Report - s.id/appealform

Report Overview

Submitted URL
s.id/appealform
IP
193.84.85.178
ASN
#59796 StormWall s.r.o.
Submitted
2023-12-05 11:40:15
Access
public
Website Title
“Oops, you are accessing a Forbidden Link!” What does that mean? - s.id
Final URL
blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
13
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
s.id	134714	2013-08-14	2014-12-04	2023-12-02	1.2 kB	619 B	193.84.85.178
static.zdassets.com	2154	2013-01-28	2018-06-24	2023-12-04	2.2 kB	295 kB	104.18.70.113
cdn-sdotid.adg.id	unknown	2021-12-09	2023-10-11	2023-12-01	445 B	40 kB	188.114.97.1
blog.s.id	unknown	2013-08-14	2018-06-15	2023-12-01	16 kB	1.1 MB	104.26.7.249
protagcdn.com	62031	2020-04-17	2020-04-17	2023-12-04	410 B	454 kB	104.26.6.142
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-12-05	3.1 kB	715 kB	142.250.74.168
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2023-12-05	494 B	94 kB	104.16.57.101
home.s.id	488728	2013-08-14	2018-08-25	2023-12-04	917 B	110 kB	104.26.7.249
www.google.no	25607	2001-02-26	2016-04-05	2023-12-05	574 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-12-05	1.7 kB	842 B	216.239.34.36
ekr.zdassets.com	2396	2013-01-28	2018-06-14	2023-12-05	466 B	1.6 kB	104.18.70.113

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-05 11:40:02	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:02	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:02	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:02	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:04	low	Client IP	193.84.85.178	ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)
2023-12-05 11:40:04	low	Client IP	193.84.85.178	ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)
2023-12-05 11:40:04	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:04	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:05	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:05	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:06	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:06	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-12-05 11:40:06	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-03	medium	s.id/appealform	Generic/Spear Phishing

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js	141 kB	2023-07-05	2024-07-23
Pretty URL blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-05 18:11:31 Last Seen2024-07-23 01:05:22 Times Seen464 Hash 194ab7bb7a4a8d1e761df383d5d94f5d 7c8dcee0016a936b0ad8f1e9fa93d6d89d53a1b7 b1e0354048342615ee678931bb922fcb098fc4f42b3edae6df7624a2b812fb95 Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	13 kB	2023-04-05	2024-07-27
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46:03 Last Seen2024-07-27 06:38:22 Times Seen36057 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	196 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen434 Hash c98323db1bef176960d2b1950e0800fd c3a3c7d59a039b6194c714e0af1aa73911ebd01d 5496584f2fe4ce363c48545e26b6c7756cb8399ccc481157002e175ba144422c Loading...

	www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK	246 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 12:40:17 Last Seen2023-12-05 12:40:17 Times Seen2 Hash d696c8cb82b1c84315a744cf752d1394 c29f2aea5f31e05d5e76c012ada8c3cf9e972131 ff6844c556c930b5538883c7f31c3253d9e61e40a5bbc8fc2fec82b94e69ff7c Loading...

	blog.s.id/post/2022/05/19/sandbox%20eval%20code	136 B	2023-04-11	2024-07-27
Pretty URL blog.s.id/post/2022/05/19/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-07-27 06:38:23 Times Seen37229 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_buildManifest.js	998 B	2023-12-01	2023-12-07
Pretty URL blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_buildManifest.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 18:04:57 Last Seen2023-12-07 06:47:07 Times Seen17 Hash bab549f229f4018f3970aa8d58af5202 fba3cb498219029c601f8c825237df22c89fe0b9 615195f98c309c5e4a26709bf70a45b58652631504af76b2fd0cd125d88da621 Loading...

	blog.s.id/_next/static/chunks/68-d67cb6ef599605fc.js	14 kB	2023-12-01	2023-12-07
Pretty URL blog.s.id/_next/static/chunks/68-d67cb6ef599605fc.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 18:04:57 Last Seen2023-12-07 06:47:07 Times Seen30 Hash 55b3a321c6035408d6a4a6da259cf5de 1aea4cf10a14ec7f66259b4233dd5b9f04fe9398 256397cfe1a343f2b58feddea2c2a5cef61af2ab4e58d15194e497e981ccd26e Loading...

	protagcdn.com/s/s.id/site.js	453 kB	2023-07-18	2023-12-12
Pretty URL protagcdn.com/s/s.id/site.js IP 104.26.6.142 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-18 15:17:26 Last Seen2023-12-12 00:12:35 Times Seen176 Hash 7dd0a166e3dbf8eb7412ed6ec1ce2f8b c128faaa2b1d9c4bf9aef78d402833d7cd5b03ac 54358e6c0ca9fb0dc79a594d0f3e76d69127dc76899f83a1bdecbf7f81f59f5a Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	251 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen434 Hash 968e084e30b878c76ecc20cc4cc6472a 9a01eea90ba2c553da933d93b626bf2afc8c72bd ed14e6cc5bb7748e4223f42b08b919001c2f851002a821b369c718bea43a2924 Loading...

	unknown	236 B	2023-05-11	2024-06-12
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 12:15:07 Last Seen2024-06-12 10:50:39 Times Seen347 Hash 69b1d9624dd2b4afe3b1bbb3065b5604 db391c0e83bfb261be30fb17489be412bec71b3f 097c9819b553f9882d00aaca5acd161e47f7e8ad49e266f2dd234b87bc6ae948 Loading...

	www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF	250 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 12:40:17 Last Seen2023-12-05 12:40:17 Times Seen2 Hash 30793f9c51fb67a40d4c23ae98c722fb cbe977004d1949a9a7aba6998d8f814009b38f72 6405dc86af5a1103573a878640d099eaf5cfb7729365b3dcea218b6ae5e85f78 Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-deab6e1bfb9c4776677c.js	104 kB	2023-12-05	2024-02-01
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-deab6e1bfb9c4776677c.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 08:10:25 Last Seen2024-02-01 00:05:26 Times Seen82 Hash c9bcb89fd41dd7252d18168d3ebf7e49 4f833eed9a2a384cf6cab020cf3ccc111ad4e233 f5eb4ac3390920825c2f368d1fcfca6b0c998b80b75f7b970aab00363137c12d Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	247 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen434 Hash ec9604d9253043e4c7ea1655cfefbb31 96f618deb14181f0b85c6a518ba3e5dcb4d909ff fdd1eeb2bdbe7baaf66d5fba08c2145b14a49acc590d9f02c1f9d8c534633aca Loading...

	blog.s.id/_next/static/chunks/b7322211-fbdd2383fa168487.js	2.7 kB	2023-10-13	2023-12-17
Pretty URL blog.s.id/_next/static/chunks/b7322211-fbdd2383fa168487.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 17:02:13 Last Seen2023-12-17 14:57:33 Times Seen99 Hash ce402eb9cb6316a93e76666b47480c7b b1ed3bde02b87347eb11f7d3442fdd5a9e90ab9f 9fad61d7fe6d6bdb0f750648a45f17c71a1f1216fb2f636216be5b4be57d0158 Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	260 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen434 Hash 06b4795adbd64ddcd90f3d56f8b77cab 82e1f620412efa5e13c1666218f356113f9c136b e847d77bd3b904a315099c754caeafb93a6aa049a5f7386c252f0d9579d2db42 Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	224 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen434 Hash 5d3fad59fc126716231fd01bee254004 264df770cdff4f3ff4b54a280e53671e7b08d6a7 5a24aac7b928921204e217584dcea7740f14c86d961e6b30ff5219505cbeebcb Loading...

	blog.s.id/_next/static/chunks/pages/_app-0f590372828a3d5b.js	262 kB	2023-11-04	2023-12-07
Pretty URL blog.s.id/_next/static/chunks/pages/_app-0f590372828a3d5b.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-04 00:26:16 Last Seen2023-12-07 22:22:13 Times Seen58 Hash a9879a25db99749b2380ea9c90c0a953 98249a40068ae24f1aa54de8e0b545f3dd95d6d0 ebe9812114ec1b75ab721f01e51b8db8472d76916bf5a12455adc0ace94f665e Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	20 kB	2023-10-13	2024-07-26
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51:00 Last Seen2024-07-26 21:57:59 Times Seen28522 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f	10 kB	2023-08-09	2024-07-19
Pretty URL static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:38:33 Last Seen2024-07-19 23:27:58 Times Seen12045 Hash 42d94c325a0b012e41f9c3907853625a 567dbe8e0b61115deb7c33947f706d4e51c3ab49 9f22f6e9d4852f8be0706b62fbd0eba20f6cb56171def5e387b2d95fcd07df01 Loading...

	blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-f50dfd12dd1bf9bd.js	27 kB	2023-10-13	2024-03-01
Pretty URL blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-f50dfd12dd1bf9bd.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 17:02:13 Last Seen2024-03-01 12:11:32 Times Seen121 Hash 33145ee08af465cf87b84cbf44fd7c26 031a68c0e1964f3ace2484c24fa8c6cddc518c12 18889b6b7e9425d042a820d83d9ae7fca99127e2192317981767f5c35acceb7e Loading...

	blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js	2.2 kB	2023-03-08	2024-07-27
Pretty URL blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:47 Last Seen2024-07-27 02:55:32 Times Seen397 Hash 13f3ce7f63a3bb54204996d7f05c8248 50cc456b9ef205eafbd230802df942bc28c393fa febd258efb733049bebaeb24269fb6448aee953be138a3fbd7cb96bd63620727 Loading...

	blog.s.id/_next/static/chunks/main-ef060895a635bf59.js	98 kB	2023-07-05	2024-06-12
Pretty URL blog.s.id/_next/static/chunks/main-ef060895a635bf59.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-05 18:11:31 Last Seen2024-06-12 10:50:39 Times Seen455 Hash f2a13965bac13dd9035541241d134911 62994174100f29a1319140b6a06633d3f7d15123 345dd805b52864848882d8f89c24661f408925f549a626e5bcd33b6f072e146a Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	271 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen432 Hash c1058202d22ac09579022379d86826ee 1999a6d0d08b35ccd64a0ee69ae169dd3a0b3356 dad812433366937d85265938bb652a2801d9d6d4c0912abb0786fe65142fe715 Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	265 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen433 Hash fba27f31e4e9d8b289492f2b860c88bf d96931f79cad01f3243dbff8ff9a869377367457 e7342621a7cf816200c668419e0c97d9660d7cc2bd00cfb3989143b50832bb99 Loading...

	blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_ssgManifest.js	77 B	2023-03-07	2024-07-27
Pretty URL blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_ssgManifest.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-07-27 07:54:22 Times Seen99087 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	blog.s.id/_next/static/chunks/903-f279e023cd941d06.js	144 kB	2023-10-13	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/903-f279e023cd941d06.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 17:02:13 Last Seen2024-05-10 08:34:25 Times Seen213 Hash e75f11ddb751a1f365cfdcd581e05f35 66ace4b25b3934aa3777b85cf1e921b6a545ba21 0b1f8fb54de3fad4a7f92fb7b03bdb9c0acff2d156dcc0f430d9221849e3113a Loading...

	blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect	250 B	2023-03-07	2024-06-12
Pretty URL blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-06-12 10:50:39 Times Seen433 Hash a09918f345473da9d2f47ab9183868c8 210b67093ea8191ac2ad306976309c2cbfcd65ea ded8c2c2e016a529301571dca274c50855566e990281c816b223fd6ad68076c2 Loading...

HTTP Transactions (45)

URL IP Response Size

s.id/appealform

193.84.85.178

0 B

URL
s.id/appealform
IP
193.84.85.178:0
ASN
#59796 StormWall s.r.o.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing

HTTP Headers

GET /appealform HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Tue, 05 Dec 2023 11:39:58 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5

142.250.74.168

86 kB

URL
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3034)
Size
86 kB (85529 bytes)
Hash
fb066339a1fd5484e72143fc50960281
d54fd92f691a4981a25b985566816bef7764690a
5141173cc46bd254128686d64ec723a32b3c14e06a45705fed0ac48762829cbf

HTTP Headers

GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:00 GMT
expires: Tue, 05 Dec 2023 11:40:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85529
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317

104.16.57.101

200 OK

93 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
104.16.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
93 kB (93236 bytes)
Hash
fc66eab41c6da0cc4cb535f0863ba13c
282747c2fc1918aa29a98297555fa13deb68419c
2df101c5884872fe0c4dc49538fdd9f249a39812f06294959e680df754148053

HTTP Headers

GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:39:59 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c0301ab681c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10823601447

142.250.74.168

78 kB

URL
www.googletagmanager.com/gtag/js?id=AW-10823601447
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4179)
Size
78 kB (77812 bytes)
Hash
f116be11c7d08b5d5cf017107c61c32c
97286a2ba4ec73d8e6fe234c5b6559bd3057190a
052b04d991dfe185321ae421216b5aa3070a98a004bde1ab1263325b01e3c33f

HTTP Headers

GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:00 GMT
expires: Tue, 05 Dec 2023 11:40:00 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77812
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

home.s.id/assets/fonts/work-sans.css

104.26.7.249

31 kB

URL
home.s.id/assets/fonts/work-sans.css
IP
104.26.7.249:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
31 kB (31287 bytes)
Hash
7a6d0b84ae6a5d1ae10f88c83e2aaf6c
cf2382a0658ca11d4374631126e134916b003d2c
40c0e92260f9a8601ddc683627bb20b99d0dfe084a8bdc8cea4923373a05278a

HTTP Headers

GET /assets/fonts/work-sans.css HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:39:59 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"10bc-18a69dfa4b8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LrxbwigSNyZ5QmgpTwJ5zVvcwStvZD3MRMNbVoXWHAmlAaIsfKC5WuLHs3KAGNUA%2BETRsP0Bbilz45Qi9nr%2BjUh%2FkphL9PRzq56Rifm75aBC2eed%2BNED6jt3kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 830c03017eca5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

home.s.id/_next/static/chunks/framework-c77b5ad42e6fa06c.js

104.26.7.249

76 kB

URL
home.s.id/_next/static/chunks/framework-c77b5ad42e6fa06c.js
IP
104.26.7.249:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65200)
Size
76 kB (76480 bytes)
Hash
4ae733aa83980c530f411826c8d9b9cf
2750df3c15923b655313aebe5a307cc31869e4df
7b8f5cff2b93dd56ca8081e67ee4ba33b2b71b6324a471691e427444c84a9ce1

HTTP Headers

GET /_next/static/chunks/framework-c77b5ad42e6fa06c.js HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/forbidden
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:39:59 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:43:02 GMT
etag: W/"2272b-18c20e5d370"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g2HaH0RJ6FiSq1tJ%2BaCQ4vHv1MZqMiPlQwQ0lA3MODU37EGouSPOoxjvlrfFaPVLGsM5YAnY%2Bq%2Fc14jiP6sCKZKxkkwU6FgM9zsft3pWxkJ7oqQlAQw32wDqlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 830c03017ecd5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=AW-10823601447&l=dataLayer&cx=c

142.250.74.168

78 kB

URL
www.googletagmanager.com/gtag/js?id=AW-10823601447&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4179)
Size
78 kB (77816 bytes)
Hash
abd31485b9e25a32dfcc78955c569060
397672b5b895bb0d85633dd539955893d80fcd2a
c9265ac96b8dc66105c95598f51fb71543f71d77e142da12d4e6cdeeb0eb1791

HTTP Headers

GET /gtag/js?id=AW-10823601447&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:00 GMT
expires: Tue, 05 Dec 2023 11:40:00 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77816
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c

142.250.74.168

51 kB

URL
www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2213)
Size
51 kB (50569 bytes)
Hash
f6f7ae346348f655c9a51e223f8a1bf7
a3581ea59f88070aab82b6b4e2646cf1dbbaf208
260fbbabbc19614131c6b855e82865b455776fda7c3bb2eae209cb19cd6c06c6

HTTP Headers

GET /gtag/js?id=UA-225238330-2&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:00 GMT
expires: Tue, 05 Dec 2023 11:40:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50569
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7&l=dataLayer&cx=c

142.250.74.168

86 kB

URL
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3034)
Size
86 kB (86311 bytes)
Hash
e0fe5d366c09582295c64a86ff58af55
55ebf8044d74f30f22ec541dae0eb1f858942bdd
43053d9b977c5f3ee5821d170388faf3925503318b78f196adf93fa347a65af9

HTTP Headers

GET /gtag/js?id=G-98MWVCBDD7&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:00 GMT
expires: Tue, 05 Dec 2023 11:40:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86311
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

s.id/1SV77?s=skip

193.84.85.178

302 Found

0 B

URL User Request GET HTTP/2
s.id/1SV77?s=skip
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Certificate
IssuerLet's Encrypt
Subjects.id
FingerprintA8:44:D8:10:23:34:06:9B:DB:77:26:E2:38:30:26:D3:2B:B0:40:30
ValidityMon, 25 Sep 2023 12:47:07 GMT - Sun, 24 Dec 2023 12:47:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1SV77?s=skip HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 05 Dec 2023 11:40:00 GMT
content-length: 0
location: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
cache-control: private, max-age=15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/messenger/latest/web-widget-4852-1bfc6fa.js

104.18.70.113

47 kB

URL
static.zdassets.com/web_widget/messenger/latest/web-widget-4852-1bfc6fa.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65307)
Size
47 kB (47214 bytes)
Hash
ea51d3eb674c1f286144bbe26ba05c86
290e1d8b1c4d22825f2a275999b8552cf3361529
3e53f18a73c934fe1c7f3c4aa74c209a907f0ac4bd954d1747a4e82207591917

HTTP Headers

GET /web_widget/messenger/latest/web-widget-4852-1bfc6fa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:00 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: mZYDmVwtmpMlbyBFUcvQAyVxK3nKNxXriZZENjdf3EjmZopRc63mtrIJzjjk+FTJoP0ZDs3BETM=
x-amz-request-id: 4FS6K6N3BED5C9DX
x-amz-replication-status: COMPLETED
last-modified: Tue, 05 Dec 2023 00:28:36 GMT
etag: W/"ea51d3eb674c1f286144bbe26ba05c86"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:28:35 GMT
x-amz-version-id: rgQyDw8mO5OrfYenQWJeUHQhMhROhIV.
cf-cache-status: HIT
age: 31843
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O25IfbLV3PEsM2w2ua8sCzBVVQ%2B6QPQLLaqPO1toFWnL7%2FsjPd1LRMH1lBbL%2BJss2HlANpppQBNxUcsYZJcCwXoUDy05dkRCD%2FG6BcoA9qXR7Q1SL3dcCXBsWAND3VX1qkvay4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c03098ccf56a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-1bfc6fa.js

104.18.70.113

3.0 kB

URL
static.zdassets.com/web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-1bfc6fa.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (16197), with no line terminators
Size
3.0 kB (2970 bytes)
Hash
2d7a163ff937b4b9ea7ab13e6c8dfadf
62a58250b9a97b31a4785e7910b9ab7c15d8690f
c7cb8909e7bd8908268de5793534d73028ccceed62364ef9d1b04bf1e40e41ad

HTTP Headers

GET /web_widget/messenger/latest/web-widget-locales/messenger/en-us-json-1bfc6fa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:00 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: MlQYiQ2dqb9h/OIVYc60rdAWwzi2m98faLu/nzTPmQXpoeHOhtgWXpnmexReeLW5Qx210z3PGrY=
x-amz-request-id: 4FS8D41MZJZMYG1B
x-amz-replication-status: COMPLETED
last-modified: Tue, 05 Dec 2023 00:28:38 GMT
etag: W/"2d7a163ff937b4b9ea7ab13e6c8dfadf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:28:37 GMT
x-amz-version-id: 0TD6PAWfsyxN8kJamulTpqLVZArSSWuB
cf-cache-status: HIT
age: 31779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4g2gD8iTgGz2mmBxY%2F0berFUFu148HUIapgKwi3y78TMCsyitXB8F0sdfrWa3Rlu2Xz%2FHdxsdv0MTaij%2BtW4GoV81ve%2FSq8WSUpk%2F9f3wUgXEBK1zEqoQrlylXIVGJdKmOQRi2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c03098cce56a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn-sdotid.adg.id/assets/klip_2310_home.jpeg

188.114.97.1

200 OK

39 kB

URL GET HTTP/2
cdn-sdotid.adg.id/assets/klip_2310_home.jpeg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectadg.id
FingerprintA0:D8:B2:7F:F1:45:D0:73:25:17:7D:CB:D5:BA:F6:99:0F:5C:E6:5D
ValiditySat, 28 Oct 2023 18:02:02 GMT - Fri, 26 Jan 2024 18:02:01 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
39 kB (38940 bytes)
Hash
41e097787c826186c9cc5281368f5c85
5a50538c4a1fd77bef55dbfc369b3de784b60024
992d5dd4f6d819b096474930d8b6c9b2650042366d1f539b42198ed1fdd73cad

HTTP Headers

GET /assets/klip_2310_home.jpeg HTTP/1.1
Host: cdn-sdotid.adg.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: image/webp
content-length: 38940
last-modified: Thu, 12 Oct 2023 09:48:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 7J5fU7ky2RB2K0._gaywL1p5g8cLKNce
etag: "41e097787c826186c9cc5281368f5c85"
vary: Accept-Encoding, Origin
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C7fKryGVvW_MEv5uYlR-OgBMKdUgB4CmM5fVF4I65-hK7yXRRM7gtg==
age: 5323
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2xw7j4I27BC8q4rPb6VYfGb8qaRK10AWIL9gtaW15i05wgdwTCT2OotqwUKG3kd8LmeaXf9faeAsxL0GkKslvLR07UvNsF%2F6pKcZwOXEMYh6eh7hlTm7wk8Kj8cI7C2w%2FHsGOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030d6e1f7131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js

104.26.7.249

200 OK

1.1 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (2194), with no line terminators
Size
1.1 kB (1055 bytes)
Hash
13f3ce7f63a3bb54204996d7f05c8248
50cc456b9ef205eafbd230802df942bc28c393fa
febd258efb733049bebaeb24269fb6448aee953be138a3fbd7cb96bd63620727

HTTP Headers

GET /_next/static/chunks/webpack-36d12a75f0098f30.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"892-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAL5nDmyI75ArpF%2Fm7bC%2BfL788arUTK%2BYOkcFXauYRxq623vFMPZv7XhVF5pzBgSR%2FPk0wLodFCEPKugzbuxDy6wxy5ts1Yp2yvRbb8%2FKYLFow7B4ME0j%2BT5%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99865690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/css/0020d3d8c67a4454.css

104.26.7.249

200 OK

66 kB

URL GET HTTP/3
blog.s.id/_next/static/css/0020d3d8c67a4454.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (55024)
Size
66 kB (66196 bytes)
Hash
41c376800f788ab293c1bd8162cc3804
b625f72ac7256fa9260f7366623853d5de741ef1
d1b600b052732a67038fda709ef2ea53bce28396238260ff5c52aaf69ade644c

HTTP Headers

GET /_next/static/css/0020d3d8c67a4454.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"1db16-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NVIehMuRbYr9e9ZYOK19V8AJYQvJ5P2KuCGsZNWGV4wqWJD%2BMYuSa%2BXNllVwAivFSfwSP9D2QuNl2NGwk9Eb%2FSVa%2BeBmQx3NnyAOwTBYmzjuw5f6xvI3V6SanQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c896c5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/assets/fonts/dist/work-sans-normal-700.woff2

104.26.7.249

200 OK

48 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-normal-700.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47800, version 1.0\012- data
Size
48 kB (47800 bytes)
Hash
723a9bd462157ea1beed822745b14f9b
cf1065bf98f9f576d5a75c36325dc391caffc518
1b4ac8501c4d8d1b24086aaab9eae19524098e7d8cd2a314695791b7af365048

HTTP Headers

GET /assets/fonts/dist/work-sans-normal-700.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: font/woff2
content-length: 47800
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"bab8-18a69dfa4b8"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ODQYRKjMZolUTb%2FVHy9ZuTJiGlOv1TDz1zrxIDEjnqRfrHvnGSsHmxZg6UyErKKtgQHMGXVVDTNnUZkdGqOM5yfxmPMchCzqxDwYb2m4a7IKWglxRwgC6ba82Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030e8b1f5690-OSL
alt-svc: h3=":443"; ma=86400

static.zdassets.com/web_widget/messenger/latest/web-widget-5178-1bfc6fa.js

104.18.70.113

125 kB

URL
static.zdassets.com/web_widget/messenger/latest/web-widget-5178-1bfc6fa.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (24491), with no line terminators
Size
125 kB (125320 bytes)
Hash
11034f049f5eef05b26ed292ac59e1fc
c8e5c3d8aabcd34b7660fedebeb1ece66c5f6850
f5936ea748776aa9d35f5e748d18c78366ef81a770699ca8765457ba8717fd92

HTTP Headers

GET /web_widget/messenger/latest/web-widget-5178-1bfc6fa.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:00 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: UHe8in2/NNlJQ8+xqDERT39dCXeKxCJVrG2UC/shLH4h+ZNVARF4OnkmVkfqjVmg/Z5Cp8G4Dco=
x-amz-request-id: 4FS7C58SVHM9XWRN
x-amz-replication-status: COMPLETED
last-modified: Tue, 05 Dec 2023 00:28:36 GMT
etag: W/"11034f049f5eef05b26ed292ac59e1fc"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:28:35 GMT
x-amz-version-id: NLi469M1WczuGaqZLXtxIgWwTh.1j.zh
cf-cache-status: HIT
age: 31843
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNAfaVBXuFU%2FP1vaMuQ2qTFmzRgTsFH1vXtWyFwVNkuR1cmu%2FqKiD1BdMcFu0eZ87lCRyvGSZszSfFPo17bE%2B0QIWbR5TihcXUpWTzJQ7EHwpVxB05svNhFomZjLCdt0sJcT2Wg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c03098cdb56a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF

142.250.74.168

200 OK

86 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3034)
Size
86 kB (86189 bytes)
Hash
30793f9c51fb67a40d4c23ae98c722fb
cbe977004d1949a9a7aba6998d8f814009b38f72
6405dc86af5a1103573a878640d099eaf5cfb7729365b3dcea218b6ae5e85f78

HTTP Headers

GET /gtag/js?id=G-LBWQJM5WLF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:01 GMT
expires: Tue, 05 Dec 2023 11:40:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86189
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/assets/fonts/dist/work-sans-italic-400.woff2

104.26.7.249

200 OK

46 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-italic-400.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
Web Open Font Format (Version 2), TrueType, length 45488, version 1.0\012- data
Size
46 kB (45488 bytes)
Hash
1615d03cfb63135bc7077bbd93ca65fe
df1d56c1d20681a6f5e02e74c6f6adbf8500a123
c8b61d2de9865afa7dbbb91782523d03263294fb81eeae08e9ee0fc6f121e1a6

HTTP Headers

GET /assets/fonts/dist/work-sans-italic-400.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:02 GMT
content-type: font/woff2
content-length: 45488
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"b1b0-18a69dfa4b8"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VsZf9qeCg1alv1p5lR0tJnllBx2L2Om5Rb1ztPBpnjqdS5fPZFwr9BBUTt3PC3ONfY%2BOea4n%2FY%2B2FpAP8pEC6nmanBEhgNV1iAAwqaOJ1BLaNI51hwtLDDlgnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030f9bf45690-OSL
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/b7322211-fbdd2383fa168487.js

104.26.7.249

200 OK

1.3 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/b7322211-fbdd2383fa168487.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (2686), with no line terminators
Size
1.3 kB (1282 bytes)
Hash
ce402eb9cb6316a93e76666b47480c7b
b1ed3bde02b87347eb11f7d3442fdd5a9e90ab9f
9fad61d7fe6d6bdb0f750648a45f17c71a1f1216fb2f636216be5b4be57d0158

HTTP Headers

GET /_next/static/chunks/b7322211-fbdd2383fa168487.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"a7e-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fa7PPCOfkZFGGsIiFPZYPoBRWq7Jw4wACtnZpH8s8eRg%2BOzFT2xQSQYM%2BR398ACy6gv2dqZqY318Y5R1Zj12yELO431tlQsP%2BCOHqDaMKeoWtlAAdOIG4npBkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99905690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=565887145.1701776406&gtm=45je3bt0v889102823&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1527331456

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=565887145.1701776406&gtm=45je3bt0v889102823&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1527331456
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=565887145.1701776406&gtm=45je3bt0v889102823&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1527331456 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 05 Dec 2023 11:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je3bt0v889102823&_p=1701776407780&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_s=1&sid=1701776408&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fhome.s.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1663

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je3bt0v889102823&_p=1701776407780&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_s=1&sid=1701776408&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fhome.s.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1663
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je3bt0v889102823&_p=1701776407780&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_s=1&sid=1701776408&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2022%2F05%2F19%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fhome.s.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1663 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://blog.s.id
date: Tue, 05 Dec 2023 11:40:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/cdn-cgi/rum?

104.26.7.249

204 No Content

0 B

URL POST HTTP/3
blog.s.id/cdn-cgi/rum?
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 793
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406; _ga_GJLS9JMJCK=GS1.1.1701776408.1.0.1701776408.0.0.0; _ga_LBWQJM5WLF=GS1.1.1701776408.1.0.1701776408.60.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Tue, 05 Dec 2023 11:40:12 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 830c0354195e5690-OSL
x-frame-options: DENY
x-content-type-options: nosniff

blog.s.id/favicon.ico

104.26.7.249

200 OK

369 B

URL GET HTTP/3
blog.s.id/favicon.ico
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
369 B (369 bytes)
Hash
2137def2d03d166159c9d82347e2f023
d566cfac9656ce95ba623921422c02b7ff0b49c5
cfe37d249e5eda84e78c2c746fa7c094303fdb0288caa687c895e02a3d46c114

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:03 GMT
content-type: image/x-icon
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=300
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"171-17f53bdff78"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I9fkWk%2BZsi29Vamt2yZVeD8RF96OWp7FBRUciQ%2BWWjLTh47%2FINFZrZZWOGHb1cEs6SootMnoWHV44usIHGIXMdxDtfkB4lqrP5j8d3NBrsd4F5k13G%2FIojn33w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c03120e145690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/68-d67cb6ef599605fc.js

104.26.7.249

200 OK

14 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/68-d67cb6ef599605fc.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
HTML document, ASCII text, with very long lines (13812), with no line terminators
Size
14 kB (13812 bytes)
Hash
55b3a321c6035408d6a4a6da259cf5de
1aea4cf10a14ec7f66259b4233dd5b9f04fe9398
256397cfe1a343f2b58feddea2c2a5cef61af2ab4e58d15194e497e981ccd26e

HTTP Headers

GET /_next/static/chunks/68-d67cb6ef599605fc.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"35f4-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42OlgA48sYweSWjgc1iaimSSDNLHFbmf32Bm0IAhyK0MCXE%2BL0kaZXbB0bCTVC%2FJnGwwJ4Czpi0%2BRiIY8iA2puWPT4iAaS7CLWJtOQP4TiA5QOGhM%2Bo6RH8cwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99945690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_ssgManifest.js

104.26.7.249

200 OK

77 B

URL GET HTTP/3
blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_ssgManifest.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

HTTP Headers

GET /_next/static/3TJQzw_QZmhi46-hUDTw6/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"4d-18c20e43560"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aptXNONo9qv%2FhNZ1dlpMVtP9AD1a5u8F0OEh3kyOdUF%2BJ81bdMdjRr0ZYBS2xbv4G3EbhXKw7K2wIgjAIstKyqoshDnnfUaUQlmQ8k%2F0xZE6Xl0w5hkttORYSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030cb9aa5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/assets/fonts/work-sans.css

104.26.7.249

200 OK

4.3 kB

URL GET HTTP/3
blog.s.id/assets/fonts/work-sans.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (4392), with no line terminators
Size
4.3 kB (4284 bytes)
Hash
7ca49ef31b5f5bb7fc8c573422eb171a
992e55795a2461cae9dd9fe7c7be8a4843bafe0d
b1e68575be814e054e45c8f41df28f9be8d3e2a327fb567ef9c65bfc1e8fa514

HTTP Headers

GET /assets/fonts/work-sans.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"10bc-18a69dfa4b8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWVY65m0hpu8v7mYAEEVk8PPdlWYYUE7XBzN8YZy2cT3OMjbCZ6QYhlzEGD4WXpdFOoOFkTeTU3IEbo%2B%2ByV1vrBWSAZYJjZyK4mBCRqEs01k6y9A2P%2BrsYNQGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030cb9ba5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/assets/fonts/dist/work-sans-normal-400.woff2

104.26.7.249

200 OK

48 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-normal-400.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47800, version 1.0\012- data
Size
48 kB (47800 bytes)
Hash
723a9bd462157ea1beed822745b14f9b
cf1065bf98f9f576d5a75c36325dc391caffc518
1b4ac8501c4d8d1b24086aaab9eae19524098e7d8cd2a314695791b7af365048

HTTP Headers

GET /assets/fonts/dist/work-sans-normal-400.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: font/woff2
content-length: 47800
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"bab8-18a69dfa4b8"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qaiPtovv4HZC%2BvP60wWNimAIfNT9AV08cyhDgw82SMSmhJcT8Jt%2FWjiffvKR8XSDthbtPqr3NRXerDoqkfuR6JxVXiFrgDZWGTeAhRnwyesVE%2B%2FeXl3%2FhH6ECA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030e8b225690-OSL
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/css/0ccc702cf5b6f291.css

104.26.7.249

200 OK

722 B

URL GET HTTP/3
blog.s.id/_next/static/css/0ccc702cf5b6f291.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (722), with no line terminators
Size
722 B (722 bytes)
Hash
17b149a5ca6bb2e1b1b6a41e8ed22c17
682c9c9739b50e6219758282952f347b44886d3f
ecf1b45e741c358105ec165c66cc44e962e6dbfe4948ea4a4094791472e03c6d

HTTP Headers

GET /_next/static/css/0ccc702cf5b6f291.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"2d2-18c20e43560"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8tcnEwNlEPwPIHiJ1hvZAd8odf0nPcYbuBmrs4cTAQUlznNKQzTnmvBtDkgmSO2PBWNoOoyAbuwU9iHZ4BJZpb%2F12ci6N5XHi8H%2FlwIBddmVuZAyUIxEPU17ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c896f5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/images/adg-red-ring.svg

104.26.7.249

200 OK

6.4 kB

URL GET HTTP/3
blog.s.id/images/adg-red-ring.svg
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6636), with no line terminators
Size
6.4 kB (6438 bytes)
Hash
c559e847c073ff5cb592b82b79244fff
693de6138e11dd247bce037cf5b7b56286723104
a2bca72e9f91f530ba0a170e8048b68a09cb414566f8ff852515a8ac35609380

HTTP Headers

GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: image/svg+xml
cache-control: public, max-age=86400
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ushlnvPN1FER7MPRPcsXlRRmhWYB1yovdF2X0It340dxuZQy9RY8HIhQh5UZxF%2FPvjixK7JFx6dhpTcEMWKFQqjpEdAfq7KpvOGQm79%2FR8PULywmHQjT4hjhfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030cb9bb5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js

104.26.7.249

200 OK

141 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (65202)
Size
141 kB (141028 bytes)
Hash
194ab7bb7a4a8d1e761df383d5d94f5d
7c8dcee0016a936b0ad8f1e9fa93d6d89d53a1b7
b1e0354048342615ee678931bb922fcb098fc4f42b3edae6df7624a2b812fb95

HTTP Headers

GET /_next/static/chunks/framework-400d78dd60ac46ca.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"226e4-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kccrV3JQ8MEKg4ZrvDo3mQDji53bcgsnVbF%2F7g6e8Fa3CQvyKtoPcUUdyeqiaMUQNKOF1MQRhX8PxBubuT0ECedlsfnh4fo7alekSbuCmEIN6ZB%2FdcxoGu9QiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c998a5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect

104.26.7.249

200 OK

115 kB

URL User Request GET HTTP/3
blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type

Size
115 kB (115364 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home.s.id/
DNT: 1
Connection: keep-alive
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, max-age=86400, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 16195
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ULNJylK2NmrIciT5r3IahrNshlRnBzKlPgx12j6cPodmAtPj6BVSxpIROLM60b4n4nSW%2BLMvu5o%2BwxUtJSfX9LGMbIvYT8lqlx2m%2BzH4g2xNjgdR%2BwZy7FT6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030b3fda5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

protagcdn.com/s/s.id/site.js

104.26.6.142

200 OK

453 kB

URL GET HTTP/2
protagcdn.com/s/s.id/site.js
IP
104.26.6.142:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectprotagcdn.com
Fingerprint1E:89:91:F9:BA:FB:1C:27:C9:67:C4:D1:B3:96:BD:93:2E:84:D6:28
ValidityFri, 27 Oct 2023 05:44:57 GMT - Thu, 25 Jan 2024 05:44:56 GMT

File type

Size
453 kB (452959 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/s.id/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:02 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=453743
expires: Tue, 05 Dec 2023 12:10:02 GMT
last-modified: Tue, 18 Jul 2023 04:06:38 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eDMGEKxfs4t%2BrCdqomD2rA2P730CIxz3HLs3Kn904zli%2B%2FT6SPhZYsFHJdaVOm9M4GvEspMkwVX5Zfd4%2BAsEZBhW4ZQixEgOFSTA1eVEsp6Ljd52LYrV4%2FXqRP0F8K4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c031318c50b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/main-ef060895a635bf59.js

104.26.7.249

200 OK

98 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/main-ef060895a635bf59.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
98 kB (98303 bytes)
Hash
f2a13965bac13dd9035541241d134911
62994174100f29a1319140b6a06633d3f7d15123
345dd805b52864848882d8f89c24661f408925f549a626e5bcd33b6f072e146a

HTTP Headers

GET /_next/static/chunks/main-ef060895a635bf59.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"17fff-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I7vEQtLq0QYNt9WYFt6n4I%2Fwqvi%2FFPxlLM5%2BMxbIsd10s42RsFRSV8FKP26IsoQck1W2V1liN6gmRVXBI1MNQScYy8zDxhUBZjm%2F%2Bpv2MRBRYp7QR6agDoB2sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c998c5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK

142.250.74.168

200 OK

246 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (3034)
Size
246 kB (246351 bytes)
Hash
d696c8cb82b1c84315a744cf752d1394
c29f2aea5f31e05d5e76c012ada8c3cf9e972131
ff6844c556c930b5538883c7f31c3253d9e61e40a5bbc8fc2fec82b94e69ff7c

HTTP Headers

GET /gtag/js?id=G-GJLS9JMJCK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:40:01 GMT
expires: Tue, 05 Dec 2023 11:40:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85525
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.70.113

200 OK

10 kB

URL GET HTTP/2
static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT

File type
ASCII text, with very long lines (10187), with no line terminators
Size
10 kB (10187 bytes)
Hash
42d94c325a0b012e41f9c3907853625a
567dbe8e0b61115deb7c33947f706d4e51c3ab49
9f22f6e9d4852f8be0706b62fbd0eba20f6cb56171def5e387b2d95fcd07df01

HTTP Headers

GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript
x-amz-id-2: OdnBjVcC5xsQvyjtpPVBe21NpgZXl51NRJfLydbGvh5Gu9AdfuYJ4+/g1Hhtqo28e16NzYJZ+wk=
x-amz-request-id: SJN8N1JDMTD43WG0
x-amz-replication-status: COMPLETED
last-modified: Wed, 09 Aug 2023 01:01:02 GMT
etag: W/"42d94c325a0b012e41f9c3907853625a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: hKEbdq289Xo7bHrM.yPFOdJ37r5nFwfe
cf-cache-status: HIT
age: 20
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2w7zCEZej0nKbaTuPIFx5ESDQOqiRTHAYA2kOPtUGfd0YLpeSQugqkkkFUYBhM%2BejGtQ5kVAOeHvbi6cQXwxznSVYh1TQUWjzxe6qbDvxSA72YlCLWeaIBptELe0mR17KI6j5jA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c03104c5956a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/assets/fonts/montserrat.css

104.26.7.249

200 OK

3.2 kB

URL GET HTTP/3
blog.s.id/assets/fonts/montserrat.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (3324), with no line terminators
Size
3.2 kB (3234 bytes)
Hash
b8c67a1fd66c70113b0df4da1dc987ae
aba37671eb8cea5087f65e175b1a7c92851f8b62
ae67742274d55cb062e8d4db58bb85fc60fc6799b19df6450bcde74b82bfa250

HTTP Headers

GET /assets/fonts/montserrat.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"ca2-18a69dfa4b8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wH%2BrqTr09Oh%2By826DfUNTNjWLdFcNug5dnzIrhu9Hab9HcY0tQLLy6l8Wmu0htsK4RqHz7Al0EJBVvdCzew1jxui8iPuOi1YoV5kuWet0F833mRlJQ%2FULz0uqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030cb9af5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/images/sid-neu-logo-dark.svg

104.26.7.249

200 OK

8.5 kB

URL GET HTTP/3
blog.s.id/images/sid-neu-logo-dark.svg
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8545), with no line terminators
Size
8.5 kB (8503 bytes)
Hash
18ee0f9af338f9fd648d8969dbf3c433
f243105a71afca2ebb8e249d4640376a1f5f6670
7132e17fd926233835744b192fbabff54d2a3337fd8ca3a9b1cf58051a702825

HTTP Headers

GET /images/sid-neu-logo-dark.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: image/svg+xml
cache-control: public, max-age=86400
last-modified: Wed, 05 Jul 2023 23:09:20 GMT
etag: W/"2137-18928513d00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BtRPJ2%2FTNsnvbFa8XeWucJTyojvxFbhtndaOuzM4P%2F5WMceMP6JZKjaPjwjaBvowYP89g%2BoZUOddxY7WtbKYrTjKO1syA97O05TwkUBTlw%2BqRrObN%2BMcjzskZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030e8b295690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/pages/_app-0f590372828a3d5b.js

104.26.7.249

200 OK

262 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/pages/_app-0f590372828a3d5b.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type

Size
262 kB (261917 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/_app-0f590372828a3d5b.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"3ff1d-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 62402
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kfO9ENTOBs3sJE0Qk%2FGHEaN6TPk6aWwJ%2BYc0ZdKgR3SshV1%2BYAhkURHL74b%2B29qsxdsLt0UbKdcPxDHB3FtUSFy40Rs4iopYDrvu3LN1i5bwSNwo84DepuKO4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c998f5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-f50dfd12dd1bf9bd.js

104.26.7.249

200 OK

27 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-f50dfd12dd1bf9bd.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type

Size
27 kB (26743 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/post/%5B...article%5D-f50dfd12dd1bf9bd.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"6877-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ExG%2Bb0aI%2FxaJ2UTOg5%2BDqV9dCdhvVyVts0cHwYcwBSaOVZIg4vinssBHjzgQlYkY3%2B5MRA77YlxjZxaYl%2Bem1haDPYPZf%2BewcFxUCGxyvh2haEZI8XjovYeS7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99955690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je3bt0v889124234&_p=1701776405860&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701776406&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=&en=scroll&epn.percent_scrolled=90&tfd=4350

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je3bt0v889124234&_p=1701776405860&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701776406&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=&en=scroll&epn.percent_scrolled=90&tfd=4350
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://home.s.id/forbidden#action
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je3bt0v889124234&_p=1701776405860&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=565887145.1701776406&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701776406&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=&en=scroll&epn.percent_scrolled=90&tfd=4350 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://home.s.id
date: Tue, 05 Dec 2023 11:40:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.zdassets.com/web_widget/latest/web-widget-framework-deab6e1bfb9c4776677c.js

104.18.70.113

200 OK

104 kB

URL GET HTTP/2
static.zdassets.com/web_widget/latest/web-widget-framework-deab6e1bfb9c4776677c.js
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT

File type
ASCII text, with very long lines (65307)
Size
104 kB (104044 bytes)
Hash
c9bcb89fd41dd7252d18168d3ebf7e49
4f833eed9a2a384cf6cab020cf3ccc111ad4e233
f5eb4ac3390920825c2f368d1fcfca6b0c998b80b75f7b970aab00363137c12d

HTTP Headers

GET /web_widget/latest/web-widget-framework-deab6e1bfb9c4776677c.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 9K9nZsPlyLayyK0dRSX2XhgRXV7AqHHIPNIu4rkJu98A2HapVVo+BUAbBFqsXJit0xFzyWg7NLc=
x-amz-request-id: DGAWW5HR30XQV0MR
x-amz-replication-status: COMPLETED
last-modified: Tue, 05 Dec 2023 00:21:34 GMT
etag: W/"c9bcb89fd41dd7252d18168d3ebf7e49"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Wed, 04 Dec 2024 00:21:33 GMT
x-amz-version-id: jxfLAjAMoSjcjesSkiIH5lJeYxTAMjAP
cf-cache-status: HIT
age: 31825
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qZ4nkMfyiyegFAdLAs1dEiuCeyMyRMVx6Lxpa29UzfAqHXJHNDdiQ%2BlMGWL8KxHbRwqeWM%2BffK2gGbwGd5%2BvldXvIlSsMP49V348N%2Ftat2IymXnL8UPQQzQi9YFt4hQ%2FscdLbS8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c0312bf1a56a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.70.113

200 OK

336 B

URL GET HTTP/2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint5F:75:10:F4:97:EA:C8:48:F9:4F:E6:19:19:A3:13:24:44:C1:E7:3C
ValidityMon, 23 Oct 2023 13:35:25 GMT - Sun, 21 Jan 2024 13:35:24 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (362), with no line terminators
Size
336 B (336 bytes)
Hash
6d84a589ad184200977a95a9f6f8d40a
e796908961d35cceb1475437e015f93c33a31252
3208bd6a8eea67060b01c8218b3a6a88a9b1995abc43a0595ffddd938d4a4b9a

HTTP Headers

GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:40:02 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600
etag: W/"e5b8f8113f98b6e61c77542de0689621"
x-request-id: 8308f974ffd15e9b-SEA, 8308f974ffd15e9b-SEA
x-runtime: 0.010985
x-zendesk-zorg: yes
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2XfjvwibtI4xZKr1%2FREWsdOcjH4exWYjjR9nRxefiGs4V8o%2FSXabvh5EUQzXDZ%2FOwhVqtm8Q3LfRMeRZTGN5O%2BK4iNlZKSiEbT36meJ9ACTtAL8qBermWwpCoQ4Q%2FhFHBY0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830c03113c9db4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/903-f279e023cd941d06.js

104.26.7.249

200 OK

144 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/903-f279e023cd941d06.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (64667), with CRLF line terminators
Size
144 kB (143768 bytes)
Hash
e75f11ddb751a1f365cfdcd581e05f35
66ace4b25b3934aa3777b85cf1e921b6a545ba21
0b1f8fb54de3fad4a7f92fb7b03bdb9c0acff2d156dcc0f430d9221849e3113a

HTTP Headers

GET /_next/static/chunks/903-f279e023cd941d06.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"23198-18c20e43560"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ge%2F09bCoRbddbSbUk5cXae64YRb73nzXi46nCTY4E6rZNKPdLiTVxvQJhREjlanyo9KW3j0m%2B94cCvByBjiJeaUaOT8X4XytGFfIKYeSBfQ%2FqbS5vgt2LxGDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99935690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_buildManifest.js

104.26.7.249

200 OK

998 B

URL GET HTTP/3
blog.s.id/_next/static/3TJQzw_QZmhi46-hUDTw6/_buildManifest.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint4A:A1:0F:9B:03:B4:BF:DC:7A:34:A9:80:F1:DF:AE:E3:58:3D:7B:CA
ValidityTue, 10 Oct 2023 07:45:16 GMT - Mon, 08 Jan 2024 07:45:15 GMT

File type
ASCII text, with very long lines (1056), with no line terminators
Size
998 B (998 bytes)
Hash
20cb128cd74b3efabb923f231ad13a93
dd71a22bec99ea7932b48aa55eda1e65003f917e
43ed433a262ed5449c5c96af8cb85f07f861116707d6ba77b77c1f726d3d2787

HTTP Headers

GET /_next/static/3TJQzw_QZmhi46-hUDTw6/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-8w002bto2?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_LJQ0V44EV5=GS1.1.1701776406.1.0.1701776406.0.0.0; _ga=GA1.1.565887145.1701776406; _ga_98MWVCBDD7=GS1.1.1701776406.1.0.1701776406.60.0.0; _gcl_au=1.1.558576748.1701776406
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:40:01 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 30 Nov 2023 15:41:16 GMT
etag: W/"3e6-18c20e43560"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 412468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djyfc6289rM7FJkf5ZHNgZXfrwPLTGbuijtOuUPckuYjTjABzzILBUsS576QIT%2B8jz%2FckDa75fwp3o1cRA%2BrJJZjj9%2FA9Q3maZV5XI1PR2K3kdghH4XzrJVe0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c030c99975690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by