Report - smkscitranegara.sch.id/bonii/login.php

Report Overview

Submitted URL
smkscitranegara.sch.id/bonii/login.php
IP
103.134.152.1
ASN
#138608 Cloud Host Pte Ltd
Submitted
2023-05-11 23:25:35
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
11
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-11	3.7 kB	7.7 kB	142.250.74.131
app.s.id	unknown	2013-08-14	2018-11-27	2023-05-11	2.1 kB	2.9 kB	45.126.58.78
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-05-11	1.3 kB	860 B	216.239.34.36
zendesk-eu.my.sentry.io	unknown	2012-04-07	2022-03-29	2023-05-11	488 B	425 B	34.89.128.121
blog.s.id	unknown	2013-08-14	2018-06-15	2023-05-10	1.7 kB	1.4 kB	188.114.96.1
www.google.no	25607	2001-02-26	2016-04-05	2023-05-11	530 B	558 B	142.250.74.163
cdn.s.id	unknown	2013-08-14	2018-08-31	2023-05-11	14 kB	1.4 MB	52.85.242.110
protagcdn.com	62031	2020-04-17	2020-04-17	2023-05-11	400 B	396 kB	104.26.7.142
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-11	1.7 kB	4.9 kB	54.230.80.227
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-11	2.7 kB	209 kB	142.250.74.35
ekr.zdassets.com	2396	2013-01-28	2018-06-14	2023-05-11	910 B	3.1 kB	104.18.70.113
home.s.id	488728	2013-08-14	2018-08-25	2023-05-10	1.3 kB	726 B	188.114.96.1
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-11	501 B	13 kB	142.250.74.106
smkscitranegara.sch.id	unknown	2018-07-03	2019-06-18	2023-05-10	769 B	1.5 kB	103.134.152.1
s.id	134714	2013-08-14	2014-12-04	2023-05-11	466 B	586 B	188.114.96.1
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2023-05-11	484 B	7.7 kB	104.16.57.101
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-05-11	3.5 kB	592 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-11 23:25:19	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:19	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:19	low	Client IP	188.114.96.1	ET INFO Observed URL Shortening Service Domain (s .id in TLS SNI)
2023-05-11 23:25:19	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:19	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:20	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:20	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:20	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:20	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:22	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)
2023-05-11 23:25:22	low	Client IP	Internal IP	ET INFO URL Shortener Service Domain in DNS Lookup (s .id)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-11	medium	smkscitranegara.sch.id/bonii/login.php
2023-05-11	medium	smkscitranegara.sch.id/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/9849d5b5-45be35bd4b4157cd.js	2.7 kB	2023-04-20	2023-10-01
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/9849d5b5-45be35bd4b4157cd.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-20 15:40:46 Last Seen2023-10-01 14:45:37 Times Seen387 Hash ce5b46313723bd3cf5036595cef68bd3 db66130bdb125cc740f587250e0eff78a6043e89 3fd155d8504c42656f9a67bde0f6fa8c8313701dce4ca486a7d598dff22e1801 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_buildManifest.js	999 B	2023-05-11	2023-05-12
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_buildManifest.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:40:44 Last Seen2023-05-12 01:25:39 Times Seen8 Hash cf1afaddd3a63353dca46b3525b70ddb f8256180cc5e32df9f0d074fb7b2dcb4074ad51b 2503a49a3c74e5369bd1b1aab14833abfcbce692f6159394e53f40f1f0d4e922 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_ssgManifest.js	77 B	2023-03-07	2024-04-26
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_ssgManifest.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-26 15:20:41 Times Seen85373 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/webpack-63fa825eceba7404.js	2.1 kB	2023-05-11	2023-05-12
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/webpack-63fa825eceba7404.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:40:44 Last Seen2023-05-12 01:25:39 Times Seen8 Hash a12b8b9f0767208eb25cf7afa5da056b 22af20227018d5aa3296a5efdb7bd2f91a17119f dd33cf8d9bcc0fab97731632283facb5be8fe45bee6dc0441957a4a29b9efad7 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/_app-6940a02d227784e0.js	154 kB	2023-05-11	2023-05-12
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/_app-6940a02d227784e0.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:40:44 Last Seen2023-05-12 01:25:39 Times Seen8 Hash 924df73becca75b663908abfcb5735e8 88e42db729611b692d3fe5dadf289fb20fef0275 218a4447156a7263a77b2b5e008c87a34900c199ffd0441532893745091ddb57 Loading...

	unknown	236 B	2023-05-11	2024-04-03
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 12:15:07 Last Seen2024-04-03 06:33:17 Times Seen339 Hash 69b1d9624dd2b4afe3b1bbb3065b5604 db391c0e83bfb261be30fb17489be412bec71b3f 097c9819b553f9882d00aaca5acd161e47f7e8ad49e266f2dd234b87bc6ae948 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	196 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash c98323db1bef176960d2b1950e0800fd c3a3c7d59a039b6194c714e0af1aa73911ebd01d 5496584f2fe4ce363c48545e26b6c7756cb8399ccc481157002e175ba144422c Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	13 kB	2023-04-05	2024-04-26
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46:03 Last Seen2024-04-26 16:22:11 Times Seen30736 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	251 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 968e084e30b878c76ecc20cc4cc6472a 9a01eea90ba2c553da933d93b626bf2afc8c72bd ed14e6cc5bb7748e4223f42b08b919001c2f851002a821b369c718bea43a2924 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/post/%5B...article%5D-51c50a194a28d7a1.js	23 kB	2023-05-05	2023-05-20
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/post/%5B...article%5D-51c50a194a28d7a1.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 17:01:56 Last Seen2023-05-20 15:40:41 Times Seen92 Hash f3116f16f654e0dafdc43b1087577abf 25f71306d01b09e2caf25ee602f2e6577eda3039 4b0b85c742b9a2f7dc0cad9a5c33db6318f4965bd48d93ed24e33451a756a51d Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-4156df7a230d696d9dfa.js	167 kB	2023-05-05	2023-05-21
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-4156df7a230d696d9dfa.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 05:20:37 Last Seen2023-05-21 22:01:24 Times Seen414 Hash 8fb65d85b93d5ff05784a92cb5fd6750 5e587d968922ebaf89564f5c396cdcdd5fcaa08e 099bd9867467f5ad904780b6a1c2a93aaa54e869c4ffec16f12878cd9bce907a Loading...

	protagcdn.com/s/s.id/site.js	396 kB	2023-03-09	2023-07-17
Pretty URL protagcdn.com/s/s.id/site.js IP 104.26.7.142 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:57:53 Last Seen2023-07-17 21:59:01 Times Seen288 Hash 8b8ec52f223555670199afe98a1d5564 aafb241e22187b7a353ccb61547f6f2145833a44 1c47c23e57e44c1206678fcea2854a507dbd61c7db44ec7429767d82e09e6527 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/389-3c58604d16d9e910.js	165 kB	2023-05-03	2023-05-20
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/389-3c58604d16d9e910.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-03 20:55:46 Last Seen2023-05-20 15:40:41 Times Seen104 Hash de0723fc0f8847ef36892fad204fd180 47f047705fda7522490c9158e6dba1d6949de3f2 a918e36093fc1bc6aa3ba45dfdda02d32adeda69135a97167213d17f7c52bdbb Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/852-07b180691608c045.js	16 kB	2023-05-11	2023-05-12
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/852-07b180691608c045.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 18:40:44 Last Seen2023-05-12 01:25:39 Times Seen8 Hash 67a4425fba086d8801490760c993e3da 7132c2f2212e2fa2234bbc16d72a12b306e0e9f1 e21615bf36902ffad5b17c62c22da59572374497fe3616589d7eb39d891764b4 Loading...

	static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816	20 kB	2023-04-18	2024-04-21
Pretty URL static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-18 04:27:55 Last Seen2024-04-21 01:34:52 Times Seen14481 Hash d294b48fb7400508953205265f95d2e1 fd545d38241c9c56e81f61e45cd239976ecd0b46 13a548e040a1ec08f77911fed1d559b95e5daae0ee227e632140e003c7268e7b Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	247 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash ec9604d9253043e4c7ea1655cfefbb31 96f618deb14181f0b85c6a518ba3e5dcb4d909ff fdd1eeb2bdbe7baaf66d5fba08c2145b14a49acc590d9f02c1f9d8c534633aca Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	260 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 06b4795adbd64ddcd90f3d56f8b77cab 82e1f620412efa5e13c1666218f356113f9c136b e847d77bd3b904a315099c754caeafb93a6aa049a5f7386c252f0d9579d2db42 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	224 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen426 Hash 5d3fad59fc126716231fd01bee254004 264df770cdff4f3ff4b54a280e53671e7b08d6a7 5a24aac7b928921204e217584dcea7740f14c86d961e6b30ff5219505cbeebcb Loading...

	www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF	228 kB	2023-05-12	2023-05-12
Pretty URL www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 01:25:39 Last Seen2023-05-12 01:25:40 Times Seen2 Hash 7b34b319798c89bac88c0dc65edf7c04 1fef1915e37819240fda732cb0faa4f607ebc6da 053a72ecef515d8c4299c12bfa003c071c71abd6267ea0a9782bec342126d399 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	271 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen424 Hash c1058202d22ac09579022379d86826ee 1999a6d0d08b35ccd64a0ee69ae169dd3a0b3356 dad812433366937d85265938bb652a2801d9d6d4c0912abb0786fe65142fe715 Loading...

	static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f	23 kB	2023-03-26	2024-03-21
Pretty URL static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:27 Last Seen2024-03-21 21:10:25 Times Seen1825 Hash 35755063f184195a50a9c07a2c71693a 7a32c58c941ee07911a3d1ff5f335cbde58d90e9 21d2ea81f22f44525f201ad9f4702029e0b2bfe65d5a2b534104dbe4b2346bbe Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	265 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen425 Hash fba27f31e4e9d8b289492f2b860c88bf d96931f79cad01f3243dbff8ff9a869377367457 e7342621a7cf816200c668419e0c97d9660d7cc2bd00cfb3989143b50832bb99 Loading...

	blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect	250 B	2023-03-07	2024-04-03
Pretty URL blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-04-03 06:33:17 Times Seen425 Hash a09918f345473da9d2f47ab9183868c8 210b67093ea8191ac2ad306976309c2cbfcd65ea ded8c2c2e016a529301571dca274c50855566e990281c816b223fd6ad68076c2 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/framework-2647c7e378e02044.js	141 kB	2023-04-20	2024-02-05
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/framework-2647c7e378e02044.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-20 15:40:46 Last Seen2024-02-05 20:07:03 Times Seen395 Hash 1639a143b632bdca2ff0b6a30c784aeb d64cbc59de02eddaaa1e5f361f6927b8c1c0d712 df6ff92ab9484674635dab18aa6d97d4bdea7d26fffc3c53fc890c218e23ff7e Loading...

	blog.s.id/post/2022/05/19/sandbox%20eval%20code	136 B	2023-04-11	2024-04-26
Pretty URL blog.s.id/post/2022/05/19/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-04-26 16:22:10 Times Seen31300 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/main-ae57ee9c17c390d0.js	93 kB	2023-05-03	2023-07-03
Pretty URL cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/main-ae57ee9c17c390d0.js IP 52.85.242.110 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-03 20:55:46 Last Seen2023-07-03 18:21:56 Times Seen272 Hash 1e2fd193041b6a319eb1776ae861be5e a3599fe7ad22029089faf569ce2e66060527fded e5da21f851857a02fb23a30c384c45585a17a6aa89cd3957ae10c678a24b9648 Loading...

	www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK	225 kB	2023-05-12	2023-05-12
Pretty URL www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 01:25:39 Last Seen2023-05-12 01:25:40 Times Seen2 Hash 1cb93da440ce4041b7230830ac812f95 fe6fdb2f548921b0c62c6e34f0c6bd926908d2fb 00a803d355557da48de84ba4e1d649b871f058ee96e119ec0f3b4fdafd9cf660 Loading...

HTTP Transactions (74)

URL IP Response Size

smkscitranegara.sch.id/bonii/login.php

103.134.152.1

88 B

URL
smkscitranegara.sch.id/bonii/login.php
IP
103.134.152.1:0
ASN
#138608 Cloud Host Pte Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
88 B (88 bytes)
Hash
25f4889425b3c0b7b14fe7149c2575ad
5d096315fa8eba5aaf6d870e034a455914386293
77cf3a26f2ad6fd43cfa593d8d5dcf0c224b25a624e0e2f63e0947d02edf650b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /bonii/login.php HTTP/1.1
Host: smkscitranegara.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
x-powered-by: PHP/7.2.34
location: https://s.id/kY66E
content-type: text/html; charset=UTF-8
content-length: 88
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 11 May 2023 23:25:20 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

s.id/kY66E

188.114.96.1

0 B

URL
s.id/kY66E
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /kY66E HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 11 May 2023 23:25:19 GMT
content-length: 0
location: https://home.s.id/forbidden#action
cache-control: private, max-age=30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QSO2NGnQAanLLRoTOxDMAU9woXiPN9aOeMstkg6hHvcApdav9u8NIeqVCXJ9S2f0KYD9MQ6FAd2rffeEHNQbtHI28pxorMNSY5ynH0scEiq41dy2CqBx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c5e2e33f8e61c0a-OSL
X-Firefox-Spdy: h2

smkscitranegara.sch.id/

103.134.152.1

706 B

URL
smkscitranegara.sch.id/
IP
103.134.152.1:0
ASN
#138608 Cloud Host Pte Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
706 B (706 bytes)
Hash
67f3a5933c17b3ab044826d3927d0ba9
5957076d09bacaa6db8ddc832b4fd87ed8f05f8a
97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: smkscitranegara.sch.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 706
Date: Thu, 11 May 2023 23:25:20 GMT
Server: LiteSpeed
Location: https://smkscitranegara.sch.id/

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a6ce3d3fa35a7181d798f18939f0d4df
009eb5c2d470414820b9ab723ef55e2e36b326de
c4bc89043c14c0cce7198301f9fb809a878ce2ea48fae3cc9b34b74d7bb2eb62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100049
Date: Thu, 11 May 2023 23:25:20 GMT
Etag: "645c5d31-1d7"
Expires: Sat, 13 May 2023 03:12:49 GMT
Last-Modified: Thu, 11 May 2023 03:12:49 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: R7YbvYvlWi9EsDlcMsDq9yhhjvDZoaRSozR6ZfCy8FKlgr0YAO-NdQ==

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a6ce3d3fa35a7181d798f18939f0d4df
009eb5c2d470414820b9ab723ef55e2e36b326de
c4bc89043c14c0cce7198301f9fb809a878ce2ea48fae3cc9b34b74d7bb2eb62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102333
Date: Thu, 11 May 2023 23:25:20 GMT
Etag: "645c5d31-1d7"
Expires: Sat, 13 May 2023 03:50:53 GMT
Last-Modified: Thu, 11 May 2023 03:12:49 GMT
Server: ECAcc (dcb/7FE4)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UaYf9Vfj2EP-x329Ev7HsiBBCA3We5IqShD_tlcRE1iCDV_LDYmRrQ==
Age: 2285

cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/webpack-ea4555d754b5e0a7.js

52.85.242.110

5.6 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/webpack-ea4555d754b5e0a7.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5598), with no line terminators
Size
5.6 kB (5598 bytes)
Hash
6e8431e57c8376118f7f796918ecb78b
aa5db811a8e5100307651bf1762d777adb767853
4ec07081b076818282e22c7d0c13565573655be68b09b70d38c48f1612f57fde

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/chunks/webpack-ea4555d754b5e0a7.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 5598
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "6e8431e57c8376118f7f796918ecb78b"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: h0XPm148HnVFzjObPwe0VGazbd_FFHhj
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: b8pB4gsezobm02Cwnb3eKrPMkB0WcqhY-ZcxtunjD1f642O2XBL0Bg==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_ssgManifest.js

52.85.242.110

91 B

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_ssgManifest.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
91 B (91 bytes)
Hash
5ce0d2713404bd05c9502cc490488dca
552f4970f95812a42a366cf0752db5c4c4218236
ddeea69d5116852145775870dab4d86b4e909e7a02c03465efaa67d5b0f744be

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_ssgManifest.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 91
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "5ce0d2713404bd05c9502cc490488dca"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: qahNwjH379GVUGSk0V4A_3pTmwkv0M6L
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: WdvHDu_dVDiljmitEnXNqh0EvCN9S5_5RrU7rQAgQZ5p7Rbz7ofDaA==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_buildManifest.js

52.85.242.110

10 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_buildManifest.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (10149), with no line terminators
Size
10 kB (10149 bytes)
Hash
ff6fbc5382402ea43db85569fecd7bdc
3f9952c0166de337ec576c2ac38ff015402709ea
d0e4a3aa06079aaa220f6e47af8ae9f9fa37dcf4ac461cf7117e50bfcd336aa3

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/UBxCushcOXtgWCPctSVaz/_buildManifest.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 10149
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "ff6fbc5382402ea43db85569fecd7bdc"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: vjwQdKcwX9QMb650Mp50aA_mqM0PldUC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: Q1cdh2wFqbS_j4Fg6hUIN6e8Gknezcp4e-9jNDbKcO3ebn3Z802v2g==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/images/sid-logo-new-light.svg

52.85.242.110

3.9 kB

URL
cdn.s.id/app/p_230511c8aa95/user/images/sid-logo-new-light.svg
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
3.9 kB (3904 bytes)
Hash
b3e9be8f1d6a2b7f3f961c636bd7a812
206229a9f6dba2f2aad30dde2ae671a7ae740027
1af5eacc5472d595046d8320feb556463d66ca3711b5fc2e6449e5cc49cd167f

HTTP Headers

GET /app/p_230511c8aa95/user/images/sid-logo-new-light.svg HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3904
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "b3e9be8f1d6a2b7f3f961c636bd7a812"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: hfqW8e1HD49gXQFQTeh5KO9SJ3MuXuQE
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: -xzlcXkX1IROIq8z14FdQjNjC5sIk6aulJwKwY2pB34Bmjfiw6R1UA==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/images/errors/403.svg

52.85.242.110

4.4 kB

URL
cdn.s.id/app/p_230511c8aa95/user/images/errors/403.svg
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (532)
Size
4.4 kB (4406 bytes)
Hash
a6f7dffd03977a861d575b73f92240c8
33186c93e96f9a6e2370ac1a21551a9d7bfcc802
92c39b5c986c8a9c713d77081a0272187a847c57192fe03fc152d25fc4c35668

HTTP Headers

GET /app/p_230511c8aa95/user/images/errors/403.svg HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 4406
date: Thu, 11 May 2023 15:06:55 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "a6f7dffd03977a861d575b73f92240c8"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: IsV26XIlKDq_VCchxfd7EA72GeSXFnUq
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: P1frdT-4uz9mnesWbOcxQ0g02lybpUwjA8wwGHdJW9PRaWdjz3ijDg==
age: 29905
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/framework-0203d16360ddbf38.js

52.85.242.110

141 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/framework-0203d16360ddbf38.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65200)
Size
141 kB (141073 bytes)
Hash
283b599b9087f3bd0b5c7388146fd178
d92b8e5f84d3bee2817767dfd2635d3f14d8102e
dffb777aa00ce1479132f8dbacb4a9446cea81d9fce5c2df882506a8c4c93122

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/chunks/framework-0203d16360ddbf38.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 141073
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "283b599b9087f3bd0b5c7388146fd178"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: UlAOTscjiD6J53XfuIecCdK492XJ6Hmz
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: c-Xn9qdjZdwXASCHcCp_PWTK02kZUxeAy1v9rSgK4Q32WISUw3kVEg==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4ca643eb908b2ebf8e99708e63435736
f5fe3576d1fab4b0958e51a59e1c12e2e927de03
a9377a71a606b86c932196ab7efadacb7ec1b93d67e1e3df06d5bfac71161d56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/pages/_app-5e944a34882d3fb6.js

52.85.242.110

310 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/pages/_app-5e944a34882d3fb6.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
310 kB (309657 bytes)
Hash
b9afb962ea420a84e3e7be7e9941f902
ace3d08c162f518860338e4a8f68df8bb0a611fe
63469b66091d6f8553f973c343028e139160e773d0b8264b34a03414f9a94bcd

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/chunks/pages/_app-5e944a34882d3fb6.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 309657
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "b9afb962ea420a84e3e7be7e9941f902"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: zqIu5qHsFn.ILVaSuxt1Y5___7bwwSmt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: aw07jTR90ZueGWg58yEPQ6WdFSJ4sKPdNLWhSK_s6RlJgeXgkVyS9Q==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a6ce3d3fa35a7181d798f18939f0d4df
009eb5c2d470414820b9ab723ef55e2e36b326de
c4bc89043c14c0cce7198301f9fb809a878ce2ea48fae3cc9b34b74d7bb2eb62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100049
Date: Thu, 11 May 2023 23:25:20 GMT
Etag: "645c5d31-1d7"
Expires: Sat, 13 May 2023 03:12:49 GMT
Last-Modified: Thu, 11 May 2023 03:12:49 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bTmos9AdDBwDCGI_9wwxUk-Xk0ttOjCq6dDWgWUR2enOzVk737fAHw==

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a6ce3d3fa35a7181d798f18939f0d4df
009eb5c2d470414820b9ab723ef55e2e36b326de
c4bc89043c14c0cce7198301f9fb809a878ce2ea48fae3cc9b34b74d7bb2eb62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100049
Date: Thu, 11 May 2023 23:25:20 GMT
Etag: "645c5d31-1d7"
Expires: Sat, 13 May 2023 03:12:49 GMT
Last-Modified: Thu, 11 May 2023 03:12:49 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uNJpfPGpeR46hpvjMijDtcjBPQvYXL9Bv-a4B-D82k35vyoBFm6-6g==

cdn.s.id/app/p_230511c8aa95/user/_next/static/css/4016c3e78ee48766.css

52.85.242.110

120 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/css/4016c3e78ee48766.css
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65453)
Size
120 kB (120429 bytes)
Hash
4fa3a95683da52fae1632d12333b1b53
6c0c3b6b8196e6d6744d876a6c8e7638f6c283cf
ba8364a8f985fdc40ee28cfb5d1e5007915baaf9e0c6b2a47e496c85811178cd

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/css/4016c3e78ee48766.css HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 120429
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "4fa3a95683da52fae1632d12333b1b53"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: l8VUKWCJ84Rk3SzOk.9xK50IpmkZacuq
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: HcCYC7tT4sPShWK-q6DTi2yNESouiQoe1KkTwlFmg-yJswOCL0xg9w==
age: 33794
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/pages/forbidden-8ba2f2f9e8409d0b.js

52.85.242.110

3.5 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/pages/forbidden-8ba2f2f9e8409d0b.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3510), with no line terminators
Size
3.5 kB (3510 bytes)
Hash
afd3c6c27ec597ea1eae60f8f4788255
cfcac0bba9d401fb7cd13e1d83023ec45f48117e
66e5b55d86c0f08fd4f4eb1b255e67e92e26350c35f70279884ac043117e5825

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/chunks/pages/forbidden-8ba2f2f9e8409d0b.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 3510
date: Thu, 11 May 2023 15:06:55 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "afd3c6c27ec597ea1eae60f8f4788255"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: TZr2zoStD6hM_uIO5uYQg4JaX07GrFIX
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: pVnUoQ85Yrb6nFZisytf4TH_BNMJ-cC77jjbyxrTcKq95BESu9xWhg==
age: 29906
vary: Origin
X-Firefox-Spdy: h2

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a6ce3d3fa35a7181d798f18939f0d4df
009eb5c2d470414820b9ab723ef55e2e36b326de
c4bc89043c14c0cce7198301f9fb809a878ce2ea48fae3cc9b34b74d7bb2eb62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100049
Date: Thu, 11 May 2023 23:25:20 GMT
Etag: "645c5d31-1d7"
Expires: Sat, 13 May 2023 03:12:49 GMT
Last-Modified: Thu, 11 May 2023 03:12:49 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6zisrjkSzNDH_6Hr7fohHMAJLaa3WZcFxuXHqieGc6T_WFk_ReA8xA==

cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/main-84504437487b53da.js

52.85.242.110

93 kB

URL
cdn.s.id/app/p_230511c8aa95/user/_next/static/chunks/main-84504437487b53da.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
93 kB (93359 bytes)
Hash
047faf5eef01a98108ec7e707d6c0a4c
5f07551bda7e2688741d2bc3248d2ea4cbbd612e
98a14d0ac05f3daa1edf06f4b1ed451a24dcf34c2af67f8377db3e19e376d646

HTTP Headers

GET /app/p_230511c8aa95/user/_next/static/chunks/main-84504437487b53da.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 93359
date: Thu, 11 May 2023 14:02:07 GMT
last-modified: Thu, 11 May 2023 13:13:57 GMT
etag: "047faf5eef01a98108ec7e707d6c0a4c"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: X.8S3q6z5eZTBAVe_9fwbnQ9lTi1MAI6
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 8mKSQ5Yl1ASjk_5MeNSFAMav0dmog8oBq7lmC2Stx2RiBm0PVZbQMA==
age: 33795
vary: Origin
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816

104.16.57.101

200 OK

7.3 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816
IP
104.16.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
7.3 kB (7306 bytes)
Hash
ff1abb6ac62e075b34f74e2dc5b2cde7
8c45625ccc60114c4ae9b4f847527cba3bc98524
f21ab47fa0636c2ab844368cf232c00676bbc7304558ca7c1614ea337057894f

HTTP Headers

GET /beacon.min.js/v52afc6f149f6479b8c77fa569edb01181681764108816 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:20 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.4.2
last-modified: Mon, 17 Apr 2023 20:41:48 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5e2e3b58110afa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

31 kB

URL
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 19:27:09 GMT
expires: Thu, 09 May 2024 19:27:09 GMT
cache-control: public, max-age=31536000
age: 100692
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

31 kB

URL
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 19:27:09 GMT
expires: Thu, 09 May 2024 19:27:09 GMT
cache-control: public, max-age=31536000
age: 100692
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
89df013e8608d07679738c5bed6b85f6
49951a3cf8def7832e44ef5d8448ccea2f9c0391
2680bd8acd47863cffaafb8d8c7384abe08358ce137bdb2e4fcf9ab61840f7e6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97abca037dc8c43b1e84b02429c6d531
9def2e8d8c41de44e5bd2e86b24260c5213f7382
40246b5758465ea1dd8f9bd4310b8f995acd4f39aad8c6ea9d6b2bb049ecfe22

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97abca037dc8c43b1e84b02429c6d531
9def2e8d8c41de44e5bd2e86b24260c5213f7382
40246b5758465ea1dd8f9bd4310b8f995acd4f39aad8c6ea9d6b2bb049ecfe22

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97abca037dc8c43b1e84b02429c6d531
9def2e8d8c41de44e5bd2e86b24260c5213f7382
40246b5758465ea1dd8f9bd4310b8f995acd4f39aad8c6ea9d6b2bb049ecfe22

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7

142.250.74.168

80 kB

URL
www.googletagmanager.com/gtag/js?id=G-98MWVCBDD7
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3288)
Size
80 kB (80101 bytes)
Hash
9b31c9fc2463c7455fbe3a0b96619b98
2ffbadaaeaddb84ca4bf7b388e2444f22b424954
586a72032a605eee445847a2bb9e1f19bd173c56715ad58213e49874bfc2e5c9

HTTP Headers

GET /gtag/js?id=G-98MWVCBDD7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80101
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10823601447

142.250.74.168

71 kB

URL
www.googletagmanager.com/gtag/js?id=AW-10823601447
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4372)
Size
71 kB (70927 bytes)
Hash
7036da0d23b3f93abbb178ae7b52257e
9ff88e2206552269dab9c90b1e8f8b7aa85ab09d
de701ce1bfa2b68dc02d4c4deeefcb8e2bdf554e8a1a2a51f2dcd684908cec83

HTTP Headers

GET /gtag/js?id=AW-10823601447 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
last-modified: Thu, 11 May 2023 22:54:24 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70927
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5

142.250.74.168

80 kB

URL
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3288)
Size
80 kB (79519 bytes)
Hash
364f81d678bffd3111dba2ac1d759118
6bbb368a248b3e0b6fc879580c25cb843f4c997c
6c7da07dc75bf858f5d342d36fa1b31b2bef719ce08dcd6dd0bfb3f33e862726

HTTP Headers

GET /gtag/js?id=G-LJQ0V44EV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79519
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97abca037dc8c43b1e84b02429c6d531
9def2e8d8c41de44e5bd2e86b24260c5213f7382
40246b5758465ea1dd8f9bd4310b8f995acd4f39aad8c6ea9d6b2bb049ecfe22

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5&l=dataLayer&cx=c

142.250.74.168

80 kB

URL
www.googletagmanager.com/gtag/js?id=G-LJQ0V44EV5&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3288)
Size
80 kB (79479 bytes)
Hash
8579d96b7075d13e51308e2a67c56194
2a373146c0af8fb7709d7e6cca0bf034dbc52b5d
ad93a501df59e66cadcf73f2e00eb7e1307394344a6d60212e03505a65fbb330

HTTP Headers

GET /gtag/js?id=G-LJQ0V44EV5&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79479
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10823601447&l=dataLayer&cx=c

142.250.74.168

71 kB

URL
www.googletagmanager.com/gtag/js?id=AW-10823601447&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4372)
Size
71 kB (70882 bytes)
Hash
e0c97a28b104be7e5ba2d5067b88a67c
b8b00f3cc6038bea136150a20a4c656f6ed29dc8
1de0fb891996209aca0c1d13330641bacc4673bc239fc844c3867e11322af3b2

HTTP Headers

GET /gtag/js?id=AW-10823601447&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
last-modified: Thu, 11 May 2023 22:54:24 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70882
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c

142.250.74.168

46 kB

URL
www.googletagmanager.com/gtag/js?id=UA-225238330-2&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2271)
Size
46 kB (46347 bytes)
Hash
060714911bf99a3dd193352dd65320af
498c09ed3d21ba70bb06d73a339fae2b1eb600aa
6fadb41228517689a4f4e1baee7b21ede3cd3505a17bd5c67ef2b3b4e4a38501

HTTP Headers

GET /gtag/js?id=UA-225238330-2&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:21 GMT
expires: Thu, 11 May 2023 23:25:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46347
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

app.s.id/api/redirect

45.126.58.78

0 B

URL
app.s.id/api/redirect
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/redirect HTTP/1.1
Host: app.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 11 May 2023 23:25:21 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

app.s.id/api/user/me

45.126.58.78

0 B

URL
app.s.id/api/user/me
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/user/me HTTP/1.1
Host: app.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ds,x-rpc-lang
Referer: https://home.s.id/
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 11 May 2023 23:25:21 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
afde1d9523db3c645f0e9831d8990e65
54439b800ca647577daefd26576108b8b10a6ef5
e7901fae832f948e9e458ab15973fa61c93c1cb451af51ffedc5383138fbc135

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d

104.18.70.113

254 B

URL
ekr.zdassets.com/compose/4b27aa03-d3da-43eb-8382-660c054fbc9d
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (316), with no line terminators
Size
254 B (254 bytes)
Hash
66918f2f33d8b17ec2dd97704e1dc472
5473d2207e6b509a8bdf861b63f8e4f44df0e62b
6aba7c84f3243f4c0eafeb8ca8f05eafc1c4d8014f8da689227d9789e8b9cabd

HTTP Headers

GET /compose/4b27aa03-d3da-43eb-8382-660c054fbc9d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:21 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"6aba7c84f3243f4c0eafeb8ca8f05eaf"
x-request-id: 7c25bc58daa5169d-SEA, 7c25bc58daa5169d-SEA
x-runtime: 0.003954
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qksPJlrvyaZ9eSCRKZV9HVx%2FxYEYxJ5SWBNmU1gm8kLnMStf%2BXP52%2BODnvVyLw9%2FLr8wasxqmzbKdCzPKCm9TSpBVs93HTuzLVy3vZF%2FBHeL5cJcQ59eiABfibSND5ktMFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7c5e2e415e2c0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2

app.s.id/api/redirect

45.126.58.78

469 B

URL
app.s.id/api/redirect
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with very long lines (469), with no line terminators
Size
469 B (469 bytes)
Hash
a986c42aab43f215b2cff47a241682ad
6d9a0e2cb5cc1d1fbb2be4c07b7a9bd4876a5d0b
81d6ef397a6d125f2e35713f1329b807851d4040b122463c5106c0f97ef34149

HTTP Headers

GET /api/redirect HTTP/1.1
Host: app.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1683847521,uigh1z,837c9a700a11d5122cc6d140ea5b1fe3
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:21 GMT
content-type: application/json
content-length: 469
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL POST HTTP/2
home.s.id/cdn-cgi/rum?
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://home.s.id/forbidden#action
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint83:8D:A7:3C:E3:A9:84:19:28:12:27:7D:EF:E9:A2:FE:F8:13:2E:0F
ValiditySun, 16 Apr 2023 06:17:19 GMT - Sat, 15 Jul 2023 06:17:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1060
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Thu, 11 May 2023 23:25:22 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7c5e2e44981d1c0a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
afde1d9523db3c645f0e9831d8990e65
54439b800ca647577daefd26576108b8b10a6ef5
e7901fae832f948e9e458ab15973fa61c93c1cb451af51ffedc5383138fbc135

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 11 May 2023 23:25:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&_gaz=1&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_s=1&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&_gaz=1&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_s=1&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&_gaz=1&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_s=1&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://home.s.id
date: Thu, 11 May 2023 23:25:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

app.s.id/api/user/me

45.126.58.78

58 B

URL
app.s.id/api/user/me
IP
45.126.58.78:0
ASN
#132647 Pengelola Nama Domain Internet Indonesia

File type
JSON data\012- , ASCII text, with no line terminators
Size
58 B (58 bytes)
Hash
dc6337924fcba32afbaef2dc7a71ffcf
1bb7b761c6bf8bc117eddd9525d61844fa676190
4bc6fcf8abb0feb0a50bc17148052beafa7b3ac9aeb9e20ecf183791f6a9c50b

HTTP Headers

GET /api/user/me HTTP/1.1
Host: app.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-RPC-Lang: en
DS: 1683847521,6zmrbk,6aaf1922cbd81947eddaf3e72cb1e2b8
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 401 Unauthorized
date: Thu, 11 May 2023 23:25:21 GMT
content-type: application/json
content-length: 58
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://home.s.id
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With, X-RPC-Lang, DS
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-ratelimit-limit: 30
x-ratelimit-remaining: 29
x-ratelimit-reset: 15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

home.s.id/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL POST HTTP/2
home.s.id/cdn-cgi/rum?
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://home.s.id/forbidden#action
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint83:8D:A7:3C:E3:A9:84:19:28:12:27:7D:EF:E9:A2:FE:F8:13:2E:0F
ValiditySun, 16 Apr 2023 06:17:19 GMT - Sat, 15 Jul 2023 06:17:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: home.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 481
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/forbidden
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Thu, 11 May 2023 23:25:23 GMT
access-control-allow-origin: https://home.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7c5e2e4c1b5e1c0a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/css/b528c02960be808e.css

52.85.242.110

200 OK

105 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/css/b528c02960be808e.css
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (64935)
Size
105 kB (104645 bytes)
Hash
142d0ec64535a497b2de467fdc878091
eab04a28f72e9a9d9304c770a83c720ffbcbb26e
a0d20fddd46632e0f92ca4047cccd4d59c6874a544c033fc4090ac7e0765d128

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/css/b528c02960be808e.css HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 104645
date: Thu, 11 May 2023 13:24:10 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "142d0ec64535a497b2de467fdc878091"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: W3Lab6tBmkSvanxs_Nh3enT3eRA9GNvT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: rOy2DFXL1vQN6CZq08oYAXqcqB3F59n-7vicY_mY8xX5Zb4oX7VnNA==
age: 36074
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/css/0ccc702cf5b6f291.css

52.85.242.110

722 B

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/css/0ccc702cf5b6f291.css
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (722), with no line terminators
Size
722 B (722 bytes)
Hash
17b149a5ca6bb2e1b1b6a41e8ed22c17
682c9c9739b50e6219758282952f347b44886d3f
ecf1b45e741c358105ec165c66cc44e962e6dbfe4948ea4a4094791472e03c6d

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/css/0ccc702cf5b6f291.css HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 722
date: Thu, 11 May 2023 13:24:10 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "17b149a5ca6bb2e1b1b6a41e8ed22c17"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: 76PenCfUktqVj2fOfJLZ.QWxulokewTC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 4tLcumKaiR2GF8Gfb09BsRISKobuWrmfPL6SRqXcVf2WrdbQcr9uIQ==
age: 36074
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/webpack-63fa825eceba7404.js

52.85.242.110

200 OK

2.1 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/webpack-63fa825eceba7404.js
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2140), with no line terminators
Size
2.1 kB (2140 bytes)
Hash
a12b8b9f0767208eb25cf7afa5da056b
22af20227018d5aa3296a5efdb7bd2f91a17119f
dd33cf8d9bcc0fab97731632283facb5be8fe45bee6dc0441957a4a29b9efad7

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/webpack-63fa825eceba7404.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 2140
date: Thu, 11 May 2023 13:36:09 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "a12b8b9f0767208eb25cf7afa5da056b"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: dGn18TMB53GnAH8RVOb5Hwqw0Bj8TYO0
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 1aahNVwOKXwVWMFimJwU3LgERDjuX_NsOo-EBLVH_zpCs8rv6rFKSA==
age: 35355
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/framework-2647c7e378e02044.js

52.85.242.110

200 OK

141 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/framework-2647c7e378e02044.js
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65202)
Size
141 kB (141057 bytes)
Hash
1639a143b632bdca2ff0b6a30c784aeb
d64cbc59de02eddaaa1e5f361f6927b8c1c0d712
df6ff92ab9484674635dab18aa6d97d4bdea7d26fffc3c53fc890c218e23ff7e

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/framework-2647c7e378e02044.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 141057
date: Thu, 11 May 2023 13:36:09 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "1639a143b632bdca2ff0b6a30c784aeb"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: qxjiITwtEW9_MgOFRoRI3d4j3U2WrreL
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 9zMAth5ufajBCeAIoqMyHmnP-Oko6eXP_IA7URUBjs9WjmhGHgUVYw==
age: 35354
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/main-ae57ee9c17c390d0.js

52.85.242.110

93 kB

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/main-ae57ee9c17c390d0.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
93 kB (93058 bytes)
Hash
1e2fd193041b6a319eb1776ae861be5e
a3599fe7ad22029089faf569ce2e66060527fded
e5da21f851857a02fb23a30c384c45585a17a6aa89cd3957ae10c678a24b9648

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/main-ae57ee9c17c390d0.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 93058
date: Thu, 11 May 2023 13:36:10 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "1e2fd193041b6a319eb1776ae861be5e"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: wAenyCxm9o7uqtaWEqYZQwYxVmy5_j9H
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: kLedkuw_7drtouAKMNWnU-l-xAq2bfAv7qF7vXJPflrV873trK6J_Q==
age: 35354
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/389-3c58604d16d9e910.js

52.85.242.110

165 kB

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/389-3c58604d16d9e910.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (64667), with CRLF line terminators
Size
165 kB (165026 bytes)
Hash
de0723fc0f8847ef36892fad204fd180
47f047705fda7522490c9158e6dba1d6949de3f2
a918e36093fc1bc6aa3ba45dfdda02d32adeda69135a97167213d17f7c52bdbb

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/389-3c58604d16d9e910.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 165026
date: Thu, 11 May 2023 13:36:11 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "de0723fc0f8847ef36892fad204fd180"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: 6Qjeo9E40vLRRuUy.ycTvHI5xGfSTBGC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 3GEs_KGT7GRbPeqlN4JayM9C86BDNnhd7Hr6nbFe56wahvamIiFfMg==
age: 35353
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/_app-6940a02d227784e0.js

52.85.242.110

154 kB

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/_app-6940a02d227784e0.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
154 kB (153949 bytes)
Hash
924df73becca75b663908abfcb5735e8
88e42db729611b692d3fe5dadf289fb20fef0275
218a4447156a7263a77b2b5e008c87a34900c199ffd0441532893745091ddb57

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/pages/_app-6940a02d227784e0.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 153949
date: Thu, 11 May 2023 13:36:11 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "924df73becca75b663908abfcb5735e8"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: YT8KMdYDHbXyfYjZb3JEumvzfAV1CTmz
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: vJ98IjsFz-7_aG1_jY2RWP4GvZKXxygAXzo2k2riJiVCtZyCkPz41g==
age: 35353
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/9849d5b5-45be35bd4b4157cd.js

52.85.242.110

2.7 kB

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/9849d5b5-45be35bd4b4157cd.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2686), with no line terminators
Size
2.7 kB (2686 bytes)
Hash
ce5b46313723bd3cf5036595cef68bd3
db66130bdb125cc740f587250e0eff78a6043e89
3fd155d8504c42656f9a67bde0f6fa8c8313701dce4ca486a7d598dff22e1801

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/9849d5b5-45be35bd4b4157cd.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 2686
date: Thu, 11 May 2023 13:36:11 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "ce5b46313723bd3cf5036595cef68bd3"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: MMiuII9SksnDMB7.gciBjZ2MEe_SjKHi
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: R2nTJImVrsG0Hk0ukaUO5cYY-UubHJGyBDy41zl_k3eb3mLqozDspQ==
age: 35353
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/852-07b180691608c045.js

52.85.242.110

200 OK

16 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/852-07b180691608c045.js
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (15946), with no line terminators
Size
16 kB (15946 bytes)
Hash
67a4425fba086d8801490760c993e3da
7132c2f2212e2fa2234bbc16d72a12b306e0e9f1
e21615bf36902ffad5b17c62c22da59572374497fe3616589d7eb39d891764b4

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/852-07b180691608c045.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 15946
date: Thu, 11 May 2023 13:36:11 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "67a4425fba086d8801490760c993e3da"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: mCdYinJiYbbbXMF_AnAXKVP3VmwrI02N
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: WI0PCZhkW4yF_XwDQnzrXAm6-81V7dM5D6LQ1v7Wnfyl8VYPmKFW0A==
age: 35352
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_buildManifest.js

52.85.242.110

200 OK

999 B

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_buildManifest.js
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (999), with no line terminators
Size
999 B (999 bytes)
Hash
cf1afaddd3a63353dca46b3525b70ddb
f8256180cc5e32df9f0d074fb7b2dcb4074ad51b
2503a49a3c74e5369bd1b1aab14833abfcbce692f6159394e53f40f1f0d4e922

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_buildManifest.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 999
date: Thu, 11 May 2023 13:36:12 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "cf1afaddd3a63353dca46b3525b70ddb"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: O0bUhyXaEAKv7hnC_C.DcZ50nP0B9kpi
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 1mrm01WYQqZ6JxqDKzVoZ93ZMESFcFINWHvh4IiPGgPhDR77w4p1kg==
age: 35351
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/post/%5B...article%5D-51c50a194a28d7a1.js

52.85.242.110

200 OK

23 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/_next/static/chunks/pages/post/%5B...article%5D-51c50a194a28d7a1.js
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (23081), with no line terminators
Size
23 kB (23083 bytes)
Hash
f3116f16f654e0dafdc43b1087577abf
25f71306d01b09e2caf25ee602f2e6577eda3039
4b0b85c742b9a2f7dc0cad9a5c33db6318f4965bd48d93ed24e33451a756a51d

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/chunks/pages/post/%5B...article%5D-51c50a194a28d7a1.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 23083
date: Thu, 11 May 2023 13:36:12 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "f3116f16f654e0dafdc43b1087577abf"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: _5Sg93hbyAjbXB1BOH8Q7Ml1HQ7csE_6
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: OSeHWvTMk1IWNFE1g8cE04x7d4XqlCdSOVssBi1m60OZ3ThYC5dwdw==
age: 35352
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_ssgManifest.js

52.85.242.110

77 B

URL
cdn.s.id/app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_ssgManifest.js
IP
52.85.242.110:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

HTTP Headers

GET /app/p_230511c8aa95/blog/_next/static/o3na-76DJYVZGkZrXQrYf/_ssgManifest.js HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 77
date: Thu, 11 May 2023 13:36:13 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "b6652df95db52feb4daf4eca35380933"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: SSTmCVklAvjhLEZd_RnYeJasFcf8V6kR
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 1A3NFilYmZKOxg8n8L42RlBGNjHMH1k-iLahd-Yf4WVtyQGCpGfLWw==
age: 35351
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/images/sid-logo-new-light.svg

52.85.242.110

200 OK

3.9 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/images/sid-logo-new-light.svg
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
3.9 kB (3904 bytes)
Hash
b3e9be8f1d6a2b7f3f961c636bd7a812
206229a9f6dba2f2aad30dde2ae671a7ae740027
1af5eacc5472d595046d8320feb556463d66ca3711b5fc2e6449e5cc49cd167f

HTTP Headers

GET /app/p_230511c8aa95/blog/images/sid-logo-new-light.svg HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3904
date: Thu, 11 May 2023 13:24:50 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "b3e9be8f1d6a2b7f3f961c636bd7a812"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: eOMo_kc9JGAs2Jjot_FKsdfJud98rnbS
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: tPqkMERpsLaENHjJZoK5_oTz003aNuj-9wsDUwDZs32HGMbD4y1yKA==
age: 36034
vary: Origin
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/images/adg-red-ring.svg

52.85.242.110

200 OK

6.4 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/images/adg-red-ring.svg
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (6438), with no line terminators
Size
6.4 kB (6438 bytes)
Hash
d8656f00411289185175620333fd7531
5cb6bb53297cb7de333679fef32a2e8ac075f59c
c7fb840478ca64f3410fff0ffa40eb38fd8a7cfc36c10f117c3869ea93c00182

HTTP Headers

GET /app/p_230511c8aa95/blog/images/adg-red-ring.svg HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 6438
date: Thu, 11 May 2023 13:24:50 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "d8656f00411289185175620333fd7531"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: dZ6BogUEBZm0KD9wMDGQQwAbkEuZ50Ct
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: aAktfLz3NPMRKwoXlZHVqr1_WQMbusmM9O7q8SKoko4KKR3hEk3jtA==
age: 36034
vary: Origin
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 May 2023 06:20:48 GMT
expires: Fri, 10 May 2024 06:20:48 GMT
cache-control: public, max-age=31536000
age: 61475
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zendesk-eu.my.sentry.io/api/113/envelope/?sentry_key=460f708319894406a8ebaea641969c60&sentry_version=7

34.89.128.121

2 B

URL
zendesk-eu.my.sentry.io/api/113/envelope/?sentry_key=460f708319894406a8ebaea641969c60&sentry_version=7
IP
34.89.128.121:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/113/envelope/?sentry_key=460f708319894406a8ebaea641969c60&sentry_version=7 HTTP/1.1
Host: zendesk-eu.my.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 134
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 11 May 2023 23:25:23 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
x-envoy-upstream-service-time: 0
x-upstream-remote-address: 10.2.138.13:3000
x-upstream: relay
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 May 2023 06:20:48 GMT
expires: Fri, 10 May 2024 06:20:48 GMT
cache-control: public, max-age=31536000
age: 61475
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 May 2023 06:20:48 GMT
expires: Fri, 10 May 2024 06:20:48 GMT
cache-control: public, max-age=31536000
age: 61475
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.s.id/app/p_230511c8aa95/blog/images/sid-logo-new-dark.svg

52.85.242.110

200 OK

3.9 kB

URL GET HTTP/2
cdn.s.id/app/p_230511c8aa95/blog/images/sid-logo-new-dark.svg
IP
52.85.242.110:443
ASN
#16509 AMAZON-02

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerAmazon
Subjectcdn.s.id
FingerprintFE:A0:2C:D1:AB:F9:CF:31:E4:C9:5A:F7:0F:8A:97:19:7E:04:7F:C3
ValidityTue, 20 Dec 2022 00:00:00 GMT - Thu, 18 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
3.9 kB (3904 bytes)
Hash
5f6c6d33de5cabfc68231a77c873ac2a
4d97e1c7d12deb6d6873d5ee5bcc787084d246a7
c62efa11e56d452e201244a46cc0c80d5bbd7d676487f6bb4953d71ac55e4f04

HTTP Headers

GET /app/p_230511c8aa95/blog/images/sid-logo-new-dark.svg HTTP/1.1
Host: cdn.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 3904
date: Thu, 11 May 2023 13:24:22 GMT
last-modified: Thu, 11 May 2023 13:13:56 GMT
etag: "5f6c6d33de5cabfc68231a77c873ac2a"
x-amz-server-side-encryption: AES256
cache-control: immutable,max-age=31536000,public
content-encoding: utf-8
x-amz-version-id: C34dlwPefNjXERn7fvd3dP9.8Wq3Nfyk
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8b82a0c44466382daf259dbb61c8f23c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: XxKlSbT-MO6yTRR7OwGzzy5bHy5mFkH-nZP3PxGlv-2UKFKkuoGb1g==
age: 36062
vary: Origin
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF

142.250.74.168

200 OK

80 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
ASCII text, with very long lines (3288)
Size
80 kB (80114 bytes)
Hash
7b34b319798c89bac88c0dc65edf7c04
1fef1915e37819240fda732cb0faa4f607ebc6da
053a72ecef515d8c4299c12bfa003c071c71abd6267ea0a9782bec342126d399

HTTP Headers

GET /gtag/js?id=G-LBWQJM5WLF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:23 GMT
expires: Thu, 11 May 2023 23:25:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80114
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK

142.250.74.168

80 kB

URL
www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3288)
Size
80 kB (79478 bytes)
Hash
1cb93da440ce4041b7230830ac812f95
fe6fdb2f548921b0c62c6e34f0c6bd926908d2fb
00a803d355557da48de84ba4e1d649b871f058ee96e119ec0f3b4fdafd9cf660

HTTP Headers

GET /gtag/js?id=G-GJLS9JMJCK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 11 May 2023 23:25:23 GMT
expires: Thu, 11 May 2023 23:25:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79478
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/cdn-cgi/rum?

188.114.96.1

0 B

URL
blog.s.id/cdn-cgi/rum?
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1207
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0; _ga_LBWQJM5WLF=GS1.1.1683847523.1.0.1683847523.60.0.0; _ga_GJLS9JMJCK=GS1.1.1683847523.1.0.1683847523.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Thu, 11 May 2023 23:25:23 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7c5e2e4f4cda1c0a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&epn.percent_scrolled=90

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&epn.percent_scrolled=90
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://home.s.id/forbidden#action
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-98MWVCBDD7&gtm=45je35a0&_p=663516666&cid=1666190224.1683847521&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1683847521&sct=1&seg=0&dl=https%3A%2F%2Fhome.s.id%2Fforbidden&dt=Forbidden%20-%20S.id&en=scroll&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://home.s.id
DNT: 1
Connection: keep-alive
Referer: https://home.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://home.s.id
date: Thu, 11 May 2023 23:25:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=1666190224.1683847521&gtm=45je35a0&aip=1&z=8548357

142.250.74.163

42 B

URL
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=1666190224.1683847521&gtm=45je35a0&aip=1&z=8548357
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=1666190224.1683847521&gtm=45je35a0&aip=1&z=8548357 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 11 May 2023 23:25:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/favicon.ico

188.114.96.1

374 B

URL
blog.s.id/favicon.ico
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
374 B (374 bytes)
Hash
2137def2d03d166159c9d82347e2f023
d566cfac9656ce95ba623921422c02b7ff0b49c5
cfe37d249e5eda84e78c2c746fa7c094303fdb0288caa687c895e02a3d46c114

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_98MWVCBDD7=GS1.1.1683847521.1.0.1683847521.60.0.0; _ga=GA1.1.1666190224.1683847521; _gcl_au=1.1.1764459523.1683847521; _ga_LJQ0V44EV5=GS1.1.1683847521.1.0.1683847521.0.0.0; _ga_LBWQJM5WLF=GS1.1.1683847523.1.0.1683847523.60.0.0; _ga_GJLS9JMJCK=GS1.1.1683847523.1.0.1683847523.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:24 GMT
content-type: image/x-icon
cache-control: public, max-age=14400
last-modified: Fri, 04 Mar 2022 07:03:55 GMT
etag: W/"171-17f53bdff78"
vary: Accept-Encoding
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5UHOjvOtd43t6jLx%2FjQ6mT4oeBtVJmJaM1bW5IPAwj9sRLQl0mfIEVqvE0YX4QrhcxJDRZ2W8g0WPYfqk88ZJ5nh7w%2Fa7CQUAlYp40LlbAE0D4hQx846Ymt1JKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c5e2e505d691c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap

142.250.74.106

200 OK

12 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text
Size
12 kB (12084 bytes)
Hash
b2dfb29442dc1bdbba96360e76a2d8ff
08abbec340dad80efd39b15d0e4729f886214ed7
ac2af12c81be58d6906f22b9dbdb6d9753a775ca31d71c993839c8674acd020f

HTTP Headers

GET /css2?family=Montserrat:wght@400;500;600;700&family=Work+Sans:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 11 May 2023 23:25:23 GMT
date: Thu, 11 May 2023 23:25:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.70.113

200 OK

319 B

URL GET HTTP/2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerCloudflare, Inc.
Subjectzdassets.com
Fingerprint8A:25:1A:C6:2D:0B:57:20:0E:AC:67:73:C0:21:62:12:0D:EA:56:28
ValidityThu, 10 Nov 2022 00:00:00 GMT - Thu, 09 Nov 2023 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (343), with no line terminators
Size
319 B (319 bytes)
Hash
f3e08ca10b936ea33e525864dcfea4ce
0922b9fc183881c14c5ee65e0f6fc492c6b1fcd4
bd82135bb6113df625761d2eccb17797d6c210b3f90eb949e4b4d50293fc4519

HTTP Headers

GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:23 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"1748f7fd83003294df841b0b263aebf7"
x-request-id: 7c25e0fb19fb0b55-SEA, 7c25e0fb19fb0b55-SEA
x-runtime: 0.002357
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hk%2F3%2FRPcy1zY5pMcwtH9B5ypqj359eDhITSgTlnD7OoUBLd6m%2FsA1Sdq3Sn3750%2FeZIOrtI4UcOPWP8lZo7rhFBaDU5IvFMPJKfCCRBoFx8UrIaxRAlmDdJQWtbRjeiw0pE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7c5e2e4e8bd20b69-OSL
content-encoding: br
X-Firefox-Spdy: h2

protagcdn.com/s/s.id/site.js

104.26.7.142

200 OK

396 kB

URL GET HTTP/2
protagcdn.com/s/s.id/site.js
IP
104.26.7.142:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2022/05/19/oops-you-accessing-forbidden-link-what-is-that-9m00gu9i3?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectprotagcdn.com
Fingerprint77:9F:9C:0E:AB:36:C9:7A:8F:76:3D:6F:68:D8:E4:46:11:80:72:BC
ValidityTue, 02 May 2023 23:36:49 GMT - Mon, 31 Jul 2023 23:36:48 GMT

File type

Size
396 kB (395566 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s/s.id/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 11 May 2023 23:25:23 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=396346
expires: Thu, 11 May 2023 23:55:23 GMT
last-modified: Tue, 28 Jun 2022 09:03:45 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XmfAR%2FtdnQ8N4iT779xANU1bOMdlv8%2BXniTtBByxDLUy1dJquCuyycbLbnf46Fo%2BjYA3FD%2BPdq1bjm0%2Bde6MBevjoo8%2Bpd%2B%2BkiILajbE5zzNJCyE8LUOUfDsZnu4okY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5e2e4f9dbab51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL