776f555f878c12
GET /qiscus-sdk/public/qismo/qismo-v4.js HTTP/1.1
Host: s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KelS7usKWqMKk3iMvGxECELV6yA3ZDoki3n/4lFleNY7oXChuJuXQm3AB6/09rxAqFKrR6So68s=
x-amz-request-id: 5BN4C7S1P5ABPEVB
Date: Mon, 06 Feb 2023 15:40:41 GMT
Last-Modified: Mon, 10 Oct 2022 07:16:55 GMT
ETag: "7b1d06335ac82d4612ad5ff4248ff02b"
x-amz-version-id: cujnlsiSGVHxIxaT.H4xNDpg5JReKrky
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 25171
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash bb7ed15288f4401eb690eac31c5e1eb1
dba7c98d0da28a44e07290033bd3b3486ffb2367
9e26392b77e7c81930b25c8c83c2269154d744e596f37a39141d49624f51f54d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 15:40:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 02:25:31 GMT
Expires: Tue, 07 Feb 2023 02:25:31 GMT
ETag: "dba7c98d0da28a44e07290033bd3b3486ffb2367"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash bb7ed15288f4401eb690eac31c5e1eb1
dba7c98d0da28a44e07290033bd3b3486ffb2367
9e26392b77e7c81930b25c8c83c2269154d744e596f37a39141d49624f51f54d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 06 Feb 2023 15:40:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 02:25:31 GMT
Expires: Tue, 07 Feb 2023 02:25:31 GMT
ETag: "dba7c98d0da28a44e07290033bd3b3486ffb2367"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
qiscus-sdk.s3-ap-southeast-1.amazonaws.com/public/qismo/qismo-v4.css
52.219.36.163200 OK 1.0 kB URL HTTP/1.1 qiscus-sdk.s3-ap-southeast-1.amazonaws.com/public/qismo/qismo-v4.css
IP 52.219.36.163:0
File type ASCII text, with very long lines (597), with CRLF line terminators
Hash 3b73e4783a55d0c67dc6a8f55c454e83
edcd06582e49a0ac96851549084be2d95ae1b6ea
3129039d4b075b9b5d68eb876bd579c895f9c8a8e839e19453cc298326e88008
GET /public/qismo/qismo-v4.css HTTP/1.1
Host: qiscus-sdk.s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 51dvf2EWq0bOmSYYiUvQEzmlS3QRftUvNyppR8WfSKvvWXu9/u3/11oXGX5CPD6G7KiNcbmqcko=
x-amz-request-id: AB3GCXANJGBBXDRE
Date: Mon, 06 Feb 2023 15:40:42 GMT
Last-Modified: Thu, 08 Sep 2022 00:50:26 GMT
ETag: "3b73e4783a55d0c67dc6a8f55c454e83"
x-amz-version-id: fc8jFHF0nRmJvXX2hY3vhuD34N0IPs2M
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 1039
qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
108.136.199.0200 OK 0 B URL HTTP/2 qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
IP 108.136.199.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083 HTTP/1.1
Host: qismo.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: app-version
Referer: https://solusipeduli.org/
Origin: https://solusipeduli.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:41 GMT
content-length: 0
server: nginx
access-control-allow-headers: *,Content-Type,Accept,App_Id,Qiscus-App-Id
access-control-allow-methods: POST, HEAD, GET, OPTIONS, DELETE, PUT, PATCH
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
x-request-id: F0FGfaAL86C-SXcBnXmi
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
X-Firefox-Spdy: h2
qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
108.136.199.0200 OK 1.5 kB URL HTTP/2 qismo.qiscus.com/api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083
IP 108.136.199.0:0
File type JSON data\012- , ASCII text, with very long lines (1509), with no line terminators
Hash 2a2ebe1396e2c27b22aa8d141844f64c
a33669023b60a05e967f1bf5991732e8b05786af
95b698c90fb6aea89c50be430bc31342a5f65e8b5030e5ec193bde1a6dab85a6
GET /api/v2/app/config/public-widget/sopur-5mrknfcwvnw3umj/127083 HTTP/1.1
Host: qismo.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
App-Version: undefined
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:42 GMT
content-type: application/json
content-length: 1509
server: nginx
access-control-allow-methods: POST, HEAD, GET, OPTIONS, DELETE, PUT, PATCH
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
x-request-id: F0FGfbHTE-1utr0BndDi
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 238e3b3da3c5f9dfcd05a10d883f6f77
6259537ede557d0a5b9631a811e8c10ca9e1186f
00659bc97459b1b03136ec42a3cb28f2959b3ed97aa401ac10436d0059479a0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3968
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:42 GMT
Etag: "63dea5b7-117"
Last-Modified: Mon, 06 Feb 2023 14:34:34 GMT
Server: ECS (amb/6B7A)
X-Cache: HIT
Content-Length: 279
s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/img/icon-qiscus-widget-default.svg
52.219.132.122200 OK 707 B URL HTTP/1.1 s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/img/icon-qiscus-widget-default.svg
IP 52.219.132.122:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (335)
Hash 76be5df915ae93cb4d20af3bdd1140ed
b8acebe164e72cbbd2dbfb815c19ad87d1031ee2
0c56c9180bdfcc9494562c1cb5068bb39407445089225386247c6c02a8b9a66b
GET /qiscus-sdk/public/qismo/img/icon-qiscus-widget-default.svg HTTP/1.1
Host: s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lDl/kZ965yZ0fiElqEBjE60zwj6kQl522dq067bH5YxbfzhNjGVJAP8hZVCBRnE/u2axeNGffCQ=
x-amz-request-id: YAHXEK7BVC1PJ5Y7
Date: Mon, 06 Feb 2023 15:40:43 GMT
Last-Modified: Wed, 15 May 2019 22:54:31 GMT
ETag: "76be5df915ae93cb4d20af3bdd1140ed"
x-amz-version-id: t975kRqKK2hBP4WLGd6FVIHJAT0DaqIp
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 707
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 238e3b3da3c5f9dfcd05a10d883f6f77
6259537ede557d0a5b9631a811e8c10ca9e1186f
00659bc97459b1b03136ec42a3cb28f2959b3ed97aa401ac10436d0059479a0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:42 GMT
Etag: "63dff735-117"
Server: ECS (amb/6B89)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 111 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Size 111 kB (111212 bytes)
Hash 865e3ecc07f01c87557c742be3a959bc
182e2278482fd964eb6a73dee3cb3fe45d836756
398e1d43573df63f4a9c4960568e2545bdd2b5286e3a82e9552e567115e735b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2122
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:42 GMT
Last-Modified: Mon, 06 Feb 2023 15:05:20 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/img/close-circle.svg
52.219.132.122200 OK 332 B URL HTTP/1.1 s3-ap-southeast-1.amazonaws.com/qiscus-sdk/public/qismo/img/close-circle.svg
IP 52.219.132.122:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash e7c7ac0d8a1768214e040a50347d6048
da32bed1dc5336e5269460b92cc89f424a4d3247
9e37f1f36566214b023d5d3cb910a48a7fa687747919805503d8074c78068a8c
GET /qiscus-sdk/public/qismo/img/close-circle.svg HTTP/1.1
Host: s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gOnu9U/Y0zTxOQFRXBfaIw/Ccou414trZOWER9IYsmHM2D5En5tCRbxSlANU2vWODA3o96y7FUI=
x-amz-request-id: YAHNETZEWYY9BHA8
Date: Mon, 06 Feb 2023 15:40:43 GMT
Last-Modified: Thu, 09 May 2019 20:44:58 GMT
ETag: "e7c7ac0d8a1768214e040a50347d6048"
x-amz-version-id: PTadylMKoSEQzk84K.UwDrxLK2ixtKVD
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 332
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b71f4819ebb37d53eca0d2afbb22bbd7
d3c5adf4a9401e15a2abdf65d3f91fac46600ab4
619317d59e2c2cf6946f8bfea7799bed642756bc628b2998e1fcacd35d6cf893
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2122
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 15:40:42 GMT
Last-Modified: Mon, 06 Feb 2023 15:05:20 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
multichannel.qiscus.com/js/purify.min.js
172.67.73.39200 OK 44 kB URL HTTP/2 multichannel.qiscus.com/js/purify.min.js
IP 172.67.73.39:0
File type ASCII text, with very long lines (16054)
Hash 990ace9079c0e395d9c351980f639495
9555ed2516de09f5fcb3c0bf8fcdfe5ccdfe1b39
42a851872bd7363723193693b2cacf28b4e4c243226ce02cc5c8db550f47584a
GET /js/purify.min.js HTTP/1.1
Host: multichannel.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://multichannel.qiscus.com/iframes/sopur-5mrknfcwvnw3umj/welcome-message?avatar_url=https://d1edrlpyc25xu0.cloudfront.net/kiwari-prod/image/upload/Ri-pxHv6e1/default_avatar.png&cs_name=CS%20Human%20Initiative&welcome_text=Welcome
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:43 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: ALLOW-FROM SAMEDOMAIN, *.barantum.com, *.qontak.com, *.uidesk.id, *.halosis.id, *.teams.microsoft.com, teams.microsoft.com, *.skype.com
x-content-type-options: nosniff
referrer-policy: same-origin
content-security-policy: frame-ancestors 'self' *.barantum.com *.qontak.com *.uidesk.id *.halosis.id *.teams.microsoft.com teams.microsoft.com *.skype.com
permissions-policy: geolocation=(),fullscreen=(self)
access-control-allow-origin: *
access-control-allow-headers: *
last-modified: Thu, 05 Nov 2020 03:37:56 GMT
etag: W/"3f94-5b353d257c103-gzip"
vary: Accept-Encoding
cache-control: public, max-age=691200
x-xss-protection: 1; mode=block
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=epgxPobxApgN3Uy%2FyrYloei0yDHzCCmoY%2Fz4Ki16rLCajq%2Fc3%2BYtEXKShaOQDFIdU2De9lb%2FYGca78mw0bqPn9nzrc6DuAN%2BOB1TAgYMxm%2FqASTCwHOjskJdBxqUDIddFi%2B6TfDZbGSD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7954fc5eae11b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
multichannel.qiscus.com/iframes/sopur-5mrknfcwvnw3umj/welcome-message?avatar_url=https://d1edrlpyc25xu0.cloudfront.net/kiwari-prod/image/upload/Ri-pxHv6e1/default_avatar.png&cs_name=CS%20Human%20Initiative&welcome_text=Welcome
172.67.73.39200 OK 0 B URL HTTP/2 multichannel.qiscus.com/iframes/sopur-5mrknfcwvnw3umj/welcome-message?avatar_url=https://d1edrlpyc25xu0.cloudfront.net/kiwari-prod/image/upload/Ri-pxHv6e1/default_avatar.png&cs_name=CS%20Human%20Initiative&welcome_text=Welcome
IP 172.67.73.39:0
GET /iframes/sopur-5mrknfcwvnw3umj/welcome-message?avatar_url=https://d1edrlpyc25xu0.cloudfront.net/kiwari-prod/image/upload/Ri-pxHv6e1/default_avatar.png&cs_name=CS%20Human%20Initiative&welcome_text=Welcome HTTP/1.1
Host: multichannel.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:42 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
access-control-allow-origin: *
access-control-allow-headers: *
cache-control: no-cache, private, public
set-cookie: qismo_session=eyJpdiI6IlBPeXRZU1VnT2hjYVNneTVzWEhyQ2c9PSIsInZhbHVlIjoiR3pGMGtOck1SVHBMWU1wQUF5dElWWGVxbVpzb2FcL0FnMXVZakgxcGQrY2U5U3Q2WmxlakVxOHhKMHozQWp5SXciLCJtYWMiOiI3MTAzNTFlMmFlZGFlYTQyYmI3ZWE4YjAwZGEyOGZmNzViNDA2MDRiNzI2ZTcxNTE1NTQ4ZjkyNDhjMWFjYTE0In0%3D; expires=Mon, 06-Feb-2023 17:40:42 GMT; Max-Age=7200; path=/; httponly
vary: Accept-Encoding
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCIMbxAkwieTCUasZ3pK8MwEEh5WfNIqbCb%2Fcgi3eVs%2BUw%2F1bK0ecJxBl9%2F3YANCRvZ75nqOh09dwywajn%2BJ%2F9Ioq665WAw8GCVMtw8ulO0C80isCaz%2BpAOuP81rmUGoOHLkg41HZbM7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7954fc5bf9cab50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/icon?family=Material+Icons
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons
IP 142.250.74.106:0
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 15:40:37 GMT
date: Mon, 06 Feb 2023 15:40:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/style.min.css?ver=1 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 11:07:02 GMT
vary: Accept-Encoding
etag: W/"6374c456-671"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/style.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 14:57:22 GMT
vary: Accept-Encoding
etag: W/"619e52d2-1c5"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap-reboot.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 15:00:16 GMT
vary: Accept-Encoding
etag: W/"619e5380-f57"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=154037
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/jquery-3.3.1.min.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Sun, 05 Dec 2021 03:57:05 GMT
vary: Accept-Encoding
etag: W/"61ac3891-1538f"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
134.209.96.191404 Not Found 0 B URL HTTP/2 solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /uiux/assets/css/login/auth/login.php?myaccount HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://solusipeduli.org/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
unpkg.com/vue-select@latest/dist/vue-select.css
104.16.126.175302 Found 0 B URL HTTP/2 unpkg.com/vue-select@latest/dist/vue-select.css
IP 104.16.126.175:0
GET /vue-select@latest/dist/vue-select.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 06 Feb 2023 15:40:42 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /vue-select@3.20.2/dist/vue-select.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRKNMHY5Y69VTAXX2CZ298CA-fra
cf-cache-status: HIT
age: 569
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7954fc604f84fabc-OSL
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=154037
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/solusipeduli.min.css?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 25 Jan 2023 04:19:46 GMT
vary: Accept-Encoding
etag: W/"63d0ade2-709b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans:400,400i,700,700i&display=swap
IP 142.250.74.106:0
GET /css?family=PT+Sans:400,400i,700,700i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 15:40:37 GMT
date: Mon, 06 Feb 2023 15:40:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:20:23 GMT
vary: Accept-Encoding
etag: W/"61a05277-2bd8"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=154037
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/bootstrap.bundle.min.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Fri, 26 Nov 2021 03:18:59 GMT
vary: Accept-Encoding
etag: W/"61a05223-13b3a"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/1931951/visit-data?sv=6
99.80.223.252200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1931951/visit-data?sv=6
IP 99.80.223.252:0
POST /api/v2/client/sites/1931951/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 116
Origin: https://solusipeduli.org
Connection: keep-alive
Referer: https://solusipeduli.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:40 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=154037
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=154037
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/js/progressbar.min.js?ver=154037 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Sun, 05 Dec 2021 03:55:01 GMT
vary: Accept-Encoding
etag: W/"61ac3815-580c"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 16:32:38 GMT
vary: Accept-Encoding
etag: W/"6272aaa6-145db"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/solusipeduli-mobile/mobile/assets/css/bootstrap.min.css?ver=5.9.5 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: text/css
last-modified: Wed, 24 Nov 2021 14:40:16 GMT
vary: Accept-Encoding
etag: W/"619e4ed0-26f1b"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1
134.209.96.191200 OK 0 B URL HTTP/2 solusipeduli.org/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1
IP 134.209.96.191:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown-click/script.min.js?ver=1 HTTP/1.1
Host: solusipeduli.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/uiux/assets/css/login/auth/login.php?myaccount
Cookie: PHPSESSID=ualnuvp8ik1p39ioino6ei879i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 15:40:37 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 11:07:02 GMT
vary: Accept-Encoding
etag: W/"6374c456-39d"
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
multichannel.qiscus.com/iframes/v4/sopur-5mrknfcwvnw3umj/widget-channel?titleForm=Hi,%20Sahabat%20Inisiator.Ada%20yang%20bisa%20kami%20bantu%20?&subtitleForm=Send%20us%20via%20favourite%20messaging%20apps
172.67.73.39200 OK 0 B URL HTTP/2 multichannel.qiscus.com/iframes/v4/sopur-5mrknfcwvnw3umj/widget-channel?titleForm=Hi,%20Sahabat%20Inisiator.Ada%20yang%20bisa%20kami%20bantu%20?&subtitleForm=Send%20us%20via%20favourite%20messaging%20apps
IP 172.67.73.39:0
GET /iframes/v4/sopur-5mrknfcwvnw3umj/widget-channel?titleForm=Hi,%20Sahabat%20Inisiator.Ada%20yang%20bisa%20kami%20bantu%20?&subtitleForm=Send%20us%20via%20favourite%20messaging%20apps HTTP/1.1
Host: multichannel.qiscus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://solusipeduli.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:42 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
referrer-policy: same-origin
permissions-policy: geolocation=(),fullscreen=(self)
access-control-allow-origin: *
access-control-allow-headers: *
cache-control: no-cache, private, public
set-cookie: qismo_session=eyJpdiI6InR2XC9CRitnQXB5VlNkc0Y5ZDBCbjBBPT0iLCJ2YWx1ZSI6Ik53NDVJV1lhU3lVeWp0cmZZdlFOZUlYYUo1M0c5a0ZsTnp4bGZpeVh5Tm53dDY5bldxQlpkNlNHMG56S2krVHIiLCJtYWMiOiI1ZDE2YmEzMzFiMzA3ZjY3NGZlOTM1MDhiNDZiODg0NjVmMDQ2ZGQ4NzE2OTA0ZjYyYjYwOWVkNzgxYzRmNzlhIn0%3D; expires=Mon, 06-Feb-2023 17:40:42 GMT; Max-Age=7200; path=/; httponly
vary: Accept-Encoding
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9pz0qdjubDMZCq5tMacC%2BN79l6tX5aCX5qidek6Qw910W9EX23YtDyJAiE1HL614pc4eTdXwx2Pq6mYtbqBoZkriCuYef6M4wMw49U3WMuKDsn0Fcx5mlN9xuM1%2BpXlb73ih7YcIhiMm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7954fc5d6c00b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
rsms.me/inter/inter.css
104.21.86.83200 OK 0 B IP 104.21.86.83:0
GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 15:40:42 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 04 Oct 2022 15:53:21 GMT
access-control-allow-origin: *
etag: W/"633c56f1-1490"
expires: Mon, 06 Feb 2023 15:00:24 GMT
cache-control: max-age=14400
x-proxy-cache: HIT
x-github-request-id: 5588:2FBA:333E62:34FE9C:63C9CD00
via: 1.1 varnish
age: 247
x-served-by: cache-bma1658-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674169601.655161,VS0,VE387
vary: Accept-Encoding
x-fastly-request-id: f7ce8876355570fa6830eecbffd3da9b1ca5f611
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9jLeQSH%2FLQnWBSGqzMUf3iTzxeWgXri7wWQejygD8I%2FxdXjAQzRg8utpPoCSkFA0T1v7rRflRr%2FVn%2FKm0dKiyJ31nwFeh8ltu%2BG60FcewYPcsgKo9wKyGrC1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7954fc605d3d0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2