Report - update.charleneslace.com/myaol/aol.com/update.htm

Report Overview

Submitted URL
update.charleneslace.com/myaol/aol.com/update.htm
IP
35.204.150.5
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2024-05-05 04:38:50
Access
public
Website Title
Www.Charleneslace.com
Final URL
www.charleneslace.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
update.charleneslace.com	unknown	2023-03-20	2012-11-06	2012-11-06	419 B	933 B	35.204.150.5
gfonts.jwwb.nl	unknown	2015-03-06	2022-11-01	2024-04-29	2.7 kB	61 kB	151.101.129.91
assets.jwwb.nl	unknown	2015-03-06	2022-06-17	2024-04-29	7.7 kB	1.6 MB	151.101.129.91
primary.jwwb.nl	unknown	2015-03-06	2023-01-12	2024-04-29	6.0 kB	845 kB	151.101.129.91
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-04	338 B	863 B	3.164.222.26
widget.salonized.com	744227	2012-12-23	2022-03-21	2024-02-23	1.1 kB	3.8 kB	52.57.108.108
www.charleneslace.com	unknown	2023-03-20	2015-10-09	2023-03-20	978 B	108 kB	35.204.150.5
plausible.io	48197	2018-12-30	2019-02-01	2024-05-03	899 B	2.5 kB	194.242.11.186
www.jouwweb.nl	198344	2003-08-11	2012-09-30	2024-04-29	418 B	28 kB	34.90.225.198
f.vimeocdn.com	3234	2010-04-21	2014-04-09	2024-05-04	1.3 kB	282 kB	151.101.246.109
cdn.plyr.io	14223	2015-02-16	2015-03-05	2024-05-03	441 B	5.9 kB	104.27.194.88
static-widget.salonized.com	749267	2012-12-23	2020-06-06	2024-02-23	1.4 kB	30 kB	3.164.240.45
player.vimeo.com	1858	2004-12-15	2013-09-26	2024-05-04	1.1 kB	22 kB	162.159.138.60
i.vimeocdn.com	3126	2010-04-21	2014-03-27	2024-05-04	1.0 kB	35 kB	151.101.64.217

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	assets.jwwb.nl/assets/website-rendering/679.e23b16aef0c23e291dc0.js	Code and strings of plugins from the Tetris framework loaded by Swid

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	www.charleneslace.com/	4.1 kB	2024-05-05	2024-05-05
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 16c480ef83bf0bb7bdc8e80dd8b12013 916791008dba10fd4ab49f03281f3295db9160b4 5266d7d4c6c71ba8368ec5db53c060aa76634322f4f78802897a3e0161d4b085 Loading...

	assets.jwwb.nl/assets/website-rendering/main.0c738913bcff251960ba.js?bust=33dd98b1d6eff18ed9dd	834 kB	2024-05-05	2024-05-05
Pretty URL assets.jwwb.nl/assets/website-rendering/main.0c738913bcff251960ba.js?bust=33dd98b1d6eff18ed9dd IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:54 Times Seen2 Hash 33dd98b1d6eff18ed9dd1db654307919 02ddb4967c0c818837db5208d0edb6b7bd4ae4af b3aea9a544422769d562fccad908be1e9ccb13470868f18e4b1daf9208073f69 Loading...

	plausible.io/js/script.manual.js	1.0 kB	2023-05-23	2024-05-17
Pretty URL plausible.io/js/script.manual.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 19:48:50 Last Seen2024-05-17 21:35:59 Times Seen254 Hash a964b476ba56fd31630d8d959e2be162 5e1e18366a5f8e78f5fe17bfddff0f262fb109b2 7a89c62fd81ac6e717830fa748b64d4c25f543d9a438e727f91a7c9b6952d8b1 Loading...

	assets.jwwb.nl/assets/website-rendering/slideshow.721dba1dc0b05cc23a26.js	11 kB	2024-05-05	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/slideshow.721dba1dc0b05cc23a26.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-17 13:25:02 Times Seen6 Hash 721dba1dc0b05cc23a26da18225b4bab 700c703d94e652902817c03fc4964d2b654920ce b53c39c176f708f98e5656d8363a30c92fa366c2731183576dc1292043c63c2f Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	877 B	2023-05-30	2024-05-18
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:13 Last Seen2024-05-18 09:00:45 Times Seen4100 Hash 1a5b4d5d3e4b011a5ab11c586f797d44 648e005b908e068c567f5236736ea923480a8c08 49653c792dd94bb881bb47fde59c3036d1009d19d8151b3894b09419eb4bc8e3 Loading...

	www.jouwweb.nl/v2/unsafe-token/3324543	110 B	2024-05-05	2024-05-05
Pretty URL www.jouwweb.nl/v2/unsafe-token/3324543 IP 34.90.225.198 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 21a48edb246e058653d203fb98dc73d9 c8d84dc6182b6ea225df7b5772d3d464d28e98c6 7a756e90b3767def4d3b5c64a3adcfce12e6a1e2e0e00f1e8a6e673b0e61adc2 Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	183 B	2024-05-05	2024-05-05
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 4a1fe3ddfc2652e9fb695871b1769734 61c2a344eedf64a87c899562181e609ad217a4e0 b1e2afe81f49b6be6f6c13cc1a9c714ff6432b61b538c11246fd861c06fffcfc Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	8.9 kB	2024-05-05	2024-05-05
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 5f9852bab8e4327f13cdfedbaa538590 92a28d9426667af214e6baf94cc225b6054bd4a4 acfea80f1966f43b0e073efde5af635c1422773c3f15f4a32b6d38a689d351ba Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	2.6 kB	2023-05-30	2024-05-18
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:14 Last Seen2024-05-18 09:00:46 Times Seen4074 Hash 7d70ffccf91ab1fa16c1ff5679defe00 652e57ea3052e22b0b856f12d1a3fcc7078215a5 343e9afe006e5a64f2aedc9a4330d6e97de7a014b84e9be2d8a55d3111f3f190 Loading...

	assets.jwwb.nl/assets/website-rendering/message-bar.88e3c41711f8d6dde14d.js	4.7 kB	2024-05-05	2024-05-05
Pretty URL assets.jwwb.nl/assets/website-rendering/message-bar.88e3c41711f8d6dde14d.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:54 Times Seen2 Hash 88e3c41711f8d6dde14dca3f8672b8fc f02c48b983da48e9173dea6fca483b37a602df92 34c184ca77636600f357252db031f81a88f00ffd9f3aaf44bf1870e799f4eea1 Loading...

	player.vimeo.com/api/player.js	38 kB	2024-04-24	2024-05-18
Pretty URL player.vimeo.com/api/player.js IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 20:48:56 Last Seen2024-05-18 01:33:02 Times Seen248 Hash da2ba57d91a7f508da290f9fa623eae4 b14816b57ca689786847fef1f5a31288e159e3e4 1b26ea722a2121ee02d8ca9c23460c5ff6cb75f840ff9e0c1ee79ecaedc7ad8f Loading...

	f.vimeocdn.com/p/4.32.0/js/player.module.js	585 kB	2024-05-02	2024-05-05
Pretty URL f.vimeocdn.com/p/4.32.0/js/player.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 20:09:37 Last Seen2024-05-05 17:06:43 Times Seen53 Hash 62e2bf465ff647fddc5c3e43b53b8d34 21f652b77ce0737b9b3adca5471da8dacf209d8e d3d83284fcb3b3c124d2cafc521edae35f4410289981c5181d433ade8690edcb Loading...

	www.charleneslace.com/	803 B	2023-03-07	2024-05-15
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31:31 Last Seen2024-05-15 21:03:24 Times Seen67 Hash 439620e0167bf50e7cf162785971332c fa5ee2c5867b582f4c52920549cc14181409531b 7eed2afc72c33b52ea732747e46672784cd1cb5adf7dfbfc047732f7644f6521 Loading...

	www.charleneslace.com/	87 B	2023-03-07	2024-05-05
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:22:34 Last Seen2024-05-05 06:38:53 Times Seen16 Hash 37d27d3286682431974c346d0eccaec5 f9f205f69d8fad84d8262eb8f8f2a5ef05fa9e68 1efbf0aec87df89ad19c42bea74ee04fd1360a542b2b0411023afcc934355cc1 Loading...

	assets.jwwb.nl/assets/website-rendering/runtime.5a106924af34aae55515.js?bust=5a106924af34aae55515	41 kB	2024-05-05	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/runtime.5a106924af34aae55515.js?bust=5a106924af34aae55515 IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-17 13:25:02 Times Seen10 Hash 5a106924af34aae55515068cddf97c81 3197bbeca94d92b2b2b647b6e0f321447d3f90c4 7fc907674d0c18bf1c0b243cea2d4d687aafed1ff6c62568683d2aa8d7e0d74a Loading...

	static-widget.salonized.com/button/main.dc15e52418783bb7ae82.js	8.4 kB	2024-05-05	2024-05-05
Pretty URL static-widget.salonized.com/button/main.dc15e52418783bb7ae82.js IP 3.164.240.45 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 7f32cf2d7d288aa63aa1d95a0c0269ec d5c4cab04d59d15caeaeba364eda3c5f06d3a536 fc2015381e441cc36096eeeec17a53eea66fa97c799ee780321e42eaf778291a Loading...

	f.vimeocdn.com/p/4.32.0/js/vendor.module.js	500 kB	2024-05-02	2024-05-05
Pretty URL f.vimeocdn.com/p/4.32.0/js/vendor.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-02 20:09:38 Last Seen2024-05-05 17:06:43 Times Seen50 Hash 566a7ce48fe143bf67341eda74734b2c f6b278ae4701bc0dfca1b5513e919f897ed40fde 4e70c7d7c9e451902eb7c496897f78ea882fda8b9039967718afa7eea126345b Loading...

	www.charleneslace.com/	419 B	2023-03-08	2024-05-17
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 12:51:16 Last Seen2024-05-17 13:24:59 Times Seen37 Hash d7b566c8779a1b746169ee715db70ea8 430b103314e0115863e3275494da6d527c7cc41e b588b82fef3dd5f86fba924dbd83699f26f3fe5ce16f4f3bacbe7d0c57854edb Loading...

	www.charleneslace.com/	198 B	2024-05-05	2024-05-05
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:53 Times Seen1 Hash 7692649b319d67b73c4cc0d7c54d402d 2a7ce143f9829d2cbc9c2adc5ca8eb3c1e64507f 09d113a506ae6fbd23aa276ac4416046b809408ca7f5cf52b9a591a224e89788 Loading...

	assets.jwwb.nl/assets/website-rendering/cookieconsent.48dac542dc2e75b3b6ed.js	80 kB	2024-03-29	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/cookieconsent.48dac542dc2e75b3b6ed.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 07:14:15 Last Seen2024-05-17 13:25:02 Times Seen8 Hash 48dac542dc2e75b3b6ed9df150988a3c 59c5931ace72f72da72fb2108cd6e788da93cc1d 67d5b0831a68a4aaf8560237bd5df4bd9c0641dead2072e22099cf5f29bcb171 Loading...

	assets.jwwb.nl/assets/build/website-rendering/nl-NL.js?bust=b1b67a50cd42fc0dbb3f	20 kB	2024-05-05	2024-05-17
Pretty URL assets.jwwb.nl/assets/build/website-rendering/nl-NL.js?bust=b1b67a50cd42fc0dbb3f IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-17 13:25:02 Times Seen4 Hash b1b67a50cd42fc0dbb3f62cb73562688 596ddc6c9203a1b5830736c0e367cef368d9e5cb b36849be208c6fdcb47144ce0863351cf6ae47a23abd2b015aedbc8b5b353adf Loading...

	assets.jwwb.nl/assets/website-rendering/866.344f0fcaf064f420603f.js?bust=adf935861227b97e06cb	2.7 MB	2024-03-21	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/866.344f0fcaf064f420603f.js?bust=adf935861227b97e06cb IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-21 06:06:52 Last Seen2024-05-17 13:25:02 Times Seen22 Hash adf935861227b97e06cbf739d0893937 3fce8faca1d193d5c9a946d375de0f7d636cb5ef 5c2db724b180839e0e8670a03b148f065a9299cb3e7e7eca4fa7ff07c6186f79 Loading...

	assets.jwwb.nl/assets/website-rendering/element-video-plyr.6a90130a20fab6acc65d.js	7.3 kB	2024-05-05	2024-05-05
Pretty URL assets.jwwb.nl/assets/website-rendering/element-video-plyr.6a90130a20fab6acc65d.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:54 Times Seen2 Hash 6a90130a20fab6acc65d07594c7cc6b2 07de72dc57f6779d0556cc95c4088b7809c7e3c3 da07d6e8394d32025ae60c07d760fac39a85e82a6d6f7410b458845abe43c791 Loading...

	assets.jwwb.nl/assets/website-rendering/webshop.d32840195423c6db71ad.js	212 kB	2024-05-05	2024-05-05
Pretty URL assets.jwwb.nl/assets/website-rendering/webshop.d32840195423c6db71ad.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:54 Times Seen2 Hash 7c5ee102ac72e03eeef8d493a2c71ebd b7e1f39724aebb9d258f8ab433936259e1d80a30 66f6c67d006b71f328e36a992504cdf528ead00284831cfcde28df695f2c7782 Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	129 B	2023-05-30	2024-05-18
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:14 Last Seen2024-05-18 09:00:46 Times Seen4062 Hash 8e500be2456c7adccd83f363e52ef5bd 327c9f69248844f40f89b9ade646394c825f2a28 95c35c2edce177114158dda90aa3f769080a60b08e437651df026a422da4c17d Loading...

	player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1	0 B	2023-03-07	2024-05-18
Pretty URL player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 15:45:45 Times Seen37789287 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static-widget.salonized.com/loader.js	14 kB	2024-05-05	2024-05-05
Pretty URL static-widget.salonized.com/loader.js IP 3.164.240.45 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-05 06:38:55 Times Seen2 Hash ef8721c5348af8727368931bc99c2346 f5e2c22d65a9c00f26c2147d7030aa829abc6943 b1ca3cc7e74c323973f16f3abf5c1dead6806e13ecb2d7975108270ecc063903 Loading...

	www.charleneslace.com/	274 B	2024-05-05	2024-05-07
Pretty URL www.charleneslace.com/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 06:38:53 Last Seen2024-05-07 00:12:38 Times Seen2 Hash fb59e1371c05ba5473b6536597e5dc97 9b9e9c82e0274004d400f425321667efdc9cc01b 1c1f2ff2fa3247d3bfb8f3e35de683906a681aac5c6b676ae22a5341917eda93 Loading...

	assets.jwwb.nl/assets/website-rendering/jquery.iframe-transport.d72f2650657951aab342.js	20 kB	2024-03-21	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/jquery.iframe-transport.d72f2650657951aab342.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-21 06:06:51 Last Seen2024-05-17 13:25:02 Times Seen8 Hash d72f2650657951aab3427bc92a02f255 fb8bbed4dfd894c777c6d91d91d65d997d15fc1c d5f544ab9cbddc05db8de8365c4ada52ad1b3132540a4ec3771f5f73f88adde3 Loading...

	assets.jwwb.nl/assets/website-rendering/679.e23b16aef0c23e291dc0.js	757 kB	2024-05-05	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/679.e23b16aef0c23e291dc0.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:54 Last Seen2024-05-17 13:25:02 Times Seen6 Hash e23b16aef0c23e291dc04af5a73c34dc 1ee741b0ab54d5df6672b985382d6439c5978d5d 0bb30dc2c89ed6be2c50359d0d711f85d710e68a54751157a7731a7b0a318e1a Loading...

	assets.jwwb.nl/assets/website-rendering/bxslider.2f6a18698383773513ba.js	157 kB	2024-05-05	2024-05-17
Pretty URL assets.jwwb.nl/assets/website-rendering/bxslider.2f6a18698383773513ba.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 06:38:54 Last Seen2024-05-17 13:25:02 Times Seen4 Hash 2f6a18698383773513ba57ba98dac6a8 c5e1eabd2ee348b4efdcf42ed3a445fa982e2392 2cf60c0f6d154e505f5bc63b1a92416ceb63476ff7c63785c62334c693274bc0 Loading...

HTTP Transactions (52)

URL IP Response Size

update.charleneslace.com/myaol/aol.com/update.htm

35.204.150.5

301 Moved Permanently

462 B

URL User Request GET HTTP/1.1
update.charleneslace.com/myaol/aol.com/update.htm
IP
35.204.150.5:80
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document, ASCII text
Size
462 B (462 bytes)
Hash
accd2b66ab5e1b293cd9c822951eb57b
e7054f26f3a61ae47109f12265df0272065ccb20
a0b961f2fae6800fc9aef603ba118a44ce9806892376e64f49edb46f1389c61b

HTTP Headers

GET /myaol/aol.com/update.htm HTTP/1.1
Host: update.charleneslace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
server: nginx
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
date: Sun, 05 May 2024 04:38:19 GMT
location: https://www.charleneslace.com/myaol/aol.com/update.htm
content-security-policy: frame-ancestors 'self'
expires: Sun, 05 May 2024 04:38:19 GMT
cache-control: max-age=0, must-revalidate, no-cache, no-store, private, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
connection: close

assets.jwwb.nl/assets/website-rendering/fonts/icons-website-rendering/font/website-rendering.woff2?bust=75c266641ea17e898ac3

151.101.129.91

200 OK

11 kB

URL GET HTTP/2
assets.jwwb.nl/assets/website-rendering/fonts/icons-website-rendering/font/website-rendering.woff2?bust=75c266641ea17e898ac3
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11220, version 1.0
Size
11 kB (11220 bytes)
Hash
75c266641ea17e898ac3a6f8adfe6f55
e734993130687ddaaa6ad5cf0c681141330a4b91
2601a0cafe212cabf07c37465ee8ac417f919f046d6f4da7f32febcf719a707b

HTTP Headers

GET /assets/website-rendering/fonts/icons-website-rendering/font/website-rendering.woff2?bust=75c266641ea17e898ac3 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleneslace.com/
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 01 Mar 2024 12:33:47 GMT
etag: "75c266641ea17e898ac3a6f8adfe6f55"
content-type: application/octet-stream
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 5587271
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11220
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/styles.ecdc7f7b7626a97fab7b.css?bust=ecdc7f7b7626a97fab7b

151.101.129.91

200 OK

110 kB

URL GET HTTP/2
assets.jwwb.nl/assets/website-rendering/styles.ecdc7f7b7626a97fab7b.css?bust=ecdc7f7b7626a97fab7b
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Unicode text, UTF-8 text, with very long lines (62937)
Size
110 kB (110202 bytes)
Hash
ecdc7f7b7626a97fab7bde2a38d2f9af
0df1fdc11fd64d94b245059cda39515593eae69d
c7899d779a1733c11cc3451debf2b0bce6bcfc17fc742c8d45119e3c916fcc4f

HTTP Headers

GET /assets/website-rendering/styles.ecdc7f7b7626a97fab7b.css?bust=ecdc7f7b7626a97fab7b HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 02 May 2024 13:34:27 GMT
etag: "d7a32a0e6710596d425d5c5dff19b8db"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 226949
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 110202
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/runtime.5a106924af34aae55515.js?bust=5a106924af34aae55515

151.101.129.91

200 OK

16 kB

URL GET HTTP/2
assets.jwwb.nl/assets/website-rendering/runtime.5a106924af34aae55515.js?bust=5a106924af34aae55515
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (34784)
Size
16 kB (15584 bytes)
Hash
5a106924af34aae55515068cddf97c81
3197bbeca94d92b2b2b647b6e0f321447d3f90c4
7fc907674d0c18bf1c0b243cea2d4d687aafed1ff6c62568683d2aa8d7e0d74a

HTTP Headers

GET /assets/website-rendering/runtime.5a106924af34aae55515.js?bust=5a106924af34aae55515 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 03 May 2024 10:06:58 GMT
etag: "3cf87d6fd876687c9f13a473ffb51bc7"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 152992
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 15584
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/build/website-rendering/nl-NL.js?bust=b1b67a50cd42fc0dbb3f

151.101.129.91

200 OK

8.5 kB

URL GET HTTP/2
assets.jwwb.nl/assets/build/website-rendering/nl-NL.js?bust=b1b67a50cd42fc0dbb3f
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (13244)
Size
8.5 kB (8540 bytes)
Hash
b1b67a50cd42fc0dbb3f62cb73562688
596ddc6c9203a1b5830736c0e367cef368d9e5cb
b36849be208c6fdcb47144ce0863351cf6ae47a23abd2b015aedbc8b5b353adf

HTTP Headers

GET /assets/build/website-rendering/nl-NL.js?bust=b1b67a50cd42fc0dbb3f HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 11 Apr 2024 11:27:23 GMT
etag: "6a10204265dbce12f0dfbbb830de4ed2"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 2048984
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8540
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/main.0c738913bcff251960ba.js?bust=33dd98b1d6eff18ed9dd

151.101.129.91

200 OK

221 kB

URL GET HTTP/2
assets.jwwb.nl/assets/website-rendering/main.0c738913bcff251960ba.js?bust=33dd98b1d6eff18ed9dd
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65426)
Size
221 kB (220915 bytes)
Hash
33dd98b1d6eff18ed9dd1db654307919
02ddb4967c0c818837db5208d0edb6b7bd4ae4af
b3aea9a544422769d562fccad908be1e9ccb13470868f18e4b1daf9208073f69

HTTP Headers

GET /assets/website-rendering/main.0c738913bcff251960ba.js?bust=33dd98b1d6eff18ed9dd HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 04 May 2024 19:16:24 GMT
etag: "6c0173020eddfad4c9489bcf1abdbf8f"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 33549
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 220915
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/866.344f0fcaf064f420603f.js?bust=adf935861227b97e06cb

151.101.129.91

200 OK

814 kB

URL GET HTTP/2
assets.jwwb.nl/assets/website-rendering/866.344f0fcaf064f420603f.js?bust=adf935861227b97e06cb
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65453)
Size
814 kB (814178 bytes)
Hash
adf935861227b97e06cbf739d0893937
3fce8faca1d193d5c9a946d375de0f7d636cb5ef
5c2db724b180839e0e8670a03b148f065a9299cb3e7e7eca4fa7ff07c6186f79

HTTP Headers

GET /assets/website-rendering/866.344f0fcaf064f420603f.js?bust=adf935861227b97e06cb HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "8f3e16fc20e1c1b7a1681a4faf58e216"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:20 GMT
age: 4038085
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 814178
X-Firefox-Spdy: h2

gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CBevan%3A400%2C700%2C400italic%2C700italic

151.101.129.91

200 OK

643 B

URL GET HTTP/2
gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CBevan%3A400%2C700%2C400italic%2C700italic
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
ASCII text
Size
643 B (643 bytes)
Hash
cc030b9aa9966f5dadef0836a8dcca9f
bc53726c7ec10cd51bb8de20eab448aabbbe3cf2
e9cdbaed29304077c366b1b4d2d1d700db35ccd64f0374b76c8ec28e9b8923f4

HTTP Headers

GET /css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CBevan%3A400%2C700%2C400italic%2C700italic HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
age: 43227
date: Sun, 05 May 2024 04:38:20 GMT
vary: Accept-Encoding
content-length: 643
X-Firefox-Spdy: h2

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&height=70

151.101.129.91

200 OK

1.2 kB

URL GET HTTP/2
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&height=70
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 70x70, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.2 kB (1186 bytes)
Hash
4738fb855fb06e570499f96313c1ab9c
a174f409434846022e585ca73ea946d14b9467ad
ced991c9168394245907fa66cd13cc2138345e70bef35f065fe8961666dbe799

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&height=70 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "tQ2Zbwi5b+e2MQYtdg/GaPC5jKZotG3t96ODpswwd78"
fastly-io-info: ifsz=37576 idim=600x600 ifmt=webp ofsz=1186 odim=70x70 ofmt=webp
fastly-io-served-by: img05-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1789051
date: Sun, 05 May 2024 04:38:20 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1186
X-Firefox-Spdy: h2

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&width=127

151.101.129.91

200 OK

2.9 kB

URL GET HTTP/2
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&width=127
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 127x127, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.9 kB (2924 bytes)
Hash
d5e0079a3e4f94496af507f53593d194
81a6a508e1bab1321afd2dbc45e703dfb7b0f0c4
95598f8a02fa6e49dc925ad79cb2382db7069034323ecf45de908998893ac4f8

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/arcgj0/charllogo.webp?enable-io=true&enable=upscale&width=127 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "Mv4f+m3T8tE1rRqQcKoenI0y0TXzEoE3jNkTVFXdOkY"
fastly-io-info: ifsz=37576 idim=600x600 ifmt=webp ofsz=2924 odim=127x127 ofmt=webp
fastly-io-served-by: img05-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1789051
date: Sun, 05 May 2024 04:38:20 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2924
X-Firefox-Spdy: h2

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/style.css?bust=1712657571

151.101.129.91

200 OK

17 kB

URL GET HTTP/2
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/style.css?bust=1712657571
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Unicode text, UTF-8 text, with very long lines (56501)
Size
17 kB (16761 bytes)
Hash
6d9c096ce847955708f240d8e1852746
f6df1048408803880390d976a915f0eebae66c29
d80c506165ef8390fcf3eb6f05ac1e4dd40ee14e8faeb98de2c5ca32393209c6

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/style.css?bust=1712657571 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 09 Apr 2024 10:12:51 GMT
etag: "0206875aefc19ba1f7af721dcd9677f2"
content-type: text/css
content-encoding: gzip
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 326868
date: Sun, 05 May 2024 04:38:20 GMT
vary: Accept-Encoding
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16761
X-Firefox-Spdy: h2

www.charleneslace.com/myaol/aol.com/update.htm

35.204.150.5

301 Moved Permanently

17 kB

URL User Request GET HTTP/2
www.charleneslace.com/myaol/aol.com/update.htm
IP
35.204.150.5:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subjectwww.charleneslace.com
Fingerprint98:E7:B2:E9:7E:CF:32:99:DD:C4:45:49:EA:1F:D1:A1:B6:67:67:41
ValiditySat, 20 Apr 2024 09:31:10 GMT - Fri, 19 Jul 2024 09:31:09 GMT

File type
data
Size
17 kB (16738 bytes)
Hash
f77165cfa2f28ea7e333b9d8050bc152
f61e9613a517c09cdfc155b50fa0a2358218edeb
b6b67dcf3884be99b937915abe88bea930e5dd640b293e2828a86d10fcc33325

HTTP Headers

GET /myaol/aol.com/update.htm HTTP/1.1
Host: www.charleneslace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
content-type: text/html; charset=UTF-8
date: Sun, 05 May 2024 04:38:20 GMT
location: https://www.charleneslace.com/
content-security-policy: frame-ancestors 'self'
expires: Sun, 05 May 2024 04:38:20 GMT
cache-control: max-age=0, must-revalidate, private, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2

151.101.129.91

200 OK

14 kB

URL GET HTTP/2
gfonts.jwwb.nl/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13980, version 1.0
Size
14 kB (13980 bytes)
Hash
b7d6b48d8d12946dc808ff39aed6c460
3f18028a04b3fb39bb1cc33dce401d04e9207970
d4ae5188a65370ecfe28f42293bbee8297cfd5712c6aadfdb270d48f2bcd88b0

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:17:19 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:21 GMT
age: 5949613
content-length: 13980
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/lato/v24/S6u8w4BMUTPHjxsAXC-qNiXg7Q.woff2

151.101.129.91

200 OK

15 kB

URL GET HTTP/2
gfonts.jwwb.nl/s/lato/v24/S6u8w4BMUTPHjxsAXC-qNiXg7Q.woff2
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14860, version 1.0
Size
15 kB (14860 bytes)
Hash
1505dcab9d5a7cbd5a01472254e6595b
17fd977cfdf064e6fa06300cbb42612b91a26ab0
5c3360f8439a1a3f48e8b58fcb6f3a3cbaaa76488a1b846acfe1e3b623c0562f

HTTP Headers

GET /s/lato/v24/S6u8w4BMUTPHjxsAXC-qNiXg7Q.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:10:03 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:21 GMT
age: 1453235
content-length: 14860
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2

151.101.129.91

200 OK

14 kB

URL GET HTTP/2
gfonts.jwwb.nl/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14168, version 1.0
Size
14 kB (14168 bytes)
Hash
017598645bcc882a3610effe171c2ca3
ceaca8172b95b6954d5a5752698a5162d7e9877c
7a7ce1a34f3e9944fe88fc61abbc93b6db383afa2b90815fd7ccea456fbce4e5

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:29:56 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:21 GMT
age: 796483
content-length: 14168
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/bevan/v24/4iCt6KZ0a9NXjG8YaCnTsmaKH4Q.woff2

151.101.129.91

200 OK

14 kB

URL GET HTTP/2
gfonts.jwwb.nl/s/bevan/v24/4iCt6KZ0a9NXjG8YaCnTsmaKH4Q.woff2
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14140, version 1.0
Size
14 kB (14140 bytes)
Hash
c14a051b4599413da4871c114080dea7
f86b91771004ec97d39552ffe1871c162a5dcf90
d05425f206de9000bd2fce5852323e5b4e291fc5c1dac84a02e6ab4528f39c5f

HTTP Headers

GET /s/bevan/v24/4iCt6KZ0a9NXjG8YaCnTsmaKH4Q.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Thu, 24 Aug 2023 20:19:11 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
age: 798584
date: Sun, 05 May 2024 04:38:21 GMT
content-length: 14140
X-Firefox-Spdy: h2

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace2-2.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408

151.101.129.91

200 OK

264 kB

URL GET HTTP/2
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace2-2.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
264 kB (264026 bytes)
Hash
28ad782a15cfe4057bbf6fe9da01c1ff
36ad44069c530a629d2db5224803328666da17c7
52526117f81290726239cc94e4f108a068f29162cd8a8bb94f8f02aa7c7501e9

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace2-2.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "Ycx1CtDYGOfnsFLRI64FIwOnLg4y5NjEIWt5ojruHag"
fastly-io-info: ifsz=1063809 idim=1880x720 ifmt=png ofsz=264026 odim=1020x408 ofmt=webp
fastly-io-served-by: img01-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 892838
date: Sun, 05 May 2024 04:38:21 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 264026
X-Firefox-Spdy: h2

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/xmwi35/aaa.webp?enable-io=true&enable=upscale&crop=1284%2C1210%2Cx0%2Cy198%2Csafe&width=363&height=342

151.101.129.91

200 OK

28 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/xmwi35/aaa.webp?enable-io=true&enable=upscale&crop=1284%2C1210%2Cx0%2Cy198%2Csafe&width=363&height=342
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 363x342, Scaling: [none]x[none], YUV color, decoders should clamp
Size
28 kB (28240 bytes)
Hash
9f4a09b28ddd442f805c020d2a6c95c4
9c57b3b096133549ec650126717b5aec2f12b53c
77c3f7663d6dc97a87c6ee63c1b213ead7f244b5a665562e8ba3e0def12a76ed

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/xmwi35/aaa.webp?enable-io=true&enable=upscale&crop=1284%2C1210%2Cx0%2Cy198%2Csafe&width=363&height=342 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 28240
content-type: image/webp
etag: "lMOp1gHXV2cRX1KQiZOjjeewQ30v6MZuc9MwjIUT6r4"
fastly-io-info: ifsz=266220 idim=1284x1605 ifmt=webp ofsz=28240 odim=363x342 ofmt=webp
fastly-io-served-by: img06-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 253361
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/ubuncm/charleneslacesubbanner12.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310

151.101.129.91

200 OK

70 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/ubuncm/charleneslacesubbanner12.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
70 kB (69934 bytes)
Hash
398afb91879c5178b4e4ca76d8512d17
47aa0112bcfcfba1eeb532f2672d40db1b89f520
46821bca85cfdaa34c3efbd43d15abbd6e31c3bf2dfbbb2c8eadae9c0c00cf2b

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/ubuncm/charleneslacesubbanner12.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 69934
content-type: image/webp
etag: "MZtKnqszBK6GVR7E5FLMmvfpx5wjXE9S2znSBvK+U6k"
fastly-io-info: ifsz=812390 idim=1080x1080 ifmt=png ofsz=69934 odim=310x310 ofmt=webp
fastly-io-served-by: img11-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 298539
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/8vq422/charleneslacesubbanner5.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310

151.101.129.91

200 OK

79 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/8vq422/charleneslacesubbanner5.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
79 kB (79216 bytes)
Hash
96aa20e0803bc7b5bc9b82297655d1b6
e2ac0ab1a752855ac15ab2e5705311dec94ade0b
b1ac59aac80873cb4f01970deefe5eb1dd54be5254175668c33a3fc9b0725331

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/8vq422/charleneslacesubbanner5.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 79216
content-type: image/webp
etag: "jnrBkzgW6uWRX6R9FH+q7//gPd0102Y78KeqyBOxJQE"
fastly-io-info: ifsz=1096457 idim=1080x1080 ifmt=png ofsz=79216 odim=310x310 ofmt=webp
fastly-io-served-by: img13-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 298539
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/2qf0u5/charleneslacesubbanner6.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310

151.101.129.91

200 OK

67 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/2qf0u5/charleneslacesubbanner6.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
67 kB (66856 bytes)
Hash
4ad305638d16231e4ce90898826a2cdc
b52ad3c605800599be9b985294a6bfce9d9aba47
9f12b3e27eedef2b2a6f2366de7b36458255e7921c06b12bb0bfc2e7eaa7cfe6

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/2qf0u5/charleneslacesubbanner6.png?enable-io=true&enable=upscale&crop=1080%2C1080%2Cx0%2Cy0%2Csafe&width=310&height=310 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 66856
content-type: image/webp
etag: "VHeDchx/OswlWQukYvb9bTjoV7K1NlT3XMSgVTLHIl4"
fastly-io-info: ifsz=985045 idim=1080x1080 ifmt=png ofsz=66856 odim=310x310 ofmt=webp
fastly-io-served-by: img14-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 298539
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/jquery.iframe-transport.d72f2650657951aab342.js

151.101.129.91

200 OK

8.8 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/jquery.iframe-transport.d72f2650657951aab342.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (18264)
Size
8.8 kB (8804 bytes)
Hash
d72f2650657951aab3427bc92a02f255
fb8bbed4dfd894c777c6d91d91d65d997d15fc1c
d5f544ab9cbddc05db8de8365c4ada52ad1b3132540a4ec3771f5f73f88adde3

HTTP Headers

GET /assets/website-rendering/jquery.iframe-transport.d72f2650657951aab342.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 8804
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "3fb7e1d7cc73982bba4d735784f96ca9"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 4038085
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/482.db3d6a60a1e36af1b3de.css

151.101.129.91

200 OK

16 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/482.db3d6a60a1e36af1b3de.css
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
Unicode text, UTF-8 text, with very long lines (33336)
Size
16 kB (16264 bytes)
Hash
db3d6a60a1e36af1b3deabb0de6b0d9f
265aa3cb0f54f49d196d6accc146f0b205227aca
e7b6a19d736d39a17c70df7e10f711f2a62f337bfc7d8a5cd3f5c53626efd289

HTTP Headers

GET /assets/website-rendering/482.db3d6a60a1e36af1b3de.css HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 16264
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "1164c71d04e603b5769a975752ce58e7"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 2352724
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/element-video-plyr.6a90130a20fab6acc65d.js

151.101.129.91

200 OK

3.5 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/element-video-plyr.6a90130a20fab6acc65d.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (6128)
Size
3.5 kB (3540 bytes)
Hash
6a90130a20fab6acc65d07594c7cc6b2
07de72dc57f6779d0556cc95c4088b7809c7e3c3
da07d6e8394d32025ae60c07d760fac39a85e82a6d6f7410b458845abe43c791

HTTP Headers

GET /assets/website-rendering/element-video-plyr.6a90130a20fab6acc65d.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3540
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: W/"ffa37f4b27af9d16fcdf0cc20917bda2"
content-type: application/javascript
access-control-allow-origin: *
access-control-expose-headers: *
x-guploader-response-body-transformations: gunzipped
warning: 214 UploadServer gunzipped
server: UploadServer
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 4038076
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/679.e23b16aef0c23e291dc0.js

151.101.129.91

200 OK

226 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/679.e23b16aef0c23e291dc0.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
226 kB (225563 bytes)
Hash
e23b16aef0c23e291dc04af5a73c34dc
1ee741b0ab54d5df6672b985382d6439c5978d5d
0bb30dc2c89ed6be2c50359d0d711f85d710e68a54751157a7731a7b0a318e1a

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Code and strings of plugins from the Tetris framework loaded by Swid

HTTP Headers

GET /assets/website-rendering/679.e23b16aef0c23e291dc0.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 225563
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "f9550c23d1c577ac241c3ce2f19834d3"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 2435310
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/slideshow.721dba1dc0b05cc23a26.js

151.101.129.91

200 OK

4.8 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/slideshow.721dba1dc0b05cc23a26.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (8828)
Size
4.8 kB (4794 bytes)
Hash
721dba1dc0b05cc23a26da18225b4bab
700c703d94e652902817c03fc4964d2b654920ce
b53c39c176f708f98e5656d8363a30c92fa366c2731183576dc1292043c63c2f

HTTP Headers

GET /assets/website-rendering/slideshow.721dba1dc0b05cc23a26.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 4794
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "400208c03201c565d96aed79df33626e"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 4038087
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

plausible.io/api/event

194.242.11.186

202 Accepted

2 B

URL POST HTTP/2
plausible.io/api/event
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectplausible.io
FingerprintAD:0F:7D:DD:AB:46:B3:42:B1:97:57:A4:EB:88:19:D6:08:6A:AD:65
ValidityTue, 23 Apr 2024 07:08:31 GMT - Mon, 22 Jul 2024 07:08:30 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 111
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 202 Accepted
date: Sun, 05 May 2024 04:38:22 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: BunnyCDN-NO1-830
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000
cache-control: must-revalidate, max-age=0, private
application: 10.0.0.3
permissions-policy: interest-cohort=()
x-request-id: F8x90rcH7EeH8yNSRN6P
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 202
cdn-cachedat: 05/05/2024 04:38:22
cdn-edgestorageid: 830
cdn-requestid: 00f2c7b39078255304638eaf1bc65379
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/webshop.d32840195423c6db71ad.js

151.101.129.91

200 OK

58 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/webshop.d32840195423c6db71ad.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (49295)
Size
58 kB (58377 bytes)
Hash
7c5ee102ac72e03eeef8d493a2c71ebd
b7e1f39724aebb9d258f8ab433936259e1d80a30
66f6c67d006b71f328e36a992504cdf528ead00284831cfcde28df695f2c7782

HTTP Headers

GET /assets/website-rendering/webshop.d32840195423c6db71ad.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 58377
last-modified: Wed, 24 Apr 2024 15:55:25 GMT
etag: "aa40fe27e879e9d33167ef610750f91a"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 909593
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/cookieconsent.2cc67c2c5c5ba62f2c3c.css

151.101.129.91

200 OK

7.3 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/cookieconsent.2cc67c2c5c5ba62f2c3c.css
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
ASCII text, with very long lines (14162)
Size
7.3 kB (7305 bytes)
Hash
2cc67c2c5c5ba62f2c3ccae1f2ac6b88
4ead25b52875680df4bf4205dd7770919c2bc853
bb24e153d7661ee731b3aa089272af428dbf8cf57be763aa56642cd897d020a6

HTTP Headers

GET /assets/website-rendering/cookieconsent.2cc67c2c5c5ba62f2c3c.css HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 7305
last-modified: Tue, 02 Apr 2024 08:59:24 GMT
etag: "88c1a0865b8e2526fe64e0c3892c00c4"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 2835460
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

assets.jwwb.nl/assets/website-rendering/message-bar.88e3c41711f8d6dde14d.js

151.101.129.91

200 OK

2.5 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/message-bar.88e3c41711f8d6dde14d.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (3892)
Size
2.5 kB (2500 bytes)
Hash
88e3c41711f8d6dde14dca3f8672b8fc
f02c48b983da48e9173dea6fca483b37a602df92
34c184ca77636600f357252db031f81a88f00ffd9f3aaf44bf1870e799f4eea1

HTTP Headers

GET /assets/website-rendering/message-bar.88e3c41711f8d6dde14d.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 2500
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "3ae77b14ea40379ed1c2bc8250515b76"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 2583527
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.jouwweb.nl/v2/unsafe-token/3324543

34.90.225.198

200 OK

27 kB

URL GET HTTP/2
www.jouwweb.nl/v2/unsafe-token/3324543
IP
34.90.225.198:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subject*.jouwweb.nl
Fingerprint4F:94:C9:9D:9C:BF:18:AB:AF:AA:4E:C0:46:DF:D5:03:69:6E:0F:84
ValidityMon, 11 Mar 2024 23:01:42 GMT - Sun, 09 Jun 2024 23:01:41 GMT

File type
JavaScript source, ASCII text, with very long lines (44556)
Size
27 kB (27437 bytes)
Hash
cb1a586e09cdbf6b930bc94164894bb0
afa9ac8c1188d1bf6d9769fcf2024462187db45d
91dec11322da637fe370b0c53634f29a321e072475741002191ad1ca5859f558

HTTP Headers

GET /v2/unsafe-token/3324543 HTTP/1.1
Host: www.jouwweb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
date: Sun, 05 May 2024 04:38:21 GMT
content-security-policy: frame-ancestors 'self'
x-robots-tag: noindex
expires: Sun, 05 May 2024 04:38:21 GMT
set-cookie: JWSESSION=ft6vvhogiaq7eockaak0k8ckc318h5qv; path=/; secure; httponly; samesite=lax
cache-control: max-age=0, must-revalidate, private, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/bxslider.2f6a18698383773513ba.js

151.101.129.91

200 OK

44 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/bxslider.2f6a18698383773513ba.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (41379)
Size
44 kB (43933 bytes)
Hash
2f6a18698383773513ba57ba98dac6a8
c5e1eabd2ee348b4efdcf42ed3a445fa982e2392
2cf60c0f6d154e505f5bc63b1a92416ceb63476ff7c63785c62334c693274bc0

HTTP Headers

GET /assets/website-rendering/bxslider.2f6a18698383773513ba.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 43933
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "52224deae1f668fc89f28e017c3a96f6"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 4038086
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

player.vimeo.com/api/player.js

162.159.138.60

200 OK

11 kB

URL GET HTTP/1.1
player.vimeo.com/api/player.js
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectplayer.vimeo.com
FingerprintE8:45:41:E9:31:D2:A5:77:D5:5E:75:89:F8:00:24:2E:C3:3F:C8:BE
ValidityFri, 29 Mar 2024 06:04:47 GMT - Thu, 27 Jun 2024 06:04:46 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (37934)
Size
11 kB (11390 bytes)
Hash
da2ba57d91a7f508da290f9fa623eae4
b14816b57ca689786847fef1f5a31288e159e3e4
1b26ea722a2121ee02d8ca9c23460c5ff6cb75f840ff9e0c1ee79ecaedc7ad8f

HTTP Headers

GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 04:38:22 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 11390
Connection: keep-alive
access-control-allow-origin: *
Cache-Control: max-age=1800
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
expires: Sun, 05 May 2024 01:04:01 GMT
x-player-backend: g
x-backend-server: player-backend-edge-entry
x-bapp-server: 
Content-Encoding: gzip
accept-ranges: bytes
via: 1.1 varnish
Age: 261
x-served-by: cache-osl6549-OSL
x-cache: HIT
x-cache-hits: 28
x-timer: S1714883903.525424,VS0,VE0
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=cZnGSobqcgE53co12Ky9kLcxoGcCUW29RIznhwLGx3M-1714883902-1.0.1.1-ikSvXDjNG_5cFhjnRbwTWoBHz00_O29murP_hsVUw_vxirEtsn9uMvu8z0VY8eatbsZ1b1o1TKjxyambHPBNAg; path=/; expires=Sun, 05-May-24 05:08:22 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
_cfuvid=kebiAEvAtsFHesy62gz_qrsjuyq6mwJQp5g6AAMh2uI-1714883902526-0.0.1.1-604800000; path=/; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 87ee0a66bf8c56cb-OSL

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/touch-icon-ipad-retina.png?bust=1688142832

151.101.129.91

200 OK

26 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/touch-icon-ipad-retina.png?bust=1688142832
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
26 kB (25802 bytes)
Hash
4456312df854225c4d1dabd72f600163
778a293f7cbbd9e01739e406ce06fc33f287b5f0
f519cf1abd40b61afa9c482bb1501a91bf0f4c3a3469b2f0c7a3d0477f1d8224

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/touch-icon-ipad-retina.png?bust=1688142832 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 25802
content-type: image/webp
etag: "ZT2tqXMDKdi8oYcqw+w3zaBifZMUwWwi8M/ylil6oNE"
fastly-io-info: ifsz=38550 idim=152x152 ifmt=png ofsz=25802 odim=152x152 ofmt=webp
fastly-io-served-by: img01-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 410232
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/favicon.png?bust=1688142832

151.101.129.91

200 OK

3.2 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/favicon.png?bust=1688142832
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.2 kB (3150 bytes)
Hash
2e3ab2118240d4e23aedb8e94a510597
918b7f7bfd068c9d0b005a3aea58e1d12a2cb176
762b23b4beb54294cdb1c024c3b7841fa89e9b90911aa545b0d86f12cb33ff27

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/favicon.png?bust=1688142832 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 3150
content-type: image/webp
etag: "9CPOjB5GMV0fKDaQ8M6zvQecAskZ89JZejqVqEvGpY0"
fastly-io-info: ifsz=4723 idim=48x48 ifmt=png ofsz=3150 odim=48x48 ofmt=webp
fastly-io-served-by: img02-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1027373
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace7.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408

151.101.129.91

200 OK

280 kB

URL GET HTTP/3
primary.jwwb.nl/public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace7.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
RIFF (little-endian) data, Web/P image
Size
280 kB (279918 bytes)
Hash
70a56c14c2cf8f34450576e7cbcfebad
448173f1334374eb20b4a4567c369c5127836cb3
a58942b29f2547d97ca14cdc9743bc02c5599b79f83c86eeb81c27f5811649af

HTTP Headers

GET /public/r/t/p/temp-xxiijjbuctchdnwkdxkj/charleneslace7.png?enable-io=true&enable=upscale&crop=1800%2C720%2Cx40%2Cy0%2Csafe&width=1020&height=408 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 279918
content-type: image/webp
etag: "0j4wFbPNXeliRWrAknyTXh+sRcdx6Npf+3nUWUKe9gc"
fastly-io-info: ifsz=1272096 idim=1880x720 ifmt=png ofsz=279918 odim=1020x408 ofmt=webp
fastly-io-served-by: img07-europe-west2
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 318724
date: Sun, 05 May 2024 04:38:22 GMT
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

ocsp.r2m03.amazontrust.com/

3.164.222.26

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
c9d8e16185e56bf5414580bad9049b51
79f87fae1c75928d78dbf538b73ddb0ba87099da
d7877d7a5380b8d32e2cee089570bb8d78563e6f7cb99bd317dd67b293216aec

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Sun, 05 May 2024 04:38:22 GMT
Server: ECAcc (amb/6B67)
X-Cache: Miss from cloudfront
Via: 1.1 7146458eabc0c79851363d3a7ad4d72c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: zoqPu0h0NTwK9Q4egxGzfmxbMUR6jjah-RCCx7Cgrn82MSM7kjtlcA==

widget.salonized.com/button?color=%23FF6575&language=nl&name=booking

52.57.108.108

301 Moved Permanently

277 B

URL GET HTTP/2
widget.salonized.com/button?color=%23FF6575&language=nl&name=booking
IP
52.57.108.108:443
ASN
#16509 AMAZON-02

Requested by
https://www.charleneslace.com/
Certificate
IssuerAmazon
Subject*.salonized.com
Fingerprint14:78:C1:5D:78:D0:F4:D0:60:C0:9D:64:3A:5D:45:44:A1:73:D1:76
ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
277 B (277 bytes)
Hash
cca53a12968723198995c9983c5a8398
ff364ff7846b062d5275d63ee38462d57b998bad
3ccb7df94616e3f20b033ba66288525dd680f5021bb138fa285b846b952ab5a9

HTTP Headers

GET /button?color=%23FF6575&language=nl&name=booking HTTP/1.1
Host: widget.salonized.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sun, 05 May 2024 04:38:22 GMT
content-type: text/html; charset=UTF-8
content-length: 277
content-security-policy: default-src 'none'
location: /button/?color=%23FF6575&language=nl&name=booking
x-content-type-options: nosniff
x-powered-by: Express
X-Firefox-Spdy: h2

widget.salonized.com/button/?color=%23FF6575&language=nl&name=booking

52.57.108.108

200 OK

3.0 kB

URL GET HTTP/2
widget.salonized.com/button/?color=%23FF6575&language=nl&name=booking
IP
52.57.108.108:443
ASN
#16509 AMAZON-02

Requested by
https://www.charleneslace.com/
Certificate
IssuerAmazon
Subject*.salonized.com
Fingerprint14:78:C1:5D:78:D0:F4:D0:60:C0:9D:64:3A:5D:45:44:A1:73:D1:76
ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2974), with no line terminators
Size
3.0 kB (2974 bytes)
Hash
0aaa6d2099872b15a9954062e9bf409d
4a93783e70f26fbaea062cc75b4ee6469dca63ee
d640fac642fed463afede8b1693f918796604b666cc1227029f5c2e16a875a8f

HTTP Headers

GET /button/?color=%23FF6575&language=nl&name=booking HTTP/1.1
Host: widget.salonized.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.charleneslace.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 04:38:22 GMT
content-type: text/html; charset=UTF-8
content-length: 2974
accept-ranges: bytes
cache-control: public,max-age=0
etag: W/"b9e-18f2f6a5990"
last-modified: Tue, 30 Apr 2024 14:30:50 GMT
x-powered-by: Express
X-Firefox-Spdy: h2

player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1

162.159.138.60

200 OK

5.5 kB

URL GET HTTP/1.1
player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
IP
162.159.138.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectplayer.vimeo.com
FingerprintE8:45:41:E9:31:D2:A5:77:D5:5E:75:89:F8:00:24:2E:C3:3F:C8:BE
ValidityFri, 29 Mar 2024 06:04:47 GMT - Thu, 27 Jun 2024 06:04:46 GMT

File type
HTML document, ASCII text, with very long lines (8882)
Size
5.5 kB (5505 bytes)
Hash
7f827f523a13b1156e7bdecd72994f0c
a9393de5ce8a342b98add1db1f61637e39073c50
972a0aa9ef2579c89e4ae2adfb1446fa922ecf566534effc58a77e69e864ab62

HTTP Headers

GET /video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 04:38:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://edge-player5.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://drm-gke.vhx.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.kollective.app https://*.kollective.app:31015 https://*.kollectivecd.com https://*.hivestreaming.com https://mimir.cloud.vimeo.com https://vimeo.magisto.com https://stage-proxy.vimeo.magisto.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src data: https://edge-assets.wirewax.com https://branding.cdn.magisto.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://i.vimeocdn.com https://duysrfiajusdh.cloudfront.net https://d263mgllkjh2k2.cloudfront.net https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com android-webview-video-poster:; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-59c78bbbc4-hptsj
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-59c78bbbc4-hptsj
via: 1.1 varnish
x-served-by: cache-osl6530-OSL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714883903.604549,VS0,VE419
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=gw1H27jKDw3aLup8pazZ1.T0zvHmllZczYFPjJ49WbQ-1714883903-1.0.1.1-auz.1TqfEe4NGLKhDF1FhM3cD5TehJIECtcgVRlEzbKgjoJNVg45Zzw18.Ox6JCNr2XZcunuM5cNhHz4InzZkw; path=/; expires=Sun, 05-May-24 05:08:23 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
_cfuvid=8bd72h_FPiUqxJHIin8IjJCUEeESziaRDqDDDHlDJFM-1714883903024-0.0.1.1-604800000; path=/; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 87ee0a673fc556cb-OSL
Content-Encoding: gzip

f.vimeocdn.com/p/4.32.0/css/player.css

151.101.246.109

200 OK

22 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.32.0/css/player.css
IP
151.101.246.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
ASCII text, with very long lines (65495)
Size
22 kB (21979 bytes)
Hash
5245688df525d35e4f769c3cdde36326
fcdf13dfe0798936f6e7f5fc53b64d87d745ee48
d51de5f16b0950b51c078ab28f0d0b4fa639f76b2a9b81c79a8fcf289782813e

HTTP Headers

GET /p/4.32.0/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:23 GMT
age: 216612
x-served-by: cache-iad-kcgs7200078-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 16, 112228
x-timer: S1714883903.297662,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 21979
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.32.0/js/player.module.js

151.101.246.109

200 OK

142 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.32.0/js/player.module.js
IP
151.101.246.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65447)
Size
142 kB (141679 bytes)
Hash
62e2bf465ff647fddc5c3e43b53b8d34
21f652b77ce0737b9b3adca5471da8dacf209d8e
d3d83284fcb3b3c124d2cafc521edae35f4410289981c5181d433ade8690edcb

HTTP Headers

GET /p/4.32.0/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:23 GMT
age: 216612
x-served-by: cache-iad-kiad7000178-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 100856
x-timer: S1714883903.324831,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 141679
X-Firefox-Spdy: h2

cdn.plyr.io/3.7.8/plyr.svg

104.27.194.88

200 OK

5.1 kB

URL GET HTTP/2
cdn.plyr.io/3.7.8/plyr.svg
IP
104.27.194.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.charleneslace.com/
Certificate
IssuerCloudflare, Inc.
Subjectcdn.plyr.io
Fingerprint82:12:FB:B3:64:22:F5:22:7D:BA:01:9C:97:81:CF:4F:55:01:08:95
ValidityMon, 11 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
5.1 kB (5123 bytes)
Hash
3a727a9b7eef825081d78cc6e48aaadf
bc98e4a347921594352fbae53aaad185c0c7f6b5
4846018760f6e11a8a1dea7639a5c75c712f198d978eccf117840820bb8c37d7

HTTP Headers

GET /3.7.8/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.charleneslace.com
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 04:38:23 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"3a727a9b7eef825081d78cc6e48aaadf"
last-modified: Thu, 20 Apr 2023 10:33:44 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6TepNaLrxOiPG8W%2BVSGcUnx7KxbYp6JKXJVBRo2SALppYf14cFzWT1BdeRY5yt8QD%2FevAeYW0l%2F2QY0BA2cuwj1MLY28sN3pvZ5oH49DtH3hjUcsEjy2dP98sBs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ee0a677c7bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.32.0/js/vendor.module.js

151.101.246.109

200 OK

117 kB

URL GET HTTP/2
f.vimeocdn.com/p/4.32.0/js/vendor.module.js
IP
151.101.246.109:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
Fingerprint4F:12:C8:71:F2:3F:56:5B:F7:BB:3A:38:F1:B9:76:36:96:18:43:07
ValidityWed, 22 Nov 2023 22:50:09 GMT - Mon, 23 Dec 2024 22:50:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65457)
Size
117 kB (117175 bytes)
Hash
566a7ce48fe143bf67341eda74734b2c
f6b278ae4701bc0dfca1b5513e919f897ed40fde
4e70c7d7c9e451902eb7c496897f78ea882fda8b9039967718afa7eea126345b

HTTP Headers

GET /p/4.32.0/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:23 GMT
age: 216612
x-served-by: cache-iad-kcgs7200124-IAD, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 16, 107859
x-timer: S1714883904.523467,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 117175
X-Firefox-Spdy: h2

i.vimeocdn.com/video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=500&mh=1200

151.101.64.217

200 OK

31 kB

URL GET HTTP/2
i.vimeocdn.com/video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=500&mh=1200
IP
151.101.64.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image
Size
31 kB (30809 bytes)
Hash
63f89200e693f6a9719b25c8d65e7595
d354bb1471ab2df5ac6c90d678210bcea381aa7f
7604b0fd2527e832b5e058d9e11f0d18473a6af04cf7694ae9406a7955ef364d

HTTP Headers

GET /video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=500&mh=1200 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=2592000
content-type: image/avif
etag: "63f89200e693f6a9719b25c8d65e7595"
via: 1.1 google, 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
age: 13813
date: Sun, 05 May 2024 04:38:23 GMT
x-served-by: cache-dfw-kdfw8210148-DFW, cache-hel1410025-HEL
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1714883904.738844,VS0,VE137
vary: Accept
content-length: 30809
X-Firefox-Spdy: h2

i.vimeocdn.com/video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=80&q=85

151.101.64.217

200 OK

3.2 kB

URL GET HTTP/2
i.vimeocdn.com/video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=80&q=85
IP
151.101.64.217:443
ASN
#54113 FASTLY

Requested by
https://player.vimeo.com/video/842326485?loop=false&autoplay=false&muted=false&gesture=media&playsinline=true&byline=false&portrait=false&title=false&speed=true&transparent=false&customControls=true&dnt=1
Certificate
IssuerGlobalSign nv-sa
Subject*.vimeo.com
FingerprintB1:D1:17:3D:08:07:A6:93:99:18:AC:B6:E9:C5:BC:F9:01:9F:32:9F
ValidityThu, 19 Oct 2023 18:39:17 GMT - Tue, 19 Nov 2024 18:39:16 GMT

File type
ISO Media, AVIF Image
Size
3.2 kB (3194 bytes)
Hash
a404b571157f4cf3a1e1de6df7d8661f
e0aa490d05394f5a0a3dc72881f22b2c4f137872
d6412d400e95731281dd2424be4e4a5acd8b55ce7a501080de3d5e2cd68a59d5

HTTP Headers

GET /video/1693377953-b0ca1011d98fbf68fab5fed10a2e838385a5cdaf3c7fa6a8c5784fe49d01cd02-d?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=2592000
content-type: image/avif
etag: "a404b571157f4cf3a1e1de6df7d8661f"
via: 1.1 google, 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
age: 849304
date: Sun, 05 May 2024 04:38:23 GMT
x-served-by: cache-dfw-kdal2120080-DFW, cache-hel1410025-HEL
x-cache: HIT, MISS
x-cache-hits: 10, 0
x-timer: S1714883903.377262,VS0,VE134
vary: Accept
content-length: 3194
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/cookieconsent.48dac542dc2e75b3b6ed.js

151.101.129.91

200 OK

80 kB

URL GET HTTP/3
assets.jwwb.nl/assets/website-rendering/cookieconsent.48dac542dc2e75b3b6ed.js
IP
151.101.129.91:443
ASN
#54113 FASTLY

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectprimary.jwwb.nl
Fingerprint79:FE:84:28:24:75:08:0E:D7:19:23:B5:1E:F4:51:F3:90:D5:39:43
ValidityTue, 26 Mar 2024 16:57:21 GMT - Mon, 24 Jun 2024 16:57:20 GMT

File type
JavaScript source, ASCII text, with very long lines (44666)
Size
80 kB (80386 bytes)
Hash
48dac542dc2e75b3b6ed9df150988a3c
59c5931ace72f72da72fb2108cd6e788da93cc1d
67d5b0831a68a4aaf8560237bd5df4bd9c0641dead2072e22099cf5f29bcb171

HTTP Headers

GET /assets/website-rendering/cookieconsent.48dac542dc2e75b3b6ed.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 27310
last-modified: Tue, 19 Mar 2024 10:55:35 GMT
etag: "d5417999ef6152b0c64f7768d055b50d"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 05 May 2024 04:38:22 GMT
age: 4038086
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

www.charleneslace.com/

35.204.150.5

200 OK

90 kB

URL User Request GET HTTP/2
www.charleneslace.com/
IP
35.204.150.5:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerLet's Encrypt
Subjectwww.charleneslace.com
Fingerprint98:E7:B2:E9:7E:CF:32:99:DD:C4:45:49:EA:1F:D1:A1:B6:67:67:41
ValiditySat, 20 Apr 2024 09:31:10 GMT - Fri, 19 Jul 2024 09:31:09 GMT

File type

Size
90 kB (90046 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.charleneslace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
date: Sun, 05 May 2024 04:38:20 GMT
content-security-policy: frame-ancestors 'self'
expires: Sun, 05 May 2024 04:38:20 GMT
set-cookie: JwStickySession=Bn1LdZqGd7vazKn%2F3Pgw4YqEU8AkvM6u; expires=Tue, 04 Jun 2024 04:38:20 GMT; Max-Age=2592000; path=/; secure; httponly
JWSESSION=6e7ggbrmok76vre8bou4u3p3i1g9ekir; path=/; secure; httponly; samesite=lax
cache-control: max-age=0, must-revalidate, private, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

static-widget.salonized.com/button/f64da0087032a6fd456358eab8294299.otf

3.164.240.45

200 OK

5.4 kB

URL GET HTTP/2
static-widget.salonized.com/button/f64da0087032a6fd456358eab8294299.otf
IP
3.164.240.45:443
ASN
#0

Requested by
https://widget.salonized.com/button/?color=%23FF6575&language=nl&name=booking
Certificate
IssuerAmazon
Subject*.salonized.com
Fingerprint37:F6:CB:5B:9E:B0:8A:D9:21:5B:B3:09:E9:EC:20:9B:7B:2E:85:59
ValidityWed, 27 Dec 2023 00:00:00 GMT - Fri, 24 Jan 2025 23:59:59 GMT

File type
OpenType font data
Size
5.4 kB (5428 bytes)
Hash
f64da0087032a6fd456358eab8294299
252f58fbd02a9ec96f4c14a22e0002c6eabdc186
5d1edffbc303e9610eb268665f9beaebcd86318aa4f916555e3ee683e733cff1

HTTP Headers

GET /button/f64da0087032a6fd456358eab8294299.otf HTTP/1.1
Host: static-widget.salonized.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://widget.salonized.com/
Origin: https://widget.salonized.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/otf
date: Sun, 07 Apr 2024 06:11:36 GMT
access-control-allow-headers: Content-Type,Content-Length, Authorization, Accept,X-Requested-With
access-control-allow-methods: PUT,POST,GET,DELETE,OPTIONS
access-control-allow-origin: *
cache-control: public,max-age=8640000
etag: W/"1534-18e5bf52400"
last-modified: Wed, 20 Mar 2024 13:02:56 GMT
x-powered-by: Express
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e8c2cf9d03a9665aa8b199d35cadcba8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: gRv4JdPVVotuo98R7ylx7xSovc0t4YtaLKHCiYt4sCrivJbGANViEw==
age: 2413606
X-Firefox-Spdy: h2

static-widget.salonized.com/loader.js

3.164.240.45

200 OK

14 kB

URL GET HTTP/2
static-widget.salonized.com/loader.js
IP
3.164.240.45:443
ASN
#0

Requested by
https://www.charleneslace.com/
Certificate
IssuerAmazon
Subject*.salonized.com
Fingerprint37:F6:CB:5B:9E:B0:8A:D9:21:5B:B3:09:E9:EC:20:9B:7B:2E:85:59
ValidityWed, 27 Dec 2023 00:00:00 GMT - Fri, 24 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14466), with no line terminators
Size
14 kB (14466 bytes)
Hash
ef8721c5348af8727368931bc99c2346
f5e2c22d65a9c00f26c2147d7030aa829abc6943
b1ca3cc7e74c323973f16f3abf5c1dead6806e13ecb2d7975108270ecc063903

HTTP Headers

GET /loader.js HTTP/1.1
Host: static-widget.salonized.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 30 Apr 2024 14:30:49 GMT
x-powered-by: Express
content-encoding: gzip
date: Sun, 05 May 2024 04:38:21 GMT
cache-control: public,max-age=600
etag: W/"3882-18f2f6a55a8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a89672c5bed576aaabefe419c0d5bad2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: AZq3CfEZbAldW7sEShZM5ghg5i4Zy8mIy-iSbpdcVqLxiXyO9WOJrw==
age: 349
X-Firefox-Spdy: h2

static-widget.salonized.com/button/main.dc15e52418783bb7ae82.js

3.164.240.45

200 OK

8.4 kB

URL GET HTTP/2
static-widget.salonized.com/button/main.dc15e52418783bb7ae82.js
IP
3.164.240.45:443
ASN
#0

Requested by
https://widget.salonized.com/button/?color=%23FF6575&language=nl&name=booking
Certificate
IssuerAmazon
Subject*.salonized.com
Fingerprint37:F6:CB:5B:9E:B0:8A:D9:21:5B:B3:09:E9:EC:20:9B:7B:2E:85:59
ValidityWed, 27 Dec 2023 00:00:00 GMT - Fri, 24 Jan 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8631), with no line terminators
Size
8.4 kB (8382 bytes)
Hash
5904d3ae4f604a3a6e90b91ac75ac4f0
552d4141696e4677c56e1b468dd6e079cf5d1cb4
17fbf3aabadf9e4e29b5b913831ca124192567b7a04b71a97a2e847727a9958c

HTTP Headers

GET /button/main.dc15e52418783bb7ae82.js HTTP/1.1
Host: static-widget.salonized.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widget.salonized.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 30 Apr 2024 14:34:53 GMT
cache-control: public,max-age=8640000
etag: W/"20be-18f2f6a5990"
last-modified: Tue, 30 Apr 2024 14:30:50 GMT
x-powered-by: Express
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a89672c5bed576aaabefe419c0d5bad2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: pEhJAHx0iQomT87KvJOR-2jeVcBKATKkptcIUrDcqKv6at-FxI-xWA==
age: 396209
X-Firefox-Spdy: h2

plausible.io/js/script.manual.js

194.242.11.186

200 OK

1.0 kB

URL GET HTTP/2
plausible.io/js/script.manual.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://www.charleneslace.com/
Certificate
IssuerLet's Encrypt
Subjectplausible.io
FingerprintAD:0F:7D:DD:AB:46:B3:42:B1:97:57:A4:EB:88:19:D6:08:6A:AD:65
ValidityTue, 23 Apr 2024 07:08:31 GMT - Mon, 22 Jul 2024 07:08:30 GMT

File type
ASCII text, with very long lines (1058), with no line terminators
Size
1.0 kB (1030 bytes)
Hash
7ca61352ff7fb6e5b07fab5cf75348f0
cd16d605bb7ebc5cf9ce4ceca9906b661132e050
90c3ae0d3c263e1cf9a4d03a0e7ded24420c3eba62b59177a1ec91927661bb2e

HTTP Headers

GET /js/script.manual.js HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.charleneslace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 04:38:20 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000
cache-control: public, must-revalidate, max-age=86400
application: 10.0.1.2
cross-origin-resource-policy: cross-origin
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/04/2024 04:54:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0eb0d80b47c6f0018fca4c1552d76e5f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML