Report - s.id/verifydetails

Report Overview

Submitted URL
s.id/verifydetails
IP
193.84.85.178
ASN
#59796 StormWall s.r.o.
Submitted
2024-05-08 04:49:43
Access
public
Website Title
“Oops, you are accessing a Forbidden Link!” What does that mean? - s.id
Final URL
blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn-sdotid.adg.id	unknown	2021-12-09	2023-10-11	2024-04-16	433 B	40 kB	104.21.25.99
blog.s.id	unknown	2013-08-14	2018-06-15	2024-03-05	14 kB	1.3 MB	104.26.7.249
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-05-06	976 B	440 B	216.239.34.36
static.zdassets.com	2154	2013-01-28	2018-06-24	2024-05-06	880 B	55 kB	104.18.70.113
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-07	484 B	20 kB	104.16.79.73
ekr.zdassets.com	2396	2013-01-28	2018-06-14	2024-05-07	454 B	1.6 kB	104.18.72.113
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-07	1.7 kB	394 kB	216.58.207.232
s.id	134714	2013-08-14	2014-12-04	2024-04-27	2.9 kB	48 kB	193.84.85.178
www.google.no	25607	2001-02-26	2016-04-05	2024-05-07	578 B	578 B	142.250.74.163
protagcdn.com	62031	2020-04-17	2020-04-17	2024-05-06	396 B	138 kB	172.67.75.177
adx.protagcdn.com	unknown	2020-04-17	2023-02-22	2024-04-26	412 B	1.2 kB	172.67.75.177

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	s.id/verifydetails	Arvest Bank
2024-05-07	medium	s.id/verifydetails	Arvest Bank

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	blog.s.id/_next/static/chunks/pages/_app-fd3324b928dc7e5f.js	261 kB	2024-04-03	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/pages/_app-fd3324b928dc7e5f.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 06:33:17 Last Seen2024-05-10 08:34:25 Times Seen4 Hash 1944e7460ef408f215e745b4e2bfe6f2 ff1a38c3abb1f236c456459f0912687727c19e2f e2a5333f8676207db93d0b7f31ac746c6c9e4af7a2cd4371ae3b00aca8dd697d Loading...

	blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_ssgManifest.js	77 B	2023-03-07	2024-05-19
Pretty URL blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_ssgManifest.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-05-19 19:59:12 Times Seen87593 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	blog.s.id/post/2024/01/23/sandbox%20eval%20code	136 B	2023-04-11	2024-05-19
Pretty URL blog.s.id/post/2024/01/23/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-05-19 19:58:30 Times Seen32437 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF	274 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF IP 216.58.207.232 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:46 Last Seen2024-05-08 06:49:47 Times Seen2 Hash 33e32ae8a49ce1135e85c73216b4c81b 2fac60cd3afbdb1c3e293287debe361ee6df4ca3 6f729cc651808e236a00cc5a5dc058111c2681875bceff08533a1c797b16a498 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	196 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen428 Hash c98323db1bef176960d2b1950e0800fd c3a3c7d59a039b6194c714e0af1aa73911ebd01d 5496584f2fe4ce363c48545e26b6c7756cb8399ccc481157002e175ba144422c Loading...

	blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_buildManifest.js	998 B	2024-05-08	2024-05-08
Pretty URL blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_buildManifest.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:46 Last Seen2024-05-08 06:49:46 Times Seen1 Hash d83665b072d4512ed2e6952fdb872bc4 fbcf2b23dc72e0694304cf658f018646255586ce 7966f639fb2db1967ee2aaaa8f493b618289c778760dc93d499a201dada7bb8b Loading...

	www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK	295 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK IP 216.58.207.232 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:46 Last Seen2024-05-08 06:49:47 Times Seen2 Hash b99ca0efbc81c69518ab69d231c802b1 aaf1591e8b23b0da7671f4f145f1b4bcc63ff040 1ba85856f9ad21aeb800f76aa9219e360076fcf73ea5c7661e3297993a4b3d95 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	251 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen428 Hash 968e084e30b878c76ecc20cc4cc6472a 9a01eea90ba2c553da933d93b626bf2afc8c72bd ed14e6cc5bb7748e4223f42b08b919001c2f851002a821b369c718bea43a2924 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	247 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen428 Hash ec9604d9253043e4c7ea1655cfefbb31 96f618deb14181f0b85c6a518ba3e5dcb4d909ff fdd1eeb2bdbe7baaf66d5fba08c2145b14a49acc590d9f02c1f9d8c534633aca Loading...

	blog.s.id/_next/static/chunks/903-f279e023cd941d06.js	144 kB	2023-10-13	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/903-f279e023cd941d06.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 17:02:13 Last Seen2024-05-10 08:34:25 Times Seen213 Hash e75f11ddb751a1f365cfdcd581e05f35 66ace4b25b3934aa3777b85cf1e921b6a545ba21 0b1f8fb54de3fad4a7f92fb7b03bdb9c0acff2d156dcc0f430d9221849e3113a Loading...

	blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-012c632bda54298f.js	27 kB	2024-03-05	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-012c632bda54298f.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-05 06:18:53 Last Seen2024-05-10 08:34:25 Times Seen5 Hash fd72d1757932e0f438468cafa01cda02 80021a811b1acd5136fdea0ee70a544fb1d79d7e 412a5695bfd5f37837676b35b1f351827a1b6b70e687cc7b7be14608675f4c7f Loading...

	static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f	10 kB	2024-01-15	2024-05-19
Pretty URL static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-15 08:52:01 Last Seen2024-05-19 15:43:08 Times Seen3906 Hash c0053b411b753138af468db1bd3b19f3 7c3a187aa58f2b9e5446edb761b3d4d2ba506fe7 ce337ec7dda4b3a741363a2673c7edce5c736f1660e2aa908131ecfd9dd1343f Loading...

	protagcdn.com/s/s.id/site.js	488 kB	2024-03-21	2024-05-10
Pretty URL protagcdn.com/s/s.id/site.js IP 172.67.75.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-21 05:34:37 Last Seen2024-05-10 08:34:25 Times Seen6 Hash 7906ee339c827ea5d1c381edd96c2704 20a5fa02bed08507d8507818dcfae5aab5a58558 e1b059c1bada07b7fac2fc625dc687833d6a8928ce4cd217ca258bbc2134e753 Loading...

	blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js	2.2 kB	2023-03-08	2024-05-18
Pretty URL blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:47 Last Seen2024-05-18 23:30:25 Times Seen368 Hash 13f3ce7f63a3bb54204996d7f05c8248 50cc456b9ef205eafbd230802df942bc28c393fa febd258efb733049bebaeb24269fb6448aee953be138a3fbd7cb96bd63620727 Loading...

	blog.s.id/_next/static/chunks/main-ef060895a635bf59.js	98 kB	2023-07-05	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/main-ef060895a635bf59.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-05 18:11:31 Last Seen2024-05-10 08:34:25 Times Seen443 Hash f2a13965bac13dd9035541241d134911 62994174100f29a1319140b6a06633d3f7d15123 345dd805b52864848882d8f89c24661f408925f549a626e5bcd33b6f072e146a Loading...

	blog.s.id/_next/static/chunks/b7322211-01475747cd7253a3.js	2.1 kB	2023-12-22	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/b7322211-01475747cd7253a3.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-22 13:16:18 Last Seen2024-05-10 08:34:24 Times Seen26 Hash e011fe5751087e7ed6cdc90e317f1059 bd2dc51dcddb67ae6b20bf6e8f2cb02a886b3878 715d4a9280cdabe6a3aebea3ea92c66aac07172c7c1afc07162fcd341a36bd88 Loading...

	adx.protagcdn.com/ads/advertisement/ads.js	200 B	2023-05-28	2024-05-10
Pretty URL adx.protagcdn.com/ads/advertisement/ads.js IP 172.67.75.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-28 19:52:23 Last Seen2024-05-10 08:34:24 Times Seen55 Hash fdb7e0f72e970d6ffaf969457a6bbc6e 2fd6dc468f4bac8278771a9cba719b8f395cc6e6 4307a4a83648898a0381fa21222a3670428146cb065186d0ff72449bdafa8140 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	260 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen428 Hash 06b4795adbd64ddcd90f3d56f8b77cab 82e1f620412efa5e13c1666218f356113f9c136b e847d77bd3b904a315099c754caeafb93a6aa049a5f7386c252f0d9579d2db42 Loading...

	blog.s.id/_next/static/chunks/68-c4b5260e2e5b49bd.js	14 kB	2024-05-08	2024-05-08
Pretty URL blog.s.id/_next/static/chunks/68-c4b5260e2e5b49bd.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:47 Last Seen2024-05-08 06:49:47 Times Seen2 Hash 326fd40371f87454d6908184fb85bc81 fd376a7f9641b9bda3bde66bd574c3119fee0304 b811655ec47ab21b512b5db656095799513c0b5f4bfecc50eef7aa13bb24737e Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	13 kB	2023-04-05	2024-05-19
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46:03 Last Seen2024-05-19 19:58:29 Times Seen31791 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js	141 kB	2023-07-05	2024-05-10
Pretty URL blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-05 18:11:31 Last Seen2024-05-10 08:34:25 Times Seen446 Hash 194ab7bb7a4a8d1e761df383d5d94f5d 7c8dcee0016a936b0ad8f1e9fa93d6d89d53a1b7 b1e0354048342615ee678931bb922fcb098fc4f42b3edae6df7624a2b812fb95 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	224 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen428 Hash 5d3fad59fc126716231fd01bee254004 264df770cdff4f3ff4b54a280e53671e7b08d6a7 5a24aac7b928921204e217584dcea7740f14c86d961e6b30ff5219505cbeebcb Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	271 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen426 Hash c1058202d22ac09579022379d86826ee 1999a6d0d08b35ccd64a0ee69ae169dd3a0b3356 dad812433366937d85265938bb652a2801d9d6d4c0912abb0786fe65142fe715 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	265 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:24 Times Seen427 Hash fba27f31e4e9d8b289492f2b860c88bf d96931f79cad01f3243dbff8ff9a869377367457 e7342621a7cf816200c668419e0c97d9660d7cc2bd00cfb3989143b50832bb99 Loading...

	blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect	250 B	2023-03-07	2024-05-10
Pretty URL blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect IP 104.26.7.249 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:34:55 Last Seen2024-05-10 08:34:25 Times Seen427 Hash a09918f345473da9d2f47ab9183868c8 210b67093ea8191ac2ad306976309c2cbfcd65ea ded8c2c2e016a529301571dca274c50855566e990281c816b223fd6ad68076c2 Loading...

	static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387	19 kB	2024-04-24	2024-05-19
Pretty URL static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:56:41 Last Seen2024-05-19 19:44:40 Times Seen2541 Hash 4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192 Loading...

	unknown	236 B	2023-05-11	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 12:15:07 Last Seen2024-05-10 08:34:24 Times Seen341 Hash 69b1d9624dd2b4afe3b1bbb3065b5604 db391c0e83bfb261be30fb17489be412bec71b3f 097c9819b553f9882d00aaca5acd161e47f7e8ad49e266f2dd234b87bc6ae948 Loading...

	www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF&l=dataLayer&cx=c	274 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF&l=dataLayer&cx=c IP 216.58.207.232 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:47 Last Seen2024-05-08 06:49:47 Times Seen2 Hash 5c216762ffcad5f61021234f416e5d2e 95af1d9b7bac7c6538249ee4a09dca7413ec76aa 898b379904435bfaad4a4440db3cf0e566f5b9901a90972dea880764d1a6f918 Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-c6549722e7f719838b3b.js	104 kB	2024-05-08	2024-05-09
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-c6549722e7f719838b3b.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:49:47 Last Seen2024-05-09 03:30:22 Times Seen4 Hash deba30562fc8514e5536cfa6108c3995 0148805a422400cfd5736683e9ffabaa08d4f3ab 3cb58b3baa7506e5ad90963ed1e14a9362c789d7ca63721a04f27fd1235ad5e1 Loading...

HTTP Transactions (41)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=G-5JJTR8XKXM

216.58.207.232

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-5JJTR8XKXM
IP
216.58.207.232:443
ASN
#15169 GOOGLE

Requested by
https://s.id/verifydetails
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101598 bytes)
Hash
c3f56bbeef9069a163a29eaa90421ead
747b74515a154b751e3534916a5007ad428ba098
91621f93655ddaa990dcaf3eba28e6b7da1911b63e83e22a4aa5caf6d13024a3

HTTP Headers

GET /gtag/js?id=G-5JJTR8XKXM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:49:18 GMT
expires: Wed, 08 May 2024 04:49:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101598
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s.id/favicon.ico

193.84.85.178

200 OK

15 kB

URL GET HTTP/2
s.id/favicon.ico
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Requested by
https://s.id/verifydetails
Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
06f7d82f12e49ba3c6afeacde5cb98e3
b259170743f604d922b8b4129c520efe60935163
a05789cd9683fb9e396e903f578abe9eabdb590e7968e2224fed9e51809f3993

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.id/verifydetails
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:49:18 GMT
content-type: image/x-icon
content-length: 15406
vary: Accept-Encoding
cache-control: public, max-age=31536000
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

s.id/1SV77?s=skip

193.84.85.178

302 Found

0 B

URL User Request GET HTTP/2
s.id/1SV77?s=skip
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1SV77?s=skip HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.id/verifydetails
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Wed, 08 May 2024 04:49:19 GMT
content-length: 0
location: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
cache-control: private, max-age=15
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

cdn-sdotid.adg.id/assets/klip_2310_home.jpeg

104.21.25.99

200 OK

39 kB

URL GET HTTP/2
cdn-sdotid.adg.id/assets/klip_2310_home.jpeg
IP
104.21.25.99:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectadg.id
FingerprintC8:FF:95:18:5E:4A:89:67:E5:D0:08:7C:29:48:F8:F6:C8:18:8A:AB
ValidityMon, 22 Apr 2024 20:30:32 GMT - Sun, 21 Jul 2024 20:30:31 GMT

File type
RIFF (little-endian) data, Web/P image
Size
39 kB (38940 bytes)
Hash
41e097787c826186c9cc5281368f5c85
5a50538c4a1fd77bef55dbfc369b3de784b60024
992d5dd4f6d819b096474930d8b6c9b2650042366d1f539b42198ed1fdd73cad

HTTP Headers

GET /assets/klip_2310_home.jpeg HTTP/1.1
Host: cdn-sdotid.adg.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: image/webp
content-length: 38940
last-modified: Thu, 12 Oct 2023 09:48:14 GMT
etag: "41e097787c826186c9cc5281368f5c85"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7J5fU7ky2RB2K0._gaywL1p5g8cLKNce
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uA_2OProXOy0BOanipfTNsEYL9LaE3PPq30hEj2__JUBL8EEkPIzSQ==
vary: Origin, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rG1jYr11sk0UsEZra4YJtYZvHUzXvWRybZz4Slv%2BlkyK2j%2FHz9bsmWQwZzyOB4kFEH5x0zcDYLrG%2BnBe4GkjIscUG%2FbbtBBym7jKmd9mymepUZPhbe07KV3ZtbcUh0uQGCLv8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d2948db0569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK

216.58.207.232

200 OK

100 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-GJLS9JMJCK
IP
216.58.207.232:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
100 kB (100308 bytes)
Hash
b99ca0efbc81c69518ab69d231c802b1
aaf1591e8b23b0da7671f4f145f1b4bcc63ff040
1ba85856f9ad21aeb800f76aa9219e360076fcf73ea5c7661e3297993a4b3d95

HTTP Headers

GET /gtag/js?id=G-GJLS9JMJCK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:49:21 GMT
expires: Wed, 08 May 2024 04:49:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF

216.58.207.232

200 OK

95 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF
IP
216.58.207.232:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94705 bytes)
Hash
33e32ae8a49ce1135e85c73216b4c81b
2fac60cd3afbdb1c3e293287debe361ee6df4ca3
6f729cc651808e236a00cc5a5dc058111c2681875bceff08533a1c797b16a498

HTTP Headers

GET /gtag/js?id=G-LBWQJM5WLF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:49:21 GMT
expires: Wed, 08 May 2024 04:49:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94705
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/_next/static/css/0ccc702cf5b6f291.css

104.26.7.249

200 OK

49 kB

URL GET HTTP/3
blog.s.id/_next/static/css/0ccc702cf5b6f291.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
ASCII text, with very long lines (722), with no line terminators
Size
49 kB (48683 bytes)
Hash
17b149a5ca6bb2e1b1b6a41e8ed22c17
682c9c9739b50e6219758282952f347b44886d3f
ecf1b45e741c358105ec165c66cc44e962e6dbfe4948ea4a4094791472e03c6d

HTTP Headers

GET /_next/static/css/0ccc702cf5b6f291.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"2d2-18f03f2f830"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 635014
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zlYf%2Bpvk2hL51VC5e%2BR%2BsLr6IGY4NYoFXQ%2BpXuypiFPHJhcbUfDkFlx9c3vdNGpRlXiPytHpACJ6szuwsg0qBZDhTJT6HyK%2FLWC5AuohWNbefYafBrDCWMiEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9d75695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF&l=dataLayer&cx=c

216.58.207.232

200 OK

95 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LBWQJM5WLF&l=dataLayer&cx=c
IP
216.58.207.232:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94776 bytes)
Hash
5c216762ffcad5f61021234f416e5d2e
95af1d9b7bac7c6538249ee4a09dca7413ec76aa
898b379904435bfaad4a4440db3cf0e566f5b9901a90972dea880764d1a6f918

HTTP Headers

GET /gtag/js?id=G-LBWQJM5WLF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 04:49:21 GMT
expires: Wed, 08 May 2024 04:49:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94776
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blog.s.id/assets/fonts/work-sans.css

104.26.7.249

200 OK

902 B

URL GET HTTP/3
blog.s.id/assets/fonts/work-sans.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
ASCII text
Size
902 B (902 bytes)
Hash
7a6d0b84ae6a5d1ae10f88c83e2aaf6c
cf2382a0658ca11d4374631126e134916b003d2c
40c0e92260f9a8601ddc683627bb20b99d0dfe084a8bdc8cea4923373a05278a

HTTP Headers

GET /assets/fonts/work-sans.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=300
last-modified: Wed, 06 Sep 2023 09:42:59 GMT
etag: W/"10bc-18a69dfa4b8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l5ez1Odx9CoaQGBe%2FGTB8hfjbLuXhoPAKlDy4%2BZGijgXoRn5QnL%2FpkO0%2FxKjYW9IZTwNXWLHNznYnoVPAsbcEo2st9MOfAeJj6yL46whvOugSdahgm6EHvgIlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293f9fe5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=746844743.1715143759&gtm=45je4510v889102823za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=132999066

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=746844743.1715143759&gtm=45je4510v889102823za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=132999066
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97
ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LBWQJM5WLF&cid=746844743.1715143759&gtm=45je4510v889102823za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&frm=0&z=132999066 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 May 2024 04:49:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blog.s.id/assets/fonts/dist/work-sans-normal-700.woff2

104.26.7.249

200 OK

51 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-normal-700.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50560, version 1.0
Size
51 kB (50560 bytes)
Hash
5b3db6889bd28d3ebeef0fe9ae345c4e
1105721c605858781be7f566645442344b9fe6c9
ea0a3347586d6655b46a02ad49e267649273207f1099d548e069cae4b7b2bc61

HTTP Headers

GET /assets/fonts/dist/work-sans-normal-700.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: font/woff2
content-length: 50560
cache-control: public, max-age=300
last-modified: Sat, 09 Dec 2023 02:26:56 GMT
etag: W/"c580-18c4c663580"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2hT%2FUlYU1ztOLgNWAN0lpUJwbLpVvR7DNQiZRgFhRBbe8dsFY%2Fnnegcq43%2F2zFPmDCTyxQSV%2ByYD7NlMQvXFiK8X6plQFrHG3%2Fi1cnBvdt7QkZbTTNL5L1fbCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d299bd805695-OSL
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_ssgManifest.js

104.26.7.249

200 OK

51 kB

URL GET HTTP/3
blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_ssgManifest.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
ASCII text, with no line terminators
Size
51 kB (50613 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

HTTP Headers

GET /_next/static/PKCL8Ou9GkBn4WozZ5ksc/_ssgManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"4d-18f03f2f830"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OD6qRBDr34yMk1FWZlV8N4JOpfdqSbwCE%2Br79CZcdNP5IrOZ2mH%2F5uObw3OjT3OvjH6Wr6V9hJNBokbPnao%2FYZGl62oDaOJnXgya71YqatUOgBwkRZcW6BvneA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293e9f55695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/cdn-cgi/rum?

104.26.7.249

204 No Content

0 B

URL POST HTTP/3
blog.s.id/cdn-cgi/rum?
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1255
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759; _ga_GJLS9JMJCK=GS1.1.1715143761.1.0.1715143761.0.0.0; _ga_LBWQJM5WLF=GS1.1.1715143761.1.0.1715143761.60.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Wed, 08 May 2024 04:49:21 GMT
access-control-allow-origin: https://blog.s.id
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 8806d2a029fd5695-OSL
x-frame-options: DENY
x-content-type-options: nosniff

region1.analytics.google.com/g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je4510v889102823za200&_p=1715143761001&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=746844743.1715143759&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715143761&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2024%2F01%2F23%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fs.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=2067

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je4510v889102823za200&_p=1715143761001&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=746844743.1715143759&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715143761&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2024%2F01%2F23%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fs.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=2067
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-LBWQJM5WLF&gtm=45je4510v889102823za200&_p=1715143761001&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=746844743.1715143759&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1715143761&sct=1&seg=0&dl=https%3A%2F%2Fblog.s.id%2Fpost%2F2024%2F01%2F23%2Foops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460%3Futm_source%3Dhome_sid%26utm_medium%3Dredirect&dr=https%3A%2F%2Fs.id%2F&dt=%E2%80%9COops%2C%20you%20are%20accessing%20a%20Forbidden%20Link!%E2%80%9D%20What%20does%20that%20mean%3F%20-%20s.id&en=page_view&_fv=1&_ss=1&_ee=1&tfd=2067 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://blog.s.id
date: Wed, 08 May 2024 04:49:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/web-widget-framework-c6549722e7f719838b3b.js

104.18.70.113

200 OK

42 kB

URL GET HTTP/2
static.zdassets.com/web_widget/latest/web-widget-framework-c6549722e7f719838b3b.js
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint91:4E:55:88:20:64:B8:AA:0E:42:DA:60:4E:C8:0C:21:93:4F:B1:F7
ValidityWed, 01 May 2024 21:55:19 GMT - Tue, 30 Jul 2024 21:55:18 GMT

File type
JavaScript source, ASCII text, with very long lines (65307)
Size
42 kB (42543 bytes)
Hash
deba30562fc8514e5536cfa6108c3995
0148805a422400cfd5736683e9ffabaa08d4f3ab
3cb58b3baa7506e5ad90963ed1e14a9362c789d7ca63721a04f27fd1235ad5e1

HTTP Headers

GET /web_widget/latest/web-widget-framework-c6549722e7f719838b3b.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: U4IsNDjhW60mqJ/e1bUZOuCm69jkjuP1kCKHkafJqJLUqbMkILtBHIKGC24F+i252ChJaSKh+ozD37YMLvAxg3UQREendP9V
x-amz-request-id: ZKNWRDNCHED8GJ4Z
x-amz-replication-status: COMPLETED
last-modified: Wed, 17 Apr 2024 07:14:27 GMT
etag: W/"deba30562fc8514e5536cfa6108c3995"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 17 Apr 2025 07:14:26 GMT
x-amz-version-id: yS4MpMcFRQrQh8GIM8lwbK0FzNDOx6h5
cf-cache-status: HIT
age: 62920
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QSc0Kc1awqkx12j7zspU2iM%2FgR0%2BnPwhMLZ5N6w7c7q%2FKeYqv354lrg9wo8u8RcbMnDMyJbgJRc3GcA0hf3Uc5d0oONk3uyuomI%2BI2ulrigXlbKj3GoEXFvoCCdPyhMMTiO0i7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 8806d29d5d6156ba-OSL
content-encoding: br
X-Firefox-Spdy: h2

protagcdn.com/s/s.id/site.js

172.67.75.177

200 OK

138 kB

URL GET HTTP/2
protagcdn.com/s/s.id/site.js
IP
172.67.75.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectprotagcdn.com
FingerprintE5:49:AE:5C:29:62:08:B9:64:8F:C0:0D:0E:97:B8:2F:D5:86:30:DC
ValiditySun, 21 Apr 2024 09:27:45 GMT - Sat, 20 Jul 2024 09:27:44 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size
138 kB (137554 bytes)
Hash
7906ee339c827ea5d1c381edd96c2704
20a5fa02bed08507d8507818dcfae5aab5a58558
e1b059c1bada07b7fac2fc625dc687833d6a8928ce4cd217ca258bbc2134e753

HTTP Headers

GET /s/s.id/site.js HTTP/1.1
Host: protagcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:22 GMT
content-type: application/javascript
cache-control: public, max-age=1800
cf-bgj: minify
cf-polished: origSize=488596
expires: Wed, 08 May 2024 05:19:22 GMT
last-modified: Wed, 06 Mar 2024 14:47:11 GMT
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9%2FK2cCC4A%2Bwl%2BSJ8QLVAqDKeEiDW%2BDBb7ImcYMvklSwBu%2BNqtC8lifRiE1iI4avp9KV0xP%2FZM4A78ENPWUg%2FMjR%2FV73Lxsh62uvKzsQVtUSKFU2g%2FTeJWiVDV7MJEig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806d2a068b2b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js

104.26.7.249

200 OK

141 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/framework-400d78dd60ac46ca.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
JavaScript source, ASCII text, with very long lines (65202)
Size
141 kB (141028 bytes)
Hash
194ab7bb7a4a8d1e761df383d5d94f5d
7c8dcee0016a936b0ad8f1e9fa93d6d89d53a1b7
b1e0354048342615ee678931bb922fcb098fc4f42b3edae6df7624a2b812fb95

HTTP Headers

GET /_next/static/chunks/framework-400d78dd60ac46ca.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"226e4-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 635014
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJOnpPC2p%2Beyvl80JUjcenQlWuo%2Fz2AFGGXftbKMs2iX1AzDZGflt1TJ%2BlEJx1TmnX4dxWwGcSzIW60Ti%2F1zTc5aolBLDl5r8eMDEv5OMuF2%2FPEYYy7hoLb57w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9dd5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-012c632bda54298f.js

104.26.7.249

200 OK

27 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/pages/post/%5B...article%5D-012c632bda54298f.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type

Size
27 kB (26853 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/post/%5B...article%5D-012c632bda54298f.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"68e5-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 639304
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xKI1aN5uTnSs7DQpYK%2Fxa3jhMDcSnHGMK9LziUKVhPcNkzdiRVwrtheVOeyNLv%2BtLeuCWHUrq2SVFB6qaWSeyXZkaVa%2B6EMFZeEVcCx7TtM%2BbpfKff4osmSk9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293d9f05695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387

104.16.79.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
FingerprintCE:62:08:77:7A:C9:4F:2B:EB:19:EA:54:43:3D:9F:10:06:33:69:E8
ValidityWed, 08 May 2024 03:07:03 GMT - Tue, 06 Aug 2024 03:07:02 GMT

File type
JavaScript source, ASCII text, with very long lines (19189), with no line terminators
Size
19 kB (19189 bytes)
Hash
4c980ee97cb5c001b4d19e2895fa5603
2c6fe998aa7486c4becd74cf253bdd82666a64c3
d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192

HTTP Headers

GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806d2941bb17130-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

blog.s.id/assets/fonts/dist/work-sans-normal-400.woff2

104.26.7.249

200 OK

51 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-normal-400.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50560, version 1.0
Size
51 kB (50560 bytes)
Hash
5b3db6889bd28d3ebeef0fe9ae345c4e
1105721c605858781be7f566645442344b9fe6c9
ea0a3347586d6655b46a02ad49e267649273207f1099d548e069cae4b7b2bc61

HTTP Headers

GET /assets/fonts/dist/work-sans-normal-400.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: font/woff2
content-length: 50560
cache-control: public, max-age=300
last-modified: Sat, 09 Dec 2023 02:26:56 GMT
etag: W/"c580-18c4c663580"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nGrlnE%2B3H8rhDvjkvNvAwGf%2BuXtr9zwjchmrzn98wGaEW1ROzkkHbekMpeK25gD03mCWHlB8JtETi6E7bwY3HNDQhCFEDrmihyddyncVbSepr2h5LlkBn3uYsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d299bd815695-OSL
alt-svc: h3=":443"; ma=86400

blog.s.id/images/sid-neu-logo-dark.svg

104.26.7.249

200 OK

8.5 kB

URL GET HTTP/3
blog.s.id/images/sid-neu-logo-dark.svg
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
SVG Scalable Vector Graphics image
Size
8.5 kB (8503 bytes)
Hash
18ee0f9af338f9fd648d8969dbf3c433
f243105a71afca2ebb8e249d4640376a1f5f6670
7132e17fd926233835744b192fbabff54d2a3337fd8ca3a9b1cf58051a702825

HTTP Headers

GET /images/sid-neu-logo-dark.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: image/svg+xml
cache-control: public, max-age=86400
last-modified: Wed, 05 Jul 2023 23:09:20 GMT
etag: W/"2137-18928513d00"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uxdBC6ZMArl3C7A%2B5BHWSmnYnMFRoAItVtmf59%2F3QGD4k7ZgpLUtfhBs%2FsaFHRFcPBYd79DjBZNL3edwUoN4WScLreCctgi9krq0rPSRGtLflZml0%2FCOX%2FyelQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d29a0db25695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/favicon.ico

104.26.7.249

200 OK

15 kB

URL GET HTTP/3
blog.s.id/favicon.ico
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
06f7d82f12e49ba3c6afeacde5cb98e3
b259170743f604d922b8b4129c520efe60935163
a05789cd9683fb9e396e903f578abe9eabdb590e7968e2224fed9e51809f3993

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759; _ga_GJLS9JMJCK=GS1.1.1715143761.1.0.1715143761.0.0.0; _ga_LBWQJM5WLF=GS1.1.1715143761.1.0.1715143761.60.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:22 GMT
content-type: image/x-icon
cache-control: public, max-age=300
last-modified: Sat, 30 Dec 2023 02:48:11 GMT
etag: W/"3c2e-18cb89f35f8"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nR4y6rurWCnTZXJ4Vr6lK4GTl1Kbb3OXRXIkfQjKptYvc6oHEWjusxy75VjpCSwHOcumgs7Qjs7Tc2zfg02DTXX7E71PtqCEnUbmjjdtXAFJTiRbTxxpYTedCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d29e28a65695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/assets/fonts/dist/work-sans-italic-400.woff2

104.26.7.249

200 OK

48 kB

URL GET HTTP/3
blog.s.id/assets/fonts/dist/work-sans-italic-400.woff2
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0
Size
48 kB (48432 bytes)
Hash
8461017a30cd03caf9c28085b6de6fcb
eeaca4771423dfbeab9b8023b80349650fe22153
7ffc104c9694ddc19f5162ba8021d2ea8fc262ca055042a71e0d17b09b5c0f4e

HTTP Headers

GET /assets/fonts/dist/work-sans-italic-400.woff2 HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/assets/fonts/work-sans.css
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: font/woff2
content-length: 48432
cache-control: public, max-age=300
last-modified: Sat, 09 Dec 2023 02:26:56 GMT
etag: W/"bd30-18c4c663580"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BeGoIpcwDTIUR54tW9GUBGsfTlGUrxubgXIxMVHL8%2FS54f%2B5%2FNfLE8NJ2iXiGjNAcz9dOTEctPvWqrf%2F1TcnTriGZ%2FmZnKdBT%2Bvc8%2BAT51zYmcnln%2F44T63w4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d29a0db15695-OSL
alt-svc: h3=":443"; ma=86400

ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.72.113

200 OK

336 B

URL GET HTTP/2
ekr.zdassets.com/compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.72.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint91:4E:55:88:20:64:B8:AA:0E:42:DA:60:4E:C8:0C:21:93:4F:B1:F7
ValidityWed, 01 May 2024 21:55:19 GMT - Tue, 30 Jul 2024 21:55:18 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (362), with no line terminators
Size
336 B (336 bytes)
Hash
8e65d4f4377c16f7d155a99db93a1b89
56f3e23c1d983f577537eed52552710e2020635b
02766ae821326e6f09969a0da780df68bcbad24d113f352e2958ba5b2c9b9a8d

HTTP Headers

GET /compose/1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blog.s.id/
Origin: https://blog.s.id
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600
etag: W/"bad008f1addfd0ff19dcabed9aa954d8"
x-request-id: 8800d2f93f6af269-SEA, 8800d2f93f6af269-SEA
x-runtime: 0.010578
x-zendesk-zorg: yes
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0sYSwfOT1Wcel7Vmc8iBYWX2AP1VvS9wJUcMGi2oLo1%2BeUYD7x%2BP2TlzdKNVph5IBe3ngaEtxUV6jD6GoVge%2FnPL8Ei4FUePdDXEZombYuIGpnwoYH0UwmH4CjKl4onPPeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 8806d29b9a9c56a8-OSL
content-encoding: br
X-Firefox-Spdy: h2

s.id/verifydetails

193.84.85.178

403 Forbidden

10 kB

URL User Request GET HTTP/2
s.id/verifydetails
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type
HTML document, ASCII text, with very long lines (2370)
Size
10 kB (10293 bytes)
Hash
ca1d20582188470c4f2824cdde2341b6
e95a35f8f8fee363bc258f295934eef7a1ab3402
e03197a43cd78f070b5e5aa5ae0147ed15888d52ed9c0aada10919b0ace95ea9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Arvest Bank

HTTP Headers

GET /verifydetails HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
server: nginx
date: Wed, 08 May 2024 04:49:17 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: private, max-age=15
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2

blog.s.id/_next/static/chunks/b7322211-01475747cd7253a3.js

104.26.7.249

200 OK

2.1 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/b7322211-01475747cd7253a3.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2089), with no line terminators
Size
2.1 kB (2053 bytes)
Hash
e6d5e4a8c6a10cd6b9c427efc6ff4984
e0fd7ffd2df8f241285ebadec81da25271706cda
9b2136557ef1a2ff1620caf7a98ec33d9714e722f3078ac57de931e354f55079

HTTP Headers

GET /_next/static/chunks/b7322211-01475747cd7253a3.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"805-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 639304
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VI1mITn1EwIeBs0yHAFyyCfWIoF7pbgjqzRTcUnv99uboxXKpL8dqxZzhM4K5liRd%2B%2Fubs77o%2FVODzRUIhTQ55AngfHr5ER8H3dOdiSNZxKe7SyT3G2f4ZiVXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9e25695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/css/f862b4d70094ba48.css

104.26.7.249

200 OK

128 kB

URL GET HTTP/3
blog.s.id/_next/static/css/f862b4d70094ba48.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type

Size
128 kB (127599 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/css/f862b4d70094ba48.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"1f26f-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 647897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uyh3T1tNc6txAaalfSpTnoOb%2Btw5NiTWVTY1IxcRX%2BXXpsSfKjqiSmrFIJJdBHOsoK17DBPtKVwaVYwghDjr%2B%2BktcQKSaxAuxFN7nG1whfO6x4ecd9HwfgDdVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293b9d35695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/main-ef060895a635bf59.js

104.26.7.249

200 OK

98 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/main-ef060895a635bf59.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
98 kB (98303 bytes)
Hash
f2a13965bac13dd9035541241d134911
62994174100f29a1319140b6a06633d3f7d15123
345dd805b52864848882d8f89c24661f408925f549a626e5bcd33b6f072e146a

HTTP Headers

GET /_next/static/chunks/main-ef060895a635bf59.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"17fff-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 639807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rQhm%2FXjJHlNHkP1hTa7WqkJSSJQG6sI%2Fw8v2N1veTLXXeG4UHEaZlDLTAGZfdQVuLdofiJe062ZqpD%2Fx0IBFJAF2WAa8I9fehETSYNg7t98VJQBCvZ8DnIrCxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9df5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_buildManifest.js

104.26.7.249

200 OK

998 B

URL GET HTTP/3
blog.s.id/_next/static/PKCL8Ou9GkBn4WozZ5ksc/_buildManifest.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
ASCII text, with very long lines (1056), with no line terminators
Size
998 B (998 bytes)
Hash
3bbf4ff389a66e185cd813ff022f99ae
e7f266aaefe19bf3018e38ba49603f3ef5d09c43
bc703ee91758579a8e32f9bd4ff2cd8265b2c187781679e6f817049668cf1dfb

HTTP Headers

GET /_next/static/PKCL8Ou9GkBn4WozZ5ksc/_buildManifest.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"3e6-18f03f2f830"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 645065
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FDiw2IMD9Zu6ebtaTN%2FegbR%2BihF%2FcL6w%2B7yhEMWPT%2FaCMH5Q1LSqPccYYAKJkYgZevIUCR6VGuCveDzwdA4JfsH%2BG938AnU0%2FgpCpV69Zid0nUXw1%2BLCq2bEWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293d9f25695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/68-c4b5260e2e5b49bd.js

104.26.7.249

200 OK

14 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/68-c4b5260e2e5b49bd.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
JavaScript source, ASCII text, with very long lines (14020), with no line terminators
Size
14 kB (14020 bytes)
Hash
326fd40371f87454d6908184fb85bc81
fd376a7f9641b9bda3bde66bd574c3119fee0304
b811655ec47ab21b512b5db656095799513c0b5f4bfecc50eef7aa13bb24737e

HTTP Headers

GET /_next/static/chunks/68-c4b5260e2e5b49bd.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"36c4-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P4yreoaJOEj3OTKbIKCXLDou3XjFHUhb0A7VyPeY7LMV4hRcBeCE2li06rJEX%2FkzKIteFrgA3TrqOLgYF8ieDjOkgtY%2FCDGqZVrXEZ4pA4ER4SEmXvCsC8LW2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293d9ef5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/images/adg-red-ring.svg

104.26.7.249

200 OK

6.4 kB

URL GET HTTP/3
blog.s.id/images/adg-red-ring.svg
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
SVG Scalable Vector Graphics image
Size
6.4 kB (6438 bytes)
Hash
c559e847c073ff5cb592b82b79244fff
693de6138e11dd247bce037cf5b7b56286723104
a2bca72e9f91f530ba0a170e8048b68a09cb414566f8ff852515a8ac35609380

HTTP Headers

GET /images/adg-red-ring.svg HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: image/svg+xml
cache-control: public, max-age=86400
last-modified: Sat, 12 Mar 2022 15:31:22 GMT
etag: W/"1926-17f7ec17510"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d6bNDOnCenD26PF7WKSTyJebW7vLfp2fkBD%2BQ3QdSMGOLSuSfubI4GBkfGTWDga1px3PdXb264PyA2OMFfXAJDDaIPjbr1o8k%2BvXIyEDGFs7QFR7Q9caTfuJ%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293f9ff5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js

104.26.7.249

200 OK

2.2 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/webpack-36d12a75f0098f30.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
JavaScript source, ASCII text, with very long lines (2216), with no line terminators
Size
2.2 kB (2194 bytes)
Hash
3b8d55ff817d0724309474504c0b5f73
045e60c64d98a89b5252a131b2569e4631a98f56
5d3c202145326a7eeedc6434b0477fae6a6c3fbf9f5100710037bce84fa97d7a

HTTP Headers

GET /_next/static/chunks/webpack-36d12a75f0098f30.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"892-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 639305
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LQBZsSLbwVxF2brajAbgDq00IQ%2Fsg%2FV0Vu1ue1opivqgBRfScSSTwCKDRPrdaVf6pHdhHwn1JQ6j6LZveaT7aRDEjDTm%2Bn5F6ai4WdyIF1Ynzc1krb2uddz4hA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9da5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/903-f279e023cd941d06.js

104.26.7.249

200 OK

144 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/903-f279e023cd941d06.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
JavaScript source, ASCII text, with very long lines (64667), with CRLF line terminators
Size
144 kB (143768 bytes)
Hash
e75f11ddb751a1f365cfdcd581e05f35
66ace4b25b3934aa3777b85cf1e921b6a545ba21
0b1f8fb54de3fad4a7f92fb7b03bdb9c0acff2d156dcc0f430d9221849e3113a

HTTP Headers

GET /_next/static/chunks/903-f279e023cd941d06.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"23198-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 639807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XM%2FSULCxcVISssmXFq%2BaWRj684%2Fz9VnBvusJU9sVw0y7ujWAekTdu%2BhkuN98DQrQNqQfo%2BiqO2v1w7huHcO1Ek%2BVvyZJUJbWy195X3KT1eYB6HzlqUIDeP2Maw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293d9e35695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

s.id/@dist/forbidden.svg

193.84.85.178

200 OK

4.4 kB

URL GET HTTP/2
s.id/@dist/forbidden.svg
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Requested by
https://s.id/verifydetails
Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type
ASCII text, with very long lines (4632), with no line terminators
Size
4.4 kB (4407 bytes)
Hash
e761aae1a09bd2bad8abbe856666d7fb
58605099c0662aa6520fab3fc1b140dda47c13ce
392d0c5dd2239e326f730e7cd6b276cdf535838867b90e9e235b77597cacc1a8

HTTP Headers

GET /@dist/forbidden.svg HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.id/verifydetails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:49:18 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 05 Jan 2024 07:22:18 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2

blog.s.id/assets/fonts/montserrat.css

104.26.7.249

200 OK

23 kB

URL GET HTTP/3
blog.s.id/assets/fonts/montserrat.css
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type
ASCII text
Size
23 kB (22638 bytes)
Hash
084c091d11c9f472951dafa9ead2c5e3
74697708e406d7a57881f0865f55c24b700e1d55
2a35d02ba97e3e4cd1b7c4eb7241bab9f41afb84fa2db2f18d665e946a09122e

HTTP Headers

GET /assets/fonts/montserrat.css HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:20 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=300
last-modified: Sat, 09 Dec 2023 02:26:56 GMT
etag: W/"586e-18c4c663580"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PkdWCJzyMhytPgYg5%2BcqfVsp5kME7zRqWeNhK7k660W2Lq0OBc7hWEFH8Rs26ZbQqFYcJh%2FKR8z%2Bl4f3SBuUI%2BJ%2F31RZp7fcNd%2BhGb7oaUcnHa337cW5%2FNh9vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293e9f65695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

adx.protagcdn.com/ads/advertisement/ads.js

172.67.75.177

200 OK

200 B

URL GET HTTP/3
adx.protagcdn.com/ads/advertisement/ads.js
IP
172.67.75.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectprotagcdn.com
FingerprintE5:49:AE:5C:29:62:08:B9:64:8F:C0:0D:0E:97:B8:2F:D5:86:30:DC
ValiditySun, 21 Apr 2024 09:27:45 GMT - Sat, 20 Jul 2024 09:27:44 GMT

File type
ASCII text, with no line terminators
Size
200 B (200 bytes)
Hash
a927fc059dac793861eda3df9f3e05d3
e71d11a9eb9a9a192410a1d10f83087c5170d6c7
2905bb7fd567a3831876790fbc90efc7c871f5b6acb0341349b4777672195b1a

HTTP Headers

GET /ads/advertisement/ads.js HTTP/1.1
Host: adx.protagcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:22 GMT
content-type: application/javascript
cache-control: public, max-age=691200
cf-bgj: minify
cf-polished: origSize=248
etag: W/"f8-5fb42cb349414"
expires: Thu, 16 May 2024 04:10:44 GMT
last-modified: Tue, 09 May 2023 13:32:59 GMT
strict-transport-security: max-age=63072000; includeSubDomains
vary: Accept-Encoding
x-balancer-id: 2
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2317
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Em88x6YBON6YmZM7x%2FZ0Wn%2BM4o8TyV7LczkymTdb3I1iex1TGEhCSzC7MtNvkgGdvQsReFrvpT9%2B%2BmD78E0YnWWTgBoumJSbJAd9XyZuPq2%2BCU3LjU1aAYENXI0RCX8wG%2Fnl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806d2a1f952b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blog.s.id/_next/static/chunks/pages/_app-fd3324b928dc7e5f.js

104.26.7.249

200 OK

261 kB

URL GET HTTP/3
blog.s.id/_next/static/chunks/pages/_app-fd3324b928dc7e5f.js
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type

Size
261 kB (261273 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/_app-fd3324b928dc7e5f.js HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
last-modified: Mon, 22 Apr 2024 03:56:46 GMT
etag: W/"3fc99-18f03f2f830"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 645064
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6OMpi%2BcESReaAEvlmZAqC%2FIuUjrFqEII1RkX5IXRYYOc4yS%2BVV8TiX5qKXhaOEpl%2BWMn9RnCk43ZfJjJV3louha5AR9T3NSh4qgclG226SVmfBUJddbqIkollQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d293c9e15695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

s.id/verifydetails

193.84.85.178

403 Forbidden

10 kB

URL User Request GET HTTP/2
s.id/verifydetails
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type
HTML document, ASCII text, with very long lines (2370)
Size
10 kB (10293 bytes)
Hash
ca1d20582188470c4f2824cdde2341b6
e95a35f8f8fee363bc258f295934eef7a1ab3402
e03197a43cd78f070b5e5aa5ae0147ed15888d52ed9c0aada10919b0ace95ea9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Arvest Bank

HTTP Headers

GET /verifydetails HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
server: nginx
date: Wed, 08 May 2024 04:49:18 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: private, max-age=15
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f

104.18.70.113

200 OK

10 kB

URL GET HTTP/2
static.zdassets.com/ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f
IP
104.18.70.113:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
Certificate
IssuerLet's Encrypt
Subjectzdassets.com
Fingerprint91:4E:55:88:20:64:B8:AA:0E:42:DA:60:4E:C8:0C:21:93:4F:B1:F7
ValidityWed, 01 May 2024 21:55:19 GMT - Tue, 30 Jul 2024 21:55:18 GMT

File type
JavaScript source, ASCII text, with very long lines (10187), with no line terminators
Size
10 kB (10187 bytes)
Hash
c0053b411b753138af468db1bd3b19f3
7c3a187aa58f2b9e5446edb761b3d4d2ba506fe7
ce337ec7dda4b3a741363a2673c7edce5c736f1660e2aa908131ecfd9dd1343f

HTTP Headers

GET /ekr/snippet.js?key=1dc98855-fcfe-49a8-9ac6-f3d16b24538f HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.s.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:21 GMT
content-type: application/javascript
x-amz-id-2: z1V/NuijnK7Md6R8xho26aVzAi5YWZpIy2l2KX04qLLf562XDGukX+pnpGWp4oLzz96OIYLMddM=
x-amz-request-id: 16EJPM9K30XP37FF
x-amz-replication-status: COMPLETED
last-modified: Mon, 15 Jan 2024 02:56:11 GMT
etag: W/"c0053b411b753138af468db1bd3b19f3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: sR7NItkX1i3nKckB5vEat7T2DUmPnRiJ
cf-cache-status: HIT
age: 28
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TCKeduWpHHooequzI2ZSUZJlaAkRYwXh8K8zoGZlcgpfd0%2BgxkcHmY3h2PXD42W4csMm%2BUUQoGCuskTU6Cv3kDbqrAde%2BqGLMOQbV84Rf%2B1fgMtQNbwIRSY91AWy7mgasPjRBRY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 8806d29acba756ba-OSL
content-encoding: br
X-Firefox-Spdy: h2

s.id/@dist/output.css?vbhu23tc634

193.84.85.178

200 OK

6.4 kB

URL GET HTTP/2
s.id/@dist/output.css?vbhu23tc634
IP
193.84.85.178:443
ASN
#59796 StormWall s.r.o.

Requested by
https://s.id/verifydetails
Certificate
IssuerLet's Encrypt
Subjects.id
Fingerprint7C:75:94:AE:22:82:F4:F9:A6:2F:06:AE:AA:14:B3:0B:90:43:05:69
ValiditySun, 17 Mar 2024 11:43:01 GMT - Sat, 15 Jun 2024 11:43:00 GMT

File type
ASCII text, with very long lines (6403), with no line terminators
Size
6.4 kB (6386 bytes)
Hash
2b721d1073ab9dab5c38711d397f0449
c34b97406bdce1cbd93dcea418cdd046a60c7904
acb9c5a58cbc19f9ee65c8102516b29b1b9edd81b3d6fa3cd803d7fb8885d931

HTTP Headers

GET /@dist/output.css?vbhu23tc634 HTTP/1.1
Host: s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.id/verifydetails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:49:18 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 15 Jan 2024 07:44:01 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2

blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect

104.26.7.249

200 OK

131 kB

URL User Request GET HTTP/2
blog.s.id/post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect
IP
104.26.7.249:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjects.id
Fingerprint2C:72:25:3F:7B:4C:EF:AE:D5:1B:22:6F:55:3A:ED:30:8B:53:87:29
ValidityThu, 04 Apr 2024 06:28:48 GMT - Wed, 03 Jul 2024 06:28:47 GMT

File type

Size
131 kB (131212 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /post/2024/01/23/oops-you-are-accessing-a-forbidden-link-what-does-that-mean-vp0051460?utm_source=home_sid&utm_medium=redirect HTTP/1.1
Host: blog.s.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.id/
DNT: 1
Connection: keep-alive
Cookie: _ga_5JJTR8XKXM=GS1.1.1715143758.1.0.1715143758.0.0.0; _ga=GA1.1.746844743.1715143759
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:49:19 GMT
content-type: text/html; charset=utf-8
x-powered-by: Next.js
cache-control: private, max-age=86400, must-revalidate
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 65785
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ryLH8liSSsErruRSRS8D7FLuonJ%2FesC4PchB8gQp2jhxXgRzmumhg8hMGd3s%2B6FRw4ProKZhU%2BoHfr0ujbfaJP5hf1zUuuCmV2wBcTnahWdcET%2F6RYipMsB9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8806d292d8e65699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML