| | 143.95.144.22 | 302 Found | 210 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjectsipalinghalte.com Fingerprint77:23:4F:9A:FE:65:44:AF:0C:A7:E6:8D:92:FF:1D:5D:55:53:34:06 ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash5c6b22c224b6a8d4449fc797db5c33ea 8d7eb491979c42a89978d05fabfcbb130523721d ccab94bfa9627326b6316b9ff9e522cc4241394cbd7d4068d9307295c5ca03b9
GET / HTTP/1.1
Host: sipalinghalte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://halte-product.com/
content-length: 210
content-type: text/html; charset=iso-8859-1
date: Wed, 24 Apr 2024 16:45:42 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| | 143.95.144.22 | 302 Found | 208 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjecthalte-product.com Fingerprint6A:EF:F3:F7:E6:A6:31:B7:8C:43:F9:27:1B:24:94:98:C9:85:DB:0B ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashe163ba57d3ec80da336bdc8c605e154c 7650453b3ad0c7927c793982648f9011eaab92ee b2f35c9e77be69589d58db1eea4f316d5fd6149b186871b1be76c33f44268efb
GET / HTTP/1.1
Host: halte-product.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://haltebundle.org/
content-length: 208
content-type: text/html; charset=iso-8859-1
date: Wed, 24 Apr 2024 16:45:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| | 143.95.144.22 | 301 Moved Permanently | 232 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjecthaltebundle.org Fingerprint5D:42:27:F6:1C:41:16:5A:9E:78:F6:DF:85:DE:67:5C:BD:36:05:FC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash49a8c7480dc544c85883d58fc944259f d92178ec8ec3b25041d32f74af7de37415d005a8 e9a72abfcc1a49001955553597ef452668d2ec47d128704379a9a0027b172f9d
GET / HTTP/1.1
Host: haltebundle.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://206.189.156.119/
content-length: 232
content-type: text/html; charset=iso-8859-1
date: Wed, 24 Apr 2024 16:45:44 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| | 143.95.144.22 | 302 Found | 210 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjectsipalinghalte.com Fingerprint77:23:4F:9A:FE:65:44:AF:0C:A7:E6:8D:92:FF:1D:5D:55:53:34:06 ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash5c6b22c224b6a8d4449fc797db5c33ea 8d7eb491979c42a89978d05fabfcbb130523721d ccab94bfa9627326b6316b9ff9e522cc4241394cbd7d4068d9307295c5ca03b9
GET / HTTP/1.1
Host: sipalinghalte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 24 Apr 2024 16:45:45 GMT
Server: Apache
Location: https://halte-product.com/
Content-Length: 210
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| | 206.189.156.119 | 200 OK | 15 kB |
URL User Request GET HTTP/2IP206.189.156.119:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject206.189.156.119 FingerprintAA:B5:BA:30:E3:9F:26:AB:D6:60:2A:CA:9F:1A:8C:5B:9A:BF:F3:2C ValidityFri, 29 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18703), with CRLF line terminators Hashde001e0f4d323b8fb30f4a6de26d6f8c eb1e8f32907187f8e0c9f3e94a8c7a7b8363ef68 7d2cebffb88814ae9b9331f106502a23a4bc3edadadd5d613777754ba6a40849
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 206.189.156.119
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "1277f-66274d99-bd524;br"
last-modified: Tue, 23 Apr 2024 05:56:41 GMT
content-type: text/html
content-length: 14722
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 16:45:45 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| | 143.95.144.22 | 302 Found | 208 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjecthalte-product.com Fingerprint6A:EF:F3:F7:E6:A6:31:B7:8C:43:F9:27:1B:24:94:98:C9:85:DB:0B ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashe163ba57d3ec80da336bdc8c605e154c 7650453b3ad0c7927c793982648f9011eaab92ee b2f35c9e77be69589d58db1eea4f316d5fd6149b186871b1be76c33f44268efb
GET / HTTP/1.1
Host: halte-product.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://haltebundle.org/
content-length: 208
content-type: text/html; charset=iso-8859-1
date: Wed, 24 Apr 2024 16:45:45 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-acb3b483c57088441042-min.en-US.js | 151.101.192.237 | 200 OK | 16 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/extract-css-runtime-acb3b483c57088441042-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (44037) Hasheddbd3bca371fa11d345fc767f8fb474 625c1bf2930b66a3e24e41499aafabe5d2ebda56 7427aebe65b3a8a9f9bc7817005a770a41af0c4240e63d190b9daa6bff188d5c
GET /universal/scripts-compressed/extract-css-runtime-acb3b483c57088441042-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 17 Apr 2025 08:38:47 GMT
last-modified: Wed, 17 Apr 2024 08:31:39 GMT
etag: "e2e76857b457d6c27d69d4e5044dc472"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 634019
date: Wed, 24 Apr 2024 16:45:46 GMT
x-served-by: cache-iad-kiad7000109-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 44, 0
x-timer: S1713977146.332711,VS0,VE1
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15627
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/performance-05b0d13675885805a64c-min.en-US.js | 151.101.192.237 | 200 OK | 12 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/performance-05b0d13675885805a64c-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (41087) Hash9993d7930d60f407ca4542ed55e5fce3 28da0869dfbb550bee65492e69fcefb40eb0b665 a8a167af3e9651656fdb7a0d5e61f1be2de371fa71c8400120057c4aa44ce295
GET /universal/scripts-compressed/performance-05b0d13675885805a64c-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 12 Apr 2025 19:08:09 GMT
last-modified: Fri, 12 Apr 2024 18:04:32 GMT
etag: "4c8e2740633ebd404b770a5ce6b4f6a5"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 1028257
x-served-by: cache-iad-kjyo7100168-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 71, 38426
x-timer: S1713977146.335193,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 11884
X-Firefox-Spdy: h2
|
|
| static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.c60096393cff060396b454574afa2699.js | 151.101.0.238 | 200 OK | 44 kB |
URL GET HTTP/2static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.c60096393cff060396b454574afa2699.js IP151.101.0.238:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65467) Hashc60096393cff060396b454574afa2699 818689b4ca0a2963b226caaca5b205cd53a18e95 fbe06d8b09c06e1556171bd359b09c01a8a8e167d148ed942ad0ede0c69da950
GET /static/vta/5c5a519771c10ba3470d8101/scripts/site-bundle.c60096393cff060396b454574afa2699.js HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: V9fXSbKC/wTdt0K2n
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 514339
x-served-by: cache-dfw-kdal2120101-DFW, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 44, 6729
x-timer: S1713977146.336916,VS0,VE0
vary: Accept-Encoding
tracepoint: Fastly
content-length: 43913
X-Firefox-Spdy: h2
|
|
| static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1712772943022-RISL5OTW906SEOCXSNEC/static.css | 151.101.0.238 | 200 OK | 16 kB |
URL GET HTTP/2static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/versioned-assets/1712772943022-RISL5OTW906SEOCXSNEC/static.css IP151.101.0.238:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (43819) Hashd7bbf8fd83542eecd0c558bb50685a87 1bb66b93df79ff40ab0257a6e972e6f55872d90d 6df71ff67b2b7f85cb62150804a19ed100e744e8cef610e202f6a08bd49a35cd
GET /static/vta/5c5a519771c10ba3470d8101/versioned-assets/1712772943022-RISL5OTW906SEOCXSNEC/static.css HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: text/css
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: IlvLciNC/QcCpYLIf
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 599401
x-served-by: cache-dfw-kdal2120114-DFW, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 76, 6487
x-timer: S1713977146.340652,VS0,VE0
vary: Accept-Encoding
tracepoint: Fastly
content-length: 15477
X-Firefox-Spdy: h2
|
|
| use.typekit.net/ik/V5c9SzuGzMMYQPMgSnMhcOVn7QHuwj2iAZkv3P2eWwCfeGMgfFHN4UJLFRbh52jhWDjhwAjaZAjojR4cjhjuFAscjQbaZ26ojUGMJ6U3ScNt-AuyOAozicI7fbKzMsMMeMb6MKGHfO2IMsMMeM96MKG4fJCgIMMjgkMfH6qJCMIbMg65JMJ7f6KUUMIbMg6VJMJ7fbKwMsMMegI6MTMgqxxNCMj.js | 23.33.119.67 | 200 OK | 6.7 kB |
URL GET HTTP/2use.typekit.net/ik/V5c9SzuGzMMYQPMgSnMhcOVn7QHuwj2iAZkv3P2eWwCfeGMgfFHN4UJLFRbh52jhWDjhwAjaZAjojR4cjhjuFAscjQbaZ26ojUGMJ6U3ScNt-AuyOAozicI7fbKzMsMMeMb6MKGHfO2IMsMMeM96MKG4fJCgIMMjgkMfH6qJCMIbMg65JMJ7f6KUUMIbMg6VJMJ7fbKwMsMMegI6MTMgqxxNCMj.js IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (2258) Hashff03c84d809d795f965d9402b4375b2b f385a353a7484d6551cfac8bf9772cd1e89fcb23 1fb248ebd5f3010523dfe38150a25e86d0056ac48a02f1fb717010396479ae38
GET /ik/V5c9SzuGzMMYQPMgSnMhcOVn7QHuwj2iAZkv3P2eWwCfeGMgfFHN4UJLFRbh52jhWDjhwAjaZAjojR4cjhjuFAscjQbaZ26ojUGMJ6U3ScNt-AuyOAozicI7fbKzMsMMeMb6MKGHfO2IMsMMeM96MKG4fJCgIMMjgkMfH6qJCMIbMg65JMJ7f6KUUMIbMg6VJMJ7fbKwMsMMegI6MTMgqxxNCMj.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6742
date: Wed, 24 Apr 2024 16:45:46 GMT
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-e94539391642d3b99900-min.en-US.js | 151.101.192.237 | 200 OK | 15 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/cldr-resource-pack-e94539391642d3b99900-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7250bbdbc0d08115f4337c95638fc8c2 a28cefab39ef36633765decded25cafc652ad8f2 f36a7154507349d2e76810431cd793df20299bfc41d68d3800f67474c2b9bff1
GET /universal/scripts-compressed/cldr-resource-pack-e94539391642d3b99900-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 02 Apr 2025 00:43:49 GMT
last-modified: Mon, 01 Apr 2024 17:10:59 GMT
etag: "463b7225c489e3334db2b2ad3709c29d"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 1958516
x-served-by: cache-iad-kjyo7100096-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 51, 79201
x-timer: S1713977146.338164,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 15116
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-6f117db4eb7fd4392375-min.en-US.js | 151.101.192.237 | 200 OK | 94 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/extract-css-moment-js-vendor-6f117db4eb7fd4392375-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7601) Hashe5175488e8bd587ddd58916b88e2666b 4885c70fda8237d3a87ea1b98c27e857b7bf2ff1 26406777f9af4ddc05d094cad0ff9015cdbbfb393b13678e676d3a4a6292c5d8
GET /universal/scripts-compressed/extract-css-moment-js-vendor-6f117db4eb7fd4392375-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 07 Mar 2025 17:27:07 GMT
last-modified: Thu, 07 Mar 2024 16:09:52 GMT
etag: "eac0b0bf558891c46b48bd4aac2ec592"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 4144718
x-served-by: cache-iad-kiad7000101-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 54013
x-timer: S1713977146.335810,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 94112
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/@sqs/polyfiller/1.6/modern.js | 151.101.192.237 | 200 OK | 42 kB |
URL GET HTTP/2assets.squarespace.com/@sqs/polyfiller/1.6/modern.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (43878), with NEL line terminators Hash93a2aea230d421d550375c528b22583e e8d88b00db1c30510928a7c6618f0f7cffa9b4c2 54e832663426c696b1f603379026e5e15720e8c812bbbc60d63aa2ad8a479f75
GET /@sqs/polyfiller/1.6/modern.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 02 Oct 2024 02:39:38 GMT
last-modified: Mon, 31 Oct 2022 21:19:57 GMT
etag: "fe0d53a94823df972dbf107bf190771a"
content-type: text/javascript
content-encoding: gzip
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 17676370
x-served-by: cache-iad-kcgs7200042-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 79, 81801
x-timer: S1713977146.357833,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 42447
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-3598b219a3c023c1915a-min.en-US.js | 151.101.192.237 | 200 OK | 71 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/common-vendors-stable-3598b219a3c023c1915a-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65202) Hashb4b017c0916159e4e7297259f25186e5 718ca14a58a34965094de1b5199ec76a650a2290 98c6b3976dc1e847f41c7f8eab2a85599399fe9505c0f5ecc52513886f9a9bee
GET /universal/scripts-compressed/common-vendors-stable-3598b219a3c023c1915a-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 07 Mar 2025 17:27:07 GMT
last-modified: Thu, 07 Mar 2024 17:15:34 GMT
etag: "74ee1339bd612bd980c827b7bb1f9042"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 1916089
x-served-by: cache-iad-kiad7000081-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 7493, 42405
x-timer: S1713977146.355486,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 70760
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/common-vendors-55418d6b4514f1c4793d-min.en-US.js | 151.101.192.237 | 200 OK | 155 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/common-vendors-55418d6b4514f1c4793d-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size155 kB (155405 bytes) Hasha90447932f0b3b34166257e5bb85be15 eeb017b7ee71e25b842521bfae84c4840f2b50d7 e8dba6778d93a3c0a1465c80876bce323955d6e576c24e4ba0bdefb2e707102d
GET /universal/scripts-compressed/common-vendors-55418d6b4514f1c4793d-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 16 Apr 2025 21:20:18 GMT
last-modified: Tue, 16 Apr 2024 20:35:25 GMT
etag: "41130d7e60326712e56e0a9adba3b768"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 674728
date: Wed, 24 Apr 2024 16:45:46 GMT
x-served-by: cache-iad-kiad7000146-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 44, 0
x-timer: S1713977146.351493,VS0,VE1
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 155405
X-Firefox-Spdy: h2
|
|
| assets.squarespace.com/universal/scripts-compressed/common-74a40d279f19616df8ab-min.en-US.js | 151.101.192.237 | 200 OK | 394 kB |
URL GET HTTP/2assets.squarespace.com/universal/scripts-compressed/common-74a40d279f19616df8ab-min.en-US.js IP151.101.192.237:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size394 kB (393864 bytes) Hashe943fc4b523d2eb47c9747d1033a9cea 33593befd4f0c90c89d822522267c2eb42143364 df8ab94d0a5e3760ffaa05aac8454e402c0299af705f7baa9fdae637f8e73096
GET /universal/scripts-compressed/common-74a40d279f19616df8ab-min.en-US.js HTTP/1.1
Host: assets.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 16 Apr 2025 20:30:31 GMT
last-modified: Tue, 16 Apr 2024 20:09:58 GMT
etag: "bca4afe4cd1668cb33f51f6aab432fe7"
content-type: text/javascript
content-encoding: br
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:46 GMT
age: 677715
x-served-by: cache-iad-kcgs7200048-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 92, 3270
x-timer: S1713977146.335083,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
content-length: 393864
X-Firefox-Spdy: h2
|
|
| static1.squarespace.com/static/versioned-site-css/661f7ef9b2fcf55dfa47d89c/4/5c5a519771c10ba3470d8101/661f7ef9b2fcf55dfa47d8a6/1517/site.css | 151.101.0.238 | 200 OK | 119 kB |
URL GET HTTP/2static1.squarespace.com/static/versioned-site-css/661f7ef9b2fcf55dfa47d89c/4/5c5a519771c10ba3470d8101/661f7ef9b2fcf55dfa47d8a6/1517/site.css IP151.101.0.238:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size119 kB (118581 bytes) Hash5461c982ba5cd8989256c92f841f46ef d47d4b67d832ad743ace957fdd61fa1a811912fc 2ca184e0ac539a9eacd3a29045a19a50ddbb92846b4c21ac093ce8eff1599f3f
GET /static/versioned-site-css/661f7ef9b2fcf55dfa47d89c/4/5c5a519771c10ba3470d8101/661f7ef9b2fcf55dfa47d8a6/1517/site.css HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: text/css; charset=UTF-8
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: 9ssG8jEP/YhZJdGiG
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 24693
date: Wed, 24 Apr 2024 16:45:46 GMT
x-served-by: cache-dfw-kdfw8210084-DFW, cache-hel1410022-HEL
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1713977146.341232,VS0,VE443
vary: Accept-Encoding
tracepoint: Fastly
content-length: 118581
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/2555e1/00000000000000007735e603/30/l?subset_id=2&fvd=n7&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/2555e1/00000000000000007735e603/30/l?subset_id=2&fvd=n7&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 16832, version 1.0 Hash99cfcab4e91c1bc97731bcfe27ac5b29 740fcbaba11d23a5b9daa66fbd99ed8c4250fe6d 81a6361b1f6ff5f9f6ca05b773fb993d7b7b3f668635ccba4379fa3ecb9a7e3e
GET /af/2555e1/00000000000000007735e603/30/l?subset_id=2&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16832
etag: "d6bfc4d27afeb61a1128d9c149ee5ed369aa27c3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/23e139/00000000000000007735e605/30/l?subset_id=2&fvd=n5&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/23e139/00000000000000007735e605/30/l?subset_id=2&fvd=n5&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 16720, version 1.0 Hash64b3bfb414a1dda3c33f6879dade15f4 b6090979ea9ca2dd70e4ee8197982a2d01039b41 58dc2f9ecbfa85accf8b5b67e283ba5b32fafc4769e6244a271ebb80d8a2efcf
GET /af/23e139/00000000000000007735e605/30/l?subset_id=2&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16720
etag: "e14b3e1c538ef57e7a1dbd33c45600ad6ff14122"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| | 143.95.144.22 | 301 Moved Permanently | 232 B |
URL User Request GET HTTP/2IP143.95.144.22:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerZeroSSL Subjecthaltebundle.org Fingerprint5D:42:27:F6:1C:41:16:5A:9E:78:F6:DF:85:DE:67:5C:BD:36:05:FC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash49a8c7480dc544c85883d58fc944259f d92178ec8ec3b25041d32f74af7de37415d005a8 e9a72abfcc1a49001955553597ef452668d2ec47d128704379a9a0027b172f9d
GET / HTTP/1.1
Host: haltebundle.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://206.189.156.119/
content-length: 232
content-type: text/html; charset=iso-8859-1
date: Wed, 24 Apr 2024 16:45:47 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Archivo+Black:wght@400 | 142.250.74.106 | 200 OK | 835 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Archivo+Black:wght@400 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash83dbf7ab917e0d7918a33e3af1202d33 e8234f9efa4a809b0e1c391fc275517ceee63dbd 467548bf923d2cf7b59d17ec68a8939f413c274f4434d3119ecc5df18699953d
GET /css2?family=Archivo+Black:wght@400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 16:45:46 GMT
date: Wed, 24 Apr 2024 16:45:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/archivoblack/v21/HTxqL289NzCGg4MzN6KJ7eW6CYyF_g.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/archivoblack/v21/HTxqL289NzCGg4MzN6KJ7eW6CYyF_g.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18604, version 1.0 Hash4b6914a69e6a586fbe253f73d19d90b0 1f965709606b88830826c45ef0ebcfe3484aa674 25f33e61cf995abd6be62931cf03bf427286259177b43618cc410ee0157cfd30
GET /s/archivoblack/v21/HTxqL289NzCGg4MzN6KJ7eW6CYyF_g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 19:18:25 GMT
expires: Wed, 23 Apr 2025 19:18:25 GMT
cache-control: public, max-age=31536000
age: 77242
last-modified: Thu, 24 Aug 2023 21:16:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/d49b4e53-1bc9-4712-bd61-7b3b33543698/logowebhalte.png?format=1500w | 151.101.128.238 | 200 OK | 49 kB |
URL GET HTTP/2images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/d49b4e53-1bc9-4712-bd61-7b3b33543698/logowebhalte.png?format=1500w IP151.101.128.238:443
CertificateIssuerLet's Encrypt Subject*.squarespace-cdn.com Fingerprint93:03:16:80:56:FC:89:98:38:81:59:38:38:D5:80:D4:86:C8:4A:0B ValiditySun, 31 Mar 2024 19:31:24 GMT - Sat, 29 Jun 2024 19:31:23 GMT
File typePNG image data, 400 x 176, 8-bit/color RGBA, non-interlaced Hash41e41aeb406513db555c807f27eab096 35090bb695a887821e8e7cd1ad8ad09611554672 470cb6aacde66f9a2d2d6a2f9020b153b3507c325806eca9c49831f0c2d07d76
GET /content/v1/661f7ef9b2fcf55dfa47d89c/d49b4e53-1bc9-4712-bd61-7b3b33543698/logowebhalte.png?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
x-sqsp-is-public: true
content-type: image/png
access-control-allow-origin: *
etag: CPjJqbvwyIUDEAE=
cache-control: max-age=31536000,s-maxage=31536000
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 152869
date: Wed, 24 Apr 2024 16:45:47 GMT
x-served-by: cache-iad-kiad7000114-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 7, 0
x-timer: S1713977147.322779,VS0,VE118
vary: Accept-Encoding
tracepoint: Fastly
content-length: 48697
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?subset_id=2&fvd=n4&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?subset_id=2&fvd=n4&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 16560, version 1.0 Hash21776237ce9fa23dd98ad23252d6a3fa bedf8f707c96c0cdb609c652828e797dcd214308 b4096925f34c85d0c0e934ad77c44165dcd66fecc354c153784d246f00911da5
GET /af/efe4a5/00000000000000007735e609/30/l?subset_id=2&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 16560
etag: "e7ff55a2dbd9793a0025734c0419ed962aadab55"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/floating-cart.4814fbbf54a92e38c18f.js | 151.101.0.238 | 200 OK | 302 B |
URL GET HTTP/2static1.squarespace.com/static/vta/5c5a519771c10ba3470d8101/scripts/floating-cart.4814fbbf54a92e38c18f.js IP151.101.0.238:443
CertificateIssuerDigiCert Inc Subject*.squarespace.com FingerprintB2:6A:CD:A0:51:C9:CB:A0:25:95:5C:33:A7:CB:3E:BB:1A:6F:7A:23 ValidityFri, 09 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (451), with no line terminators Hash0198e90e861f967dfd6cd7ec3c0fe84d 7f6d36589cb996a7253f8be001cc6c2a90c4b5cc 44730fefcc42a6a30ff8e5e876522fa745b60bf0744414838d9de76eeb705c23
GET /static/vta/5c5a519771c10ba3470d8101/scripts/floating-cart.4814fbbf54a92e38c18f.js HTTP/1.1
Host: static1.squarespace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=94608000
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
pragma: cache
server: Squarespace
timing-allow-origin: *
x-content-type-options: nosniff
x-contextid: RSezxV0G/i27ybTn2
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:47 GMT
age: 602901
x-served-by: cache-dfw-kdfw8210096-DFW, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 108, 5626
x-timer: S1713977148.636349,VS0,VE0
vary: Accept-Encoding
tracepoint: Fastly
content-length: 302
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/79862c/00000000000000007735e60e/30/l?subset_id=2&fvd=i5&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/79862c/00000000000000007735e60e/30/l?subset_id=2&fvd=i5&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 17284, version 1.0 Hash5e2819b1d58a4b41beeaabdcea7e4cd9 e870d40e5c87c3cac6c658c6db116b22f59e32d0 b4e1e58a7a609cf1313dc14ec228403aed7a9d2460b6336a4287b8de1c341950
GET /af/79862c/00000000000000007735e60e/30/l?subset_id=2&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17284
etag: "f9e1fb43c1d2d27fcf0bfbab9373fa000fe761ca"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/4de20a/00000000000000007735e604/30/l?subset_id=2&fvd=i7&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/4de20a/00000000000000007735e604/30/l?subset_id=2&fvd=i7&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 17284, version 1.0 Hash72a42e9fbd74218299a80fdeea0f73cd 498cd77090a57d114727211620bda05f5c44a5cc 5aa4d710eb97e7dc65d20f8a3b814646481b69ad60a513bfd95fa8bdcdc71eb6
GET /af/4de20a/00000000000000007735e604/30/l?subset_id=2&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17284
etag: "a7173d64afba2671b7fdf3dc01ded3412e73bdc3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/3322cc/00000000000000007735e616/30/l?subset_id=2&fvd=i4&v=3 | 23.33.119.67 | 200 OK | 17 kB |
URL GET HTTP/2use.typekit.net/af/3322cc/00000000000000007735e616/30/l?subset_id=2&fvd=i4&v=3 IP23.33.119.67:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 17212, version 1.0 Hash133a3f4bada71d50c6dba1e84cd2f86e 89387c1bedc41f76e4234e623eee894b3e06fc52 fdcb74f626ef8f1059c0e3bd503017b8fdda4a54afcc26a4da734f5fd5c7a87a
GET /af/3322cc/00000000000000007735e616/30/l?subset_id=2&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 17212
etag: "31a7aafb713ac5501e62f6db8e298b8d73b421d2"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/2ef0811e-362f-4d73-afda-a050323c8316/daftar.gif?format=500w | 151.101.128.238 | 200 OK | 60 kB |
URL GET HTTP/2images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/2ef0811e-362f-4d73-afda-a050323c8316/daftar.gif?format=500w IP151.101.128.238:443
CertificateIssuerLet's Encrypt Subject*.squarespace-cdn.com Fingerprint93:03:16:80:56:FC:89:98:38:81:59:38:38:D5:80:D4:86:C8:4A:0B ValiditySun, 31 Mar 2024 19:31:24 GMT - Sat, 29 Jun 2024 19:31:23 GMT
File typeGIF image data, version 89a, 500 x 203 Hash53ca6eb5b4777454678debf20fdc1801 8867faab9fbaecaa0c80eca68c5f1d304a931f07 fa68432482acf966158f9d442999c8c615bb2024a66032e917e9dd0036db266f
GET /content/v1/661f7ef9b2fcf55dfa47d89c/2ef0811e-362f-4d73-afda-a050323c8316/daftar.gif?format=500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
x-sqsp-is-public: true
content-type: image/gif
access-control-allow-origin: *
etag: CPeb3vTwyIUDEAE=
cache-control: max-age=31536000,s-maxage=31536000
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 632841
date: Wed, 24 Apr 2024 16:45:47 GMT
x-served-by: cache-iad-kiad7000096-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 15, 0
x-timer: S1713977147.427864,VS0,VE119
vary: Accept-Encoding
tracepoint: Fastly
content-length: 59531
X-Firefox-Spdy: h2
|
|
| images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/fab1fd1d-8953-403a-8664-613c895d8f7e/bannernewhalte.jpeg?format=1500w | 151.101.128.238 | 200 OK | 274 kB |
URL GET HTTP/2images.squarespace-cdn.com/content/v1/661f7ef9b2fcf55dfa47d89c/fab1fd1d-8953-403a-8664-613c895d8f7e/bannernewhalte.jpeg?format=1500w IP151.101.128.238:443
CertificateIssuerLet's Encrypt Subject*.squarespace-cdn.com Fingerprint93:03:16:80:56:FC:89:98:38:81:59:38:38:D5:80:D4:86:C8:4A:0B ValiditySun, 31 Mar 2024 19:31:24 GMT - Sat, 29 Jun 2024 19:31:23 GMT
File typeJPEG image data, progressive, precision 8, 1080x1080, components 3 Size274 kB (274129 bytes) Hash58d4ed90e58675633436f5b45bb5910c 90c35f702751b3b3274387ecaab71d636578359d 86956dd5b8ee4f0e52a27a3c92b0b299d03e8bff7bb2666f9c8e0bb5b1593ac0
GET /content/v1/661f7ef9b2fcf55dfa47d89c/fab1fd1d-8953-403a-8664-613c895d8f7e/bannernewhalte.jpeg?format=1500w HTTP/1.1
Host: images.squarespace-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
access-control-expose-headers: Content-Length, Timing-Allow-Origin
x-sqsp-is-public: true
content-type: image/jpeg
access-control-allow-origin: *
etag: CMScmM3wyIUDEAE=
cache-control: max-age=31536000,s-maxage=31536000
via: 1.1 google, 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 89615
date: Wed, 24 Apr 2024 16:45:47 GMT
x-served-by: cache-iad-kiad7000179-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1713977147.427630,VS0,VE161
vary: Accept-Encoding
tracepoint: Fastly
content-length: 274129
X-Firefox-Spdy: h2
|
|
| p.typekit.net/p.gif?s=2&k=646866_661f7ef9b2fcf55dfa47d89c&ht=tk&h=206.189.156.119&f=175.25136.139.176.25137.140&a=646866&js=1.21.0&app=typekit&e=js&_=1713977147770 | 23.33.119.26 | 200 OK | 35 B |
URL GET HTTP/2p.typekit.net/p.gif?s=2&k=646866_661f7ef9b2fcf55dfa47d89c&ht=tk&h=206.189.156.119&f=175.25136.139.176.25137.140&a=646866&js=1.21.0&app=typekit&e=js&_=1713977147770 IP23.33.119.26:443 ASN#20940 Akamai International B.V.
CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash81144d75b3e69e9aa2fa3e9d83a64d03 f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc 9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=2&k=646866_661f7ef9b2fcf55dfa47d89c&ht=tk&h=206.189.156.119&f=175.25136.139.176.25137.140&a=646866&js=1.21.0&app=typekit&e=js&_=1713977147770 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
date: Wed, 24 Apr 2024 16:45:47 GMT
X-Firefox-Spdy: h2
|
|
| | 206.189.156.119 | 200 OK | 15 kB |
URL User Request GET HTTP/2IP206.189.156.119:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject206.189.156.119 FingerprintAA:B5:BA:30:E3:9F:26:AB:D6:60:2A:CA:9F:1A:8C:5B:9A:BF:F3:2C ValidityFri, 29 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18703), with CRLF line terminators Hashde001e0f4d323b8fb30f4a6de26d6f8c eb1e8f32907187f8e0c9f3e94a8c7a7b8363ef68 7d2cebffb88814ae9b9331f106502a23a4bc3edadadd5d613777754ba6a40849
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 206.189.156.119
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "1277f-66274d99-bd524;br"
last-modified: Tue, 23 Apr 2024 05:56:41 GMT
content-type: text/html
content-length: 14722
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 16:45:50 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| 206.189.156.119/img/favicon.png | 206.189.156.119 | 200 OK | 4.1 kB |
URL GET HTTP/2206.189.156.119/img/favicon.png IP206.189.156.119:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject206.189.156.119 FingerprintAA:B5:BA:30:E3:9F:26:AB:D6:60:2A:CA:9F:1A:8C:5B:9A:BF:F3:2C ValidityFri, 29 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, interlaced Hashf9473bbafe4ec2d37247d57b4f912341 f62633755619a19d458926d47abaab4e217e5c07 846108a190c48dd47bd6b31ab61afdb88844ffd7997038beeda45e6c9ad47d78
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/favicon.png HTTP/1.1
Host: 206.189.156.119
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Cookie: ss_cvr=a88fd7a9-f9e3-4ebc-9abf-797c616652f0|1713977147704|1713977147704|1713977147704|1; ss_cvt=1713977147704
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 16:45:48 GMT
etag: "1029-65aa3b5f-13b027;;;"
last-modified: Fri, 19 Jan 2024 09:05:35 GMT
content-type: image/png
content-length: 4137
accept-ranges: bytes
date: Wed, 24 Apr 2024 16:45:48 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| 206.189.156.119/api/census/RecordHit | 206.189.156.119 | 404 Not Found | 6.8 kB |
URL POST HTTP/2206.189.156.119/api/census/RecordHit IP206.189.156.119:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject206.189.156.119 FingerprintAA:B5:BA:30:E3:9F:26:AB:D6:60:2A:CA:9F:1A:8C:5B:9A:BF:F3:2C ValidityFri, 29 Mar 2024 00:00:00 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash8a522f29031954da81628c6b2a3f613f 33d68ac3f2a8205c85eff5bc4ca32d3a6b1d1001 18d20a6dbe5c32d5736a4361a5165970fbe8dd04ae138c5d5e6f3c5ced57d506
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /api/census/RecordHit HTTP/1.1
Host: 206.189.156.119
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
X-CSRF-Token: undefined
Content-Length: 767
Origin: https://206.189.156.119
DNT: 1
Connection: keep-alive
Referer: https://206.189.156.119/
Cookie: ss_cvr=a88fd7a9-f9e3-4ebc-9abf-797c616652f0|1713977147704|1713977147704|1713977147704|1; ss_cvt=1713977147704
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
cache-control: private, no-cache, max-age=0
pragma: no-cache
date: Wed, 24 Apr 2024 16:45:47 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|