www.scalfordhall.co.uk/wp-content/themes/twentyeleven/images/111.exe
79.170.40.4 0 B URL User Request GET www.scalfordhall.co.uk/wp-content/themes/twentyeleven/images/111.exe
IP 79.170.40.4:0
ASN #20738 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
GET /wp-content/themes/twentyeleven/images/111.exe HTTP/1.1
Host: www.scalfordhall.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
content-length: 0
location: http://www.darrenlangley.com/scalford-hall-hotel//wp-content/themes/twentyeleven/images/111.exe
ocsp.starfieldtech.com/
192.124.249.36 1.8 kB IP 192.124.249.36:0
Hash 7c450814245dcfc24b71ce3a2b4d119c
385a857903f747fc248f3bc155fdf0d9be276ccd
54697beacf183af13dba1b21534e09db06753f15c4cb5edb8f61a711e3d2bcb1
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Jun 2023 07:02:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 09 Jun 2023 06:08:25 GMT
Expires: Sat, 10 Jun 2023 06:08:25 GMT
ETag: "385a857903f747fc248f3bc155fdf0d9be276ccd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
79.170.40.55404 Not Found 65 kB URL User Request GET HTTP/2 www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
IP 79.170.40.55:443
ASN #20738 Host Europe GmbH
Certificate IssuerStarfield Technologies, Inc.
Subjectdarrenlangley.com
Fingerprint35:E2:7E:B2:26:AA:D7:A6:04:BC:89:DA:BF:09:C1:31:4D:B7:ED:41
ValidityWed, 12 Oct 2022 10:44:01 GMT - Thu, 12 Oct 2023 08:34:36 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14697)
Hash eb1997ccdeb88141d9389b572c2f273a
6fd9eb365b28a0d8675f67e952f7e423d01a7582
cf65e3b1fdc4821cde5c94d7959cf116ff29ed54bf7a2923c9ec3dec09c686f2
NIDS Severity Alert suricata high ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
GET /scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 09 Jun 2023 07:02:48 GMT
server: Apache
x-powered-by: PHP/5.6.40
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.darrenlangley.com/wp-json/>; rel="https://api.w.org/"
set-cookie: cookielawinfo-checkbox-necessary=yes; expires=Fri, 09-Jun-2023 08:02:50 GMT; Max-Age=3600; path=/
vary: User-Agent
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css
79.170.40.55200 OK 71 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type ASCII text, with very long lines (31753)
Hash c7cce0b1875ad8ad9611c67db12d6f68
f18e29e1148bef8044858a5f418947815719ee60
e3efad927c9d23b283125ce5b522710ab34ba0919b1948c4045eba9d06991d77
GET /asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Mon, 17 Apr 2023 12:43:42 GMT
etag: "4ac4b-5f9878a7a8908-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 29 May 2024 07:02:52 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
transfer-encoding: chunked
content-type: text/css
www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_6e02154f5edc6ca5c72ecb4530856cd2.css
79.170.40.55200 OK 679 B URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_6e02154f5edc6ca5c72ecb4530856cd2.css
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type ASCII text, with very long lines (1943)
Hash b37a257cb78026eac2c3ad91994ea88a
28ecee9ace7e97ab6b0b0e998f375a769cc12873
4a973eddacae36d253d23a0f2a332a69e9c7aa341554663a8bdddca578dffa3c
GET /asite/wp-content/cache/autoptimize/css/autoptimize_6e02154f5edc6ca5c72ecb4530856cd2.css HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Mon, 17 Apr 2023 12:43:42 GMT
etag: "814-5f9878a7a8cf0-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 29 May 2024 07:02:52 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 679
content-type: text/css
www.darrenlangley.com/asite/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.6.1
79.170.40.55200 OK 3.9 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.6.1
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type ASCII text, with very long lines (7209)
Hash 8cb6225327c3871ecfaf0f12441038b0
978c0993de8e8c0a250cad00889c23691b8533db
ad59ddc1d9939ae9f117cb78c02bd1bfa5835823d8e4a95a2191b71f456ac959
GET /asite/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.6.1 HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:22:30 GMT
etag: "22ac-59b28ec6b2186-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Sun, 11 Jun 2023 07:02:52 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3917
content-type: application/javascript
www.darrenlangley.com/asite/wp-includes/js/jquery/jquery.js
79.170.40.55200 OK 34 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-includes/js/jquery/jquery.js
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
GET /asite/wp-includes/js/jquery/jquery.js HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Thu, 05 Sep 2019 04:43:31 GMT
etag: "17a6a-591c6f6a59367-gzip"
accept-ranges: bytes
cache-control: max-age=172800
expires: Sun, 11 Jun 2023 07:02:52 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 33776
content-type: application/javascript
www.googletagmanager.com/gtag/js?id=AW-969680139
142.250.74.72200 OK 54 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=AW-969680139
IP 142.250.74.72:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (2271)
Hash 7a05fc7938b10f0208d04c6bdb8e1093
3b620dbd4ad785cf2012c73b8e809599cfa59bf3
72f01fddcb8e4e10ef9ccac41af761e28c7ea0cfa39d04d0141fb2a785bbb0bb
GET /gtag/js?id=AW-969680139 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Jun 2023 07:02:52 GMT
expires: Fri, 09 Jun 2023 07:02:52 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Jun 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 54536
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-3900816-1
142.250.74.72200 OK 64 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-3900816-1
IP 142.250.74.72:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (4372)
Hash b002c61f64db16c0a65b2270064d073f
1cd33a234f450ffa6093e6ddc46bdc1868f1bb91
c8993f004b4cd94407c80d155c82f73e1f76d589ab08f5c77875a97c5e801840
GET /gtag/js?id=UA-3900816-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Jun 2023 07:02:52 GMT
expires: Fri, 09 Jun 2023 07:02:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64520
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash aacac1ba392d965458a505102682c1e3
5c5c006680156f659ebb49c9724b19ba33cfcba5
b2977d45b49394ff4a30dfb32dba97c18009b4b93e58bb287eb34b3699a84e5e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 07:02:52 GMT
Last-Modified: Fri, 09 Jun 2023 06:24:15 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u1RVY0PlBV4rS7H4KHj3I4s0luQCP8-gZF7eVjpwovqULl8vXSoa8Q==
Age: 2317
www.darrenlangley.com/asite/wp-content/cache/autoptimize/js/autoptimize_37bc32cc8597d371dc46818d4a0aae62.js
79.170.40.55200 OK 52 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/cache/autoptimize/js/autoptimize_37bc32cc8597d371dc46818d4a0aae62.js
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type ASCII text, with very long lines (25533)
Hash 98eef114483b0c419a667abc53a489a0
4cb2ed40dad6e3ed310a371141c8333535471b1f
b1f492866aa8e06a07d8d9df6e25d0d7f8aa977bad017e22fc2232695f321bcc
GET /asite/wp-content/cache/autoptimize/js/autoptimize_37bc32cc8597d371dc46818d4a0aae62.js HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Wed, 17 May 2023 04:39:12 GMT
etag: "2de1e-5fbdc44facd4b-gzip"
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 29 May 2024 07:02:52 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 52506
content-type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-SPFQ4FVW01&l=dataLayer&cx=c
142.250.74.72200 OK 76 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-SPFQ4FVW01&l=dataLayer&cx=c
IP 142.250.74.72:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (5857)
Hash 297965428cfccc427d7a194c3e9f390e
769c24e99cf0bf39cf8ca47367503cb1296d37b7
8cf41a7e6a3772e9a3f9bd36c087ac0a4a419672fdd1b0f82061bbaedec3c7ba
GET /gtag/js?id=G-SPFQ4FVW01&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Jun 2023 07:02:52 GMT
expires: Fri, 09 Jun 2023 07:02:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75578
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.darrenlangley.com/asite/wp-content/themes/design/pics/bullet_arrow2.gif
79.170.40.55200 OK 1.2 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/bullet_arrow2.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 15 x 15\012- data
Hash 53633cc0c0bbb18a80a9ff7f943f11bb
592d8b451c4189ed2b7ccb2da7344ed3b57a5286
f224780197d5134b31f23d2d5df6cbcd8ba2508eecb21ff62855437e76ebe5f5
GET /asite/wp-content/themes/design/pics/bullet_arrow2.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Fri, 16 Sep 2016 13:51:09 GMT
etag: "4d2-53ca04128f72a"
accept-ranges: bytes
content-length: 1234
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:52 GMT
vary: User-Agent
content-type: image/gif
embed.typeform.com/embed.js
54.230.111.81200 OK 59 kB URL GET HTTP/2 embed.typeform.com/embed.js
IP 54.230.111.81:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerAmazon
Subject*.typeform.com
Fingerprint28:9B:E3:EE:B7:5D:EB:38:85:79:F5:57:AD:F5:C0:82:C5:0B:F2:36
ValidityFri, 24 Feb 2023 00:00:00 GMT - Sun, 29 Oct 2023 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 267073e1ab8cabbc69e26a2f5a221ba7
2940e864be90436899a9801ce1ecf46e9935bc95
7e9f9a4d74cefbfa1048c443c44f82ee2878dbd9507c2a6fdbff07c45a10aab9
GET /embed.js HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 29 Nov 2022 16:30:09 GMT
x-amz-version-id: ZacpiNjcpfEBVp2a6OK.0z3yfL3w9VrI
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Jun 2023 07:01:46 GMT
etag: W/"33702e05c8b925fd7fdba3817fd31af9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: AWLot7y8PhaF4tZ9sofzSvh_WNGAh2RTOOb2Iew8Z4y4LXELZRTc_w==
age: 67
cache-control: public, max-age=0, must-revalidate
X-Firefox-Spdy: h2
js.chargebee.com/v2/chargebee.js
54.230.111.65200 OK 78 kB URL GET HTTP/2 js.chargebee.com/v2/chargebee.js
IP 54.230.111.65:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 245fdff19819187fa599b169b5cf52b7
ed9b2aaccf17539df84146927468b8a82526f733
7a0ef3b835b0b68887e158668ca38b50e8d4b35c39af06f50b3ff7edbfd86c58
GET /v2/chargebee.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: x8AHjvUyyaCbSmp4GC8WIoEhM8w23DgO
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 07:00:55 GMT
cache-control: max-age=300,public
etag: W/"0005ad0b0e048b0c4e435b7cd19bfa55"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TbrSWPaaCp8SJx2EypaWgtXZStW_NBAxLRn6kdr1ZZMJBjvAQTNgHg==
age: 118
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash cfa2f4faaa3c178ca36297b0c4264e37
7a77047e893a983873f15a67f94b2be4b114be43
faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.darrenlangley.com/asite/wp-content/themes/design/pics/new_hp_bg.gif
79.170.40.55200 OK 21 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/new_hp_bg.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 1900 x 750\012- data
Hash 5ed58801fcc6bd4bf7cac114dc371635
f8b2ab87f5372c4a013a3ee05f3cf5dfa5466680
0b1cdcc64c28844e26abd2da75bb6f437b5b12de202423d19c92f928641a1220
GET /asite/wp-content/themes/design/pics/new_hp_bg.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:44:13 GMT
etag: "5172-59b293a10121f"
accept-ranges: bytes
content-length: 20850
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:52 GMT
vary: User-Agent
content-type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash cfa2f4faaa3c178ca36297b0c4264e37
7a77047e893a983873f15a67f94b2be4b114be43
faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Asap:400,700,400italic,700italic&display=swap
142.250.74.106200 OK 43 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Asap:400,700,400italic,700italic&display=swap
IP 142.250.74.106:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Hash cbd4dbd1fd3b45138948d2031a357d95
4e79dd671d3723396406745383ecd99bb43f9cc3
3f8034cb178c451af08af44ba3cb9b118920a17944de4bd8d3a307ad9d9b4d0c
GET /css?family=Asap:400,700,400italic,700italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Jun 2023 07:02:52 GMT
date: Fri, 09 Jun 2023 07:02:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash fccd12e4edaf94222bd2e8667ad905be
53a81bdcd461c025c61dd96c47fff1e4220cba4e
04992512ff49f1fb7771dcbeaf43bdb8465466d387c9ae09ce6a383a0217d0eb
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 07:02:52 GMT
Last-Modified: Fri, 09 Jun 2023 05:39:34 GMT
Server: ECAcc (bsa/EA9D)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PnBMBhhtwkQ5fHrSHh8BE3yhzVRthennJLz_6BkZ69SCaNGiB6moTw==
Age: 4998
fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2
216.58.207.227200 OK 43 kB URL GET HTTP/2 fonts.gstatic.com/s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2
IP 216.58.207.227:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 42616, version 1.0\012- data
Hash 57716e51419e5143f8e1dd061d5cf8c2
d796688a0f3679b0536787315ee0386649c146ab
b1128adb79c7208d410630c04fe6e8ac8886aeb778aafb3f4195fe735acc1d89
GET /s/asap/v30/KFO9CniXp96a4Tc2DaTeuDAoKsE615hJW34.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.darrenlangley.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 21:30:25 GMT
expires: Wed, 05 Jun 2024 21:30:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Jun 2023 20:38:36 GMT
content-type: font/woff2
age: 207147
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
54.230.111.65 234 B URL js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
IP 54.230.111.65:0
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aed43e4862c364d2b2874653d45c3c9b
5877b7b28b0b41caf99d66821acb7b23d60f4db1
29acd6e98447254d33ee8676c215a0589b67362048ea8ae3274cf0bb12092610
GET /assets/cbjs-2023.06.08-10.20/v2/master.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 234
last-modified: Thu, 08 Jun 2023 10:56:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: uPXwO7PmhO7bi.nx7on4Itek0v0OIgb6
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Fri, 09 Jun 2023 06:58:41 GMT
cache-control: max-age=300,public
etag: "aed43e4862c364d2b2874653d45c3c9b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GS9TdBjRApbMNjsFS3Y1OHI9Wxs1nSM4mpsp5ZWRKvT3fwiM-dkxog==
age: 252
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash cfa2f4faaa3c178ca36297b0c4264e37
7a77047e893a983873f15a67f94b2be4b114be43
faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.darrenlangley.com/favicon.ico
79.170.40.55200 OK 1.2 kB URL GET HTTP/1.1 www.darrenlangley.com/favicon.ico
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4ad6f1547e4c96bfd40db156737c81aa
20010d23211f05b33f1c467231990253431b35fa
0fd038dec42ceeb782361ef733deaa279ab26984bfe443c05514f3316b0331b6
GET /favicon.ico HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Fri, 25 Oct 2013 15:25:57 GMT
etag: "47e-4e9925deaab40"
accept-ranges: bytes
content-length: 1150
cache-control: max-age=172800
expires: Sun, 11 Jun 2023 07:02:53 GMT
vary: User-Agent
content-type: image/vnd.microsoft.icon
www.darrenlangley.com/asite/wp-content/themes/design/pics/dl_logo.png
79.170.40.55200 OK 16 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/dl_logo.png
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type PNG image data, 584 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d7948c2d29f9c30b0757c1e3ab32c06
a3304fd77ff8be356d0301651a6ae19a6a50f328
75cdf14d87d85bba43972c30a39666315dcb76475909b867fbd08ec0487c036b
GET /asite/wp-content/themes/design/pics/dl_logo.png HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:43:22 GMT
etag: "3e33-59b29370206ac"
accept-ranges: bytes
content-length: 15923
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:53 GMT
vary: User-Agent
content-type: image/png
www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_twitter.gif
79.170.40.55200 OK 1.6 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_twitter.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 19 x 20\012- data
Hash 9c1f673922787a157fbadec4f8d7527d
159821aedc39ead0dd0708d6d6cec37b3ff9e9aa
677fb5442dad983ba8a9e24af98ddf97ada65d4d2c120598c5ae42fcd18cf8d8
GET /asite/wp-content/themes/design/pics/icon_twitter.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:44:07 GMT
etag: "65f-59b2939b167b5"
accept-ranges: bytes
content-length: 1631
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:53 GMT
vary: User-Agent
content-type: image/gif
www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_fb.gif
79.170.40.55200 OK 1.4 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_fb.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 11 x 20\012- data
Hash 306a568b14519dfae67b79af03500e90
2c6adf9c4c2575962697ecbb51f2c4220c03c56b
c19805307c07ea58338868f83785ed679db6ca2d50bb2d1d7ebf55fb27a0d9a7
GET /asite/wp-content/themes/design/pics/icon_fb.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:44:17 GMT
etag: "562-59b293a4bd6ee"
accept-ranges: bytes
content-length: 1378
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:53 GMT
vary: User-Agent
content-type: image/gif
www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_linkedin.gif
79.170.40.55200 OK 1.7 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/icon_linkedin.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 18 x 20\012- data
Hash 6ee498ef05d0dff7078d426b4b067b84
73a6e7cb9ad41ff5101322eb92e8b40e1a9d5af9
090e699491f104611ba892f74289f7cb19ce00fd124f3e0b302e85f94e78fa70
GET /asite/wp-content/themes/design/pics/icon_linkedin.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:43:30 GMT
etag: "675-59b293780d3a9"
accept-ranges: bytes
content-length: 1653
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:53 GMT
vary: User-Agent
content-type: image/gif
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/148-ecf432e170be870ad4bb.js
54.230.111.65200 OK 3.8 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/148-ecf432e170be870ad4bb.js
IP 54.230.111.65:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 2919502788281df08e0a0b60a636af6c
5a1bb05b4268978ce1915bde1e13431aac23c5b8
e25ef248e64c46ac45340e31ae17910b7f5b6256beffbebb01eef8113da3bda5
GET /assets/cbjs-2023.06.08-10.20/v2/148-ecf432e170be870ad4bb.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: yTB0dH_3iZeWwaezwzVFBIADp_587CWw
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 06:59:07 GMT
cache-control: max-age=300,public
etag: W/"05283b671d536bf01dbf7ead97336d89"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k8jqH5fNG-xZWNEZwUU69FXhYF059pvKWZV9fHOlZORE_fYmIjuddQ==
age: 226
X-Firefox-Spdy: h2
darrenlangley.chargebeestaticv2.com/api/internal/1686294000/retrieve_js_info
54.230.111.75200 OK 0 B URL GET HTTP/2 darrenlangley.chargebeestaticv2.com/api/internal/1686294000/retrieve_js_info
IP 54.230.111.75:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subject*.chargebeestaticv2.com
Fingerprint34:17:8E:25:49:6C:47:0F:7A:39:C3:CE:61:BC:F6:75:C6:63:D4:78
ValiditySun, 30 Apr 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/internal/1686294000/retrieve_js_info HTTP/1.1
Host: darrenlangley.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://js.chargebee.com/
Origin: https://js.chargebee.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 202 Accepted
content-length: 0
date: Fri, 09 Jun 2023 07:02:53 GMT
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0B4mI95IuRlI_w_9TT3DBouuxfudcqzZ22P0bw0Ir3q3I_TPG4ABOA==
X-Firefox-Spdy: h2
darrenlangley.chargebeestaticv2.com/api/internal/1686294000/retrieve_js_info
54.230.111.75200 OK 455 B URL GET HTTP/2 darrenlangley.chargebeestaticv2.com/api/internal/1686294000/retrieve_js_info
IP 54.230.111.75:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subject*.chargebeestaticv2.com
Fingerprint34:17:8E:25:49:6C:47:0F:7A:39:C3:CE:61:BC:F6:75:C6:63:D4:78
ValiditySun, 30 Apr 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (455), with no line terminators
Hash 941cc4ce280577a9986419e46dd7c254
75eddc56a8dfa9e6e13560676b50aaf73d0cd1cd
b8ee88ab555b12bc1c974652f082ae98fbc58e2bb7b0c7746c7a6869eb85756a
GET /api/internal/1686294000/retrieve_js_info HTTP/1.1
Host: darrenlangley.chargebeestaticv2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://js.chargebee.com
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
content-length: 455
date: Fri, 09 Jun 2023 07:02:53 GMT
cache-control: max-age=0, must-revalidate, public, s-maxage=3600
expires: Thu, 01 Jan 1970 00:00:00 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: https://js.chargebee.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, cb-csrf-token, leap.api.version, chargebee-business-entity-id, X-TP-Token
access-control-allow-methods: GET, OPTIONS, POST
server: ChargeBee
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T74g8GnsnSr5K0c3fAyRj5M-MSvp7xYkMeueCQ0mUTMflkB3quyaSw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 95a94d12a9fc00a37c7e34de10e678b7
e2339ec07c410aa01864fd29eb0d99a7ccecc37c
79fc04cdd5d05f242eb5ba0ad8111f3609197a7d41f8a451dc2314b8280ed5cf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
142.250.74.164200 OK 587 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-
IP 142.250.74.164:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash fe3c547c14b65f5a4b2bd1bbafba5a6e
b82fca28f773aabcc9192d897e063826eee1ff30
813ad264b9d4b9747ac3b77c7bd286772af4d38e300b12de1c86eeef3c7c3e11
GET /recaptcha/api.js?render=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 09 Jun 2023 07:02:53 GMT
date: Fri, 09 Jun 2023 07:02:53 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 6c61fb42405abc811f67aabeace702b2
0d41286eb5a6f7f82734de50e0fdbc7e752e3d8e
bd7a264bf9a25dd4e67665c894ea85fd985546fb75f9e69da4bbfb5ba2fabab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 07:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
142.250.74.67200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 142.250.74.67:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://js.chargebee.com
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 17:15:16 GMT
expires: Tue, 04 Jun 2024 17:15:16 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 308857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
142.250.74.164200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
IP 142.250.74.164:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42497)
Hash 57ded09ce4a930f9fe201a037baa15e5
07c810e3b7577283a5368fb3534d2c0e8fb2cf24
24f19e28df86afbf1dd97ee84d4b5e5fdee559409a26b5c785c2e826a408b868
GET /recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Jun 2023 07:02:54 GMT
content-security-policy: script-src 'nonce-KwaqYVVpzY-9IOBNPX0rnA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27569
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.darrenlangley.com/asite/wp-content/themes/design/pics/bestof-sutton-coldfield.gif
79.170.40.55200 OK 3.6 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/bestof-sutton-coldfield.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 113 x 60\012- data
Hash d3da679e64da1e3ab18c69bfcf61d4ab
403b96274b9a5ab6cf307186b00c3295303bd3b2
e6307b86f9055c071d316b0262790a12ff3faa7268ede3096176a470f1b6b1bb
GET /asite/wp-content/themes/design/pics/bestof-sutton-coldfield.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:54 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:43:13 GMT
etag: "e1c-59b29367821d5"
accept-ranges: bytes
content-length: 3612
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:54 GMT
vary: User-Agent
content-type: image/gif
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/165-679513880cac9dfa6cfc.js
54.230.111.65200 OK 4.9 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/165-679513880cac9dfa6cfc.js
IP 54.230.111.65:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 6cbcdb1d54cded18b73bd8da8e700254
726b659bc5c440df8d80d8ee31562ba9a2113936
a5ad5d0c5c7bb4103804d37c66a095ed6a1182f70d65f06adf9d6c4f344c6730
GET /assets/cbjs-2023.06.08-10.20/v2/165-679513880cac9dfa6cfc.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 89zWlBfsKAqcq68QFblDMntZF6hns04V
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 06:58:46 GMT
cache-control: max-age=300,public
etag: W/"a884c66766ba98316c3c19dde0ef7e2d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 86bGCoZvLmHo_O85ZRFdxm3TYkj5MaCJkm7hRaEJDS3YdCQO2oCUzQ==
age: 249
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
142.250.74.67200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
IP 142.250.74.67:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Jun 2023 07:00:13 GMT
expires: Sat, 08 Jun 2024 07:00:13 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 161
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
142.250.74.67200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 142.250.74.67:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 17:15:16 GMT
expires: Tue, 04 Jun 2024 17:15:16 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 308858
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.darrenlangley.com/asite/wp-content/themes/design/pics/ukwda_registered_rgb_web_blue_bg.png
79.170.40.55200 OK 1.1 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/ukwda_registered_rgb_web_blue_bg.png
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type PNG image data, 120 x 60, 8-bit colormap, non-interlaced\012- data
Hash 57a387282b2d63147eca5299e1b4f189
52c09d3a9c4a4afc96d797fb3de6089a423f3326
1b34717295b42d2e78014dd87c8c03fefb1466eb3aaf11bdea1196a1ffccc964
GET /asite/wp-content/themes/design/pics/ukwda_registered_rgb_web_blue_bg.png HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:54 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:39:23 GMT
etag: "42a-59b2928c11824"
accept-ranges: bytes
content-length: 1066
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:54 GMT
vary: User-Agent
content-type: image/png
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 17:31:32 GMT
expires: Wed, 05 Jun 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 221482
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Jun 2023 21:40:21 GMT
expires: Wed, 05 Jun 2024 21:40:21 GMT
cache-control: public, max-age=31536000
age: 206553
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
142.250.74.164200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint55:5E:E6:33:AF:71:86:C2:88:4A:36:5F:68:1D:97:9D:9B:9D:2A:1D
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with no line terminators
Hash 983bb9c268615cc353bee88601f14e9e
47986f5bb70c39569d68200e4341866a59f1fc54
4b092828992acbd759ebd249d6472169093ee8b739753c1ae3e165cd34449b70
GET /recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 09 Jun 2023 07:02:54 GMT
date: Fri, 09 Jun 2023 07:02:54 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.67200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.67:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdxzNoUAAAAAC7rwigQ9hI75HZl9mXhumAUR-B-&co=aHR0cHM6Ly9qcy5jaGFyZ2ViZWUuY29tOjQ0Mw..&hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR&size=invisible&cb=e89layctckjm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 21:48:58 GMT
expires: Mon, 12 Jun 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 292436
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
142.250.74.67200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js
IP 142.250.74.67:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Xh5Zjh8Od10-SgxpI_tcSnHR
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (694)
Size 166 kB (166526 bytes)
Hash 43735f6c22399555891e8abf82e7410b
c877dbb7a2ab1492a796fd6339c035c5e823d0e5
07cf56e972b5898434ac9845ae9edf4cc697ef991f4be4e2232b926bc4d7ed98
GET /recaptcha/releases/Xh5Zjh8Od10-SgxpI_tcSnHR/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166526
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Jun 2023 17:15:16 GMT
expires: Tue, 04 Jun 2024 17:15:16 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 04 Jun 2023 14:00:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 308858
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.darrenlangley.com/asite/wp-content/themes/design/pics/chamber_member.gif
79.170.40.55200 OK 3.8 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/chamber_member.gif
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type GIF image data, version 89a, 113 x 60\012- data
Hash 195694edb2ce0e1179de9cb2947ba8f3
a78ae9a8acebb892ce3b59a389d35c2898fba0d5
bc430fb73b4e31fa5b38fbe82a05f6ffa925c3170e6e8b2262a1ff8a1fa0eeb5
GET /asite/wp-content/themes/design/pics/chamber_member.gif HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:54 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:40:30 GMT
etag: "ec4-59b292cc873eb"
accept-ranges: bytes
content-length: 3780
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:54 GMT
vary: User-Agent
content-type: image/gif
www.darrenlangley.com/asite/wp-content/themes/design/pics/call.png
79.170.40.55200 OK 386 B URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/call.png
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type PNG image data, 23 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a9293518cd7c42e10efdce335707c17
fe797f107e27ffa25642385066b9f68014531575
eeb9135476f4beac01cf74edd8ed50808c2ac96fe02b28ef203541eea08b23ae
GET /asite/wp-content/themes/design/pics/call.png HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172; _ga_SPFQ4FVW01=GS1.1.1686294172.1.0.1686294172.0.0.0; _ga=GA1.1.1395076704.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:53 GMT
server: Apache
last-modified: Thu, 02 Jan 2020 14:42:22 GMT
etag: "182-59b293371daaa"
accept-ranges: bytes
content-length: 386
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:53 GMT
vary: User-Agent
content-type: image/png
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master-0ff83d941572cbe4f728.js
54.230.111.65200 OK 241 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master-0ff83d941572cbe4f728.js
IP 54.230.111.65:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
Size 241 kB (241088 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cbjs-2023.06.08-10.20/v2/master-0ff83d941572cbe4f728.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Y2nacleL8fGthBXczyayKioD_NQGxh2j
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 06:58:46 GMT
cache-control: max-age=300,public
etag: W/"646bfe73a000522c36c907d8fb5c8697"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: asGaeSEHYPfGiGiUgsqfUDRv-2vQeNZhKRn34Zphstn83F1wlNxeFg==
age: 251
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
54.230.111.65200 OK 234 B URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
IP 54.230.111.65:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4625e05e33c3459612f32250c2b7b5a7
884a1b3bee7af2db09cf1f65d842f982f1e92b82
b54bdd4ab31e4a2d0419d0bb3a56c572e4b71dbb02dc97d2a1060142086c48c3
GET /assets/cbjs-2023.06.08-10.20/v2/master.html HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 234
last-modified: Thu, 08 Jun 2023 10:56:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: uPXwO7PmhO7bi.nx7on4Itek0v0OIgb6
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Fri, 09 Jun 2023 06:58:41 GMT
cache-control: max-age=300,public
etag: "aed43e4862c364d2b2874653d45c3c9b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GS9TdBjRApbMNjsFS3Y1OHI9Wxs1nSM4mpsp5ZWRKvT3fwiM-dkxog==
age: 252
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/animation.css
54.230.111.65200 OK 758 B URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/animation.css
IP 54.230.111.65:443
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (789), with no line terminators
Hash 9b055bd3db96960e093d60ec5af0fa86
cd4194d27f8d4b3c8c3eb4afa728d1d5d68ea885
02e247ad25beb14b1dc0a2f76a4039197fb7a8451ecb3e5746854d935074ace9
GET /assets/cbjs-2023.06.08-10.20/v2/animation.css HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 758
last-modified: Thu, 08 Jun 2023 10:56:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: IHKA3weStHhhtkJGIMtToJh8VDGeZGFp
accept-ranges: bytes
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
date: Fri, 09 Jun 2023 06:58:47 GMT
cache-control: max-age=300,public
etag: "f8a79fc47c28375628855b4c78ff6f85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1fGYlzf8VoyW17sVITeDSFbMx-Dc_jzCupTk3PL-iQN7aaa5uQleUw==
age: 246
X-Firefox-Spdy: h2
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/pi-worker.js
54.230.111.65200 OK 63 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/pi-worker.js
IP 54.230.111.65:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (63157)
Hash e9dc24ef5bb5db1cc2aeb1f2c3ef0d40
c2cb23a8fb401c99e3dd3514c054ccd410ad6248
caca18b404011494035ed89d55c761a8cc0c3f921981fe628bf92bf47c4156a6
GET /assets/cbjs-2023.06.08-10.20/v2/pi-worker.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: bttXlIFfl9vBDAstii6DuP6Q2A5I8Nid
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 07:01:29 GMT
cache-control: max-age=300,public
etag: W/"e9dc24ef5bb5db1cc2aeb1f2c3ef0d40"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nwZQNJg4bu3wsk8PjcCdpxX9PClsztNQregjgnsq9oVfxCpInE-T-g==
age: 87
X-Firefox-Spdy: h2
www.darrenlangley.com/scalford-hall-hotel//wp-content/themes/twentyeleven/images/111.exe
79.170.40.55301 Moved Permanently 32 kB URL User Request GET HTTP/2 www.darrenlangley.com/scalford-hall-hotel//wp-content/themes/twentyeleven/images/111.exe
IP 79.170.40.55:443
ASN #20738 Host Europe GmbH
Certificate IssuerStarfield Technologies, Inc.
Subjectdarrenlangley.com
Fingerprint35:E2:7E:B2:26:AA:D7:A6:04:BC:89:DA:BF:09:C1:31:4D:B7:ED:41
ValidityWed, 12 Oct 2022 10:44:01 GMT - Thu, 12 Oct 2023 08:34:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scalford-hall-hotel//wp-content/themes/twentyeleven/images/111.exe HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 09 Jun 2023 07:02:47 GMT
server: Apache
x-powered-by: PHP/5.6.40
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; path=/
location: https://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
vary: User-Agent
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
www.darrenlangley.com/asite/wp-content/themes/design/pics/hp_bg2.png
79.170.40.55200 OK 4.5 kB URL GET HTTP/1.1 www.darrenlangley.com/asite/wp-content/themes/design/pics/hp_bg2.png
IP 79.170.40.55:80
ASN #20738 Host Europe GmbH
Requested by http://www.darrenlangley.com/scalford-hall-hotel/wp-content/themes/twentyeleven/images/111.exe
File type PNG image data, 2000 x 2000, 4-bit colormap, non-interlaced\012- data
Hash 87df08f9deced08f57e2e0efaeb1525d
41aefd9a0560b3e57f2d6960c5982f7852c4f568
89977e55f345a0b46cdce51271a7bb9e05cc2dd33e9db9837e89934c6b4944ba
GET /asite/wp-content/themes/design/pics/hp_bg2.png HTTP/1.1
Host: www.darrenlangley.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.darrenlangley.com/asite/wp-content/cache/autoptimize/css/autoptimize_09d9f7e2d3a8ce0809d29fa55700cf0f.css
Cookie: asp_transient_id=f13b27d38f626ced79997d52d879b254; cookielawinfo-checkbox-necessary=yes; _gcl_au=1.1.1458522764.1686294172
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Fri, 09 Jun 2023 07:02:52 GMT
server: Apache
last-modified: Wed, 24 Jun 2020 16:29:31 GMT
etag: "1172-5a8d6fb080c81"
accept-ranges: bytes
content-length: 4466
cache-control: max-age=31536000
expires: Sat, 08 Jun 2024 07:02:52 GMT
vary: User-Agent
content-type: image/png
js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/160-3e875bb3aac832dcba21.js
54.230.111.65200 OK 3.3 kB URL GET HTTP/2 js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/160-3e875bb3aac832dcba21.js
IP 54.230.111.65:443
Requested by https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html#www.darrenlangley.com
Certificate IssuerAmazon
Subjectjs.chargebee.com
FingerprintB8:5C:38:C3:FB:23:73:61:30:7B:EA:4E:1C:7D:47:C4:64:B6:1A:2E
ValidityTue, 14 Mar 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (3338), with no line terminators
Hash 2b202c5b0be089a5b821b21b89441ae9
3f0c851beb3258c94c3a39350b417205656538a1
4dadefe7823f8c14d21b78a2ceb484261a7adf21334073aad18ff165ca7fafaf
GET /assets/cbjs-2023.06.08-10.20/v2/160-3e875bb3aac832dcba21.js HTTP/1.1
Host: js.chargebee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://js.chargebee.com/assets/cbjs-2023.06.08-10.20/v2/master.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 08 Jun 2023 10:56:13 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 10jqeXPMVKFN13a1WJncTxvsvkw7jzRH
server: AmazonS3
strict-transport-security: max-age=300; includeSubdomains; preload
content-encoding: gzip
date: Fri, 09 Jun 2023 06:58:46 GMT
cache-control: max-age=300,public
etag: W/"a87c004b0e926abe5470c7e5d335d1e2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z8o3Mf_7jC9IFyx3K-txE51wf6cn_rLZuf4YK9V6IccWnaapZhpjuw==
age: 250
X-Firefox-Spdy: h2