Report - nuvenilikf.pages.dev/

Report Overview

Visited public
2025-03-26 21:10:03
Tags
Submit Tags
URL
nuvenilikf.pages.dev/
Finishing URL
nuvenilikf.pages.dev/
IP / ASN
172.66.44.89
#13335 CLOUDFLARENET
Title
David Dettmann

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
arletaasecordula.pages.dev	unknown	2020-09-02	2025-03-11	2025-03-25	5.1 kB	396 kB	188.114.96.1
nuvenilikf.pages.dev	unknown	2020-09-02	2025-03-26	2025-03-26	1.4 kB	61 kB	172.66.47.167
www.highperformanceformat.com	unknown	2024-10-15	2024-10-23	2025-03-25	465 B	582 B	192.243.61.225

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-26	medium	highperformanceformat.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	arletaasecordula.pages.dev/wp-content/plugins/wp-meta-and-date-remover/assets/js/inspector.js?ver=1.1	ScriptElement	4.3 kB	2024-07-13	2025-07-16
Pretty URL arletaasecordula.pages.dev/wp-content/plugins/wp-meta-and-date-remover/assets/js/inspector.js?ver=1.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-13 16:04 Last Seen2025-07-16 06:21 Times Seen340 Hash c39c8ea6659fbf8cdded118913e96ea3 f48f56843097b2a6efa40877954b8de444765111 cff9ed2f1fc208cdb20cc7bae599161e38c10a95ab6e6801a7047f358f03b007 Loading...

	nuvenilikf.pages.dev/	ScriptElement	203 B	2025-03-25	2025-06-03
Pretty URL nuvenilikf.pages.dev/ IP 172.66.47.167 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 02:30 Last Seen2025-06-03 00:00 Times Seen6 Hash 4560474d07c444ddda35b08c623a92f7 1992b33e23e1cb8a8fda84f7c87d9ba067e82195 d44f3b4d40505a9b961899cab1a95f92ec39e719ff398dca75a849770f2e2959 Loading...

	arletaasecordula.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-07-16
Pretty URL arletaasecordula.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-07-16 07:24 Times Seen147599 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	arletaasecordula.pages.dev/wp-content/themes/blog-up/assets/js/custom.js?ver=1.0.9	ScriptElement	5.7 kB	2024-05-18	2025-07-10
Pretty URL arletaasecordula.pages.dev/wp-content/themes/blog-up/assets/js/custom.js?ver=1.0.9 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-18 16:11 Last Seen2025-07-10 00:47 Times Seen9 Hash 8f264e906f015579bc14c85520bf8270 e0707a7e956b20d0e9b540c10be5630906bd4c10 d2d030ba5ae97d4607c8e046d78da0a781d87ddeb0f23eb8661e5e7acc7a9267 Loading...

	arletaasecordula.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-07-16
Pretty URL arletaasecordula.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-07-16 07:24 Times Seen153952 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	nuvenilikf.pages.dev/ads/floating.js	ScriptElement	1.2 kB	2025-03-25	2025-06-03
Pretty URL nuvenilikf.pages.dev/ads/floating.js IP 172.66.47.167 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 02:30 Last Seen2025-06-03 00:00 Times Seen6 Hash 8a5b60adf536442e21643e92ced85e84 0859c379ea16898f6e9293c07217fd7df10184a8 56c94d43c5cdadfa3dde501a3e2c0ee0f4b2f946bb1cb2a38fa7c96a1c838882 Loading...

	nuvenilikf.pages.dev/	ScriptElement	45 B	2024-03-30	2025-07-14
Pretty URL nuvenilikf.pages.dev/ IP 172.66.47.167 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-30 20:24 Last Seen2025-07-14 09:55 Times Seen39 Hash f90365891fccaba46a7c0ba335e23aa8 cad9915745fbbd40c215e44bf9088abedd095d2f b35919855c8cccf0003b17e689dccf15b56ccc0ff297b53fcda8c653776a0df1 Loading...

HTTP Transactions (14)

URL IP Response Size

GET arletaasecordula.pages.dev/wp-content/plugins/advanced-random-posts-widget/assets/css/arpw-frontend.css?ver=6.7.1

188.114.96.1

200 OK

275 B

URL GET
arletaasecordula.pages.dev/wp-content/plugins/advanced-random-posts-widget/assets/css/arpw-frontend.css?ver=6.7.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
ASCII text, with very long lines (312), with no line terminators
Size
275 B (275 bytes)
Hash
58e671c19d0c80d4cd0dfc871532c81d
1236a814bc62bb0f3eaa97ff3b3464969211d835
6ee0f5e3cc7aff02c7f1ff31581494303213619f7f31004c7c2a748891592301

HTTP Headers

GET /wp-content/plugins/advanced-random-posts-widget/assets/css/arpw-frontend.css?ver=6.7.1 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: text/css; charset=utf-8
content-encoding: br
cf-ray: 9269a16add4456ba-OSL
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"89495a62273346014c21c363f32c166b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zSf3hMk0emzcdOuOjme6AzewRs0xwJpPVV3TaonrvtBj5o2tPQfuR1aGV4UE86t5s1SYGcxa%2BqCeuU56eJsANYtIOevC9oxxznEyGpdwwfoUJeVGft%2F2rM2P1GByIox3ovJpGKH0195rMlTC1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=884&min_rtt=401&rtt_var=612&sent=40&recv=28&lost=0&retrans=0&sent_bytes=31202&recv_bytes=1906&delivery_rate=19885143&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=129&x=0"
X-Firefox-Spdy: h2

GET nuvenilikf.pages.dev/ads/floating.js

172.66.47.167

200 OK

1.2 kB

URL GET
nuvenilikf.pages.dev/ads/floating.js
IP
172.66.47.167:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectnuvenilikf.pages.dev
Fingerprint66:99:1E:DB:44:33:71:ED:C0:A4:DF:2E:25:86:BB:C9:95:47:0E:D1
ValidityFri, 21 Mar 2025 14:00:57 GMT - Thu, 19 Jun 2025 14:54:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (1231), with no line terminators
Size
1.2 kB (1180 bytes)
Hash
33df9d1eae1618b5063cc46d6b0fe313
b8ecee52a9b92bf0cf1bfc67b6753a55c5294da6
d7dfb186e8e300d3707b488e530e77dcdae26c180f23936a0300900d4a6158ce

HTTP Headers

GET /ads/floating.js HTTP/1.1
Host: nuvenilikf.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: application/javascript
content-encoding: br
cf-ray: 9269a16a2a17712b-OSL
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9183879e2f37d3e65cce6a6418b7cf4e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UCLYExoNUlJiLWDM6TXA7cUPIP%2FBNHI6kurw%2F25mkNrJTvUw%2FN2fJQ1KUbMPPtgOnSDseCl%2Fm2ZZGn2cbcQGa%2FWLtvRx2%2FH6JmVvhN0AkLlL8oBh54JSTQElVcRIOvqh09Jy2a8QVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4015&min_rtt=1476&rtt_var=2367&sent=12&recv=6&lost=0&retrans=0&sent_bytes=4087&recv_bytes=1078&delivery_rate=398987&cwnd=12000&unsent_bytes=0&cid=22140db8135b74bf&ts=549&x=1", cfExtPri, cfHdrFlush;dur=0

GET arletaasecordula.pages.dev/wp-content/plugins/wp-meta-and-date-remover/assets/js/inspector.js?ver=1.1

188.114.96.1

200 OK

4.3 kB

URL GET
arletaasecordula.pages.dev/wp-content/plugins/wp-meta-and-date-remover/assets/js/inspector.js?ver=1.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
JavaScript source, ASCII text, with very long lines (4493), with no line terminators
Size
4.3 kB (4316 bytes)
Hash
55c55e07fd12cd92f56e90dfeb1e4c49
244da4b9989b14f2769ad143113ed4e4251ca2c9
835df47249ce9f54935ffc9f58f637e8677fa15b489049728d53803994a8a989

HTTP Headers

GET /wp-content/plugins/wp-meta-and-date-remover/assets/js/inspector.js?ver=1.1 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0cf7c94149a31844e9e0caed728f4751"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H56XcCQmXhPytGCo%2FfJ7M7LdFRXGGDkLOYqAHCkm3CD%2FzNWehP5n0eUGF6jYkouhzJEHt8V9IN%2B2CaQcj0HUUQqVskqmObydyhBJUapq%2BqwQWs8jsZ8VSenEZCklotmW1eTXQUSfurG%2FkQMuyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16abd1356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1339&min_rtt=444&rtt_var=1782&sent=11&recv=18&lost=0&retrans=0&sent_bytes=3246&recv_bytes=1906&delivery_rate=7554782&cwnd=254&unsent_bytes=0&cid=0fccf8c42c494c76&ts=120&x=0"
X-Firefox-Spdy: h2

GET arletaasecordula.pages.dev/wp-content/themes/blog-up/assets/js/custom.js?ver=1.0.9

188.114.96.1

200 OK

5.7 kB

URL GET
arletaasecordula.pages.dev/wp-content/themes/blog-up/assets/js/custom.js?ver=1.0.9
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
JavaScript source, ASCII text, with very long lines (6477), with no line terminators
Size
5.7 kB (5749 bytes)
Hash
98d7d9e23aa56cb7e82ab4d250f304bd
813ea48e1f46b4d5cf3dfc871444f6a4a86f9234
8f9fa6cca2a001ca920ca52d866961600d3f83d81c13a62169bfb19c772fb734

HTTP Headers

GET /wp-content/themes/blog-up/assets/js/custom.js?ver=1.0.9 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3566ae7ee46e57ae9484b87a0f9c0430"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4mkhllH88443%2F7tCGbDf%2Fc%2BY6VSzdVD6MqbLqpu3QKcGgd4M9YXLVPUSAp7uDScYFNQZ1hm0Oc0i%2FqUnuWW9Zo7G%2BqfBIujSF4manqaE0P6gDiePzQ1CGwLS0OXscsE5T5DoUCUQmj13F7dkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16acd2156ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=949&min_rtt=418&rtt_var=645&sent=37&recv=27&lost=0&retrans=0&sent_bytes=28688&recv_bytes=1906&delivery_rate=19885143&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=128&x=0"
X-Firefox-Spdy: h2

GET www.highperformanceformat.com/887d1ebe7501f6544975e832f7527848/invoke.js

192.243.61.225

403 Forbidden

0 B

URL GET
www.highperformanceformat.com/887d1ebe7501f6544975e832f7527848/invoke.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerLet's Encrypt
Subjecthighperformanceformat.com
FingerprintAE:84:87:7B:64:74:9B:4C:27:17:49:12:9F:95:EA:7E:5E:17:CA:EA
ValidityWed, 12 Feb 2025 21:45:51 GMT - Tue, 13 May 2025 21:45:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /887d1ebe7501f6544975e832f7527848/invoke.js HTTP/1.1
Host: www.highperformanceformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Wed, 26 Mar 2025 21:09:43 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: www.highperformanceformat.com

GET arletaasecordula.pages.dev/wp-content/fonts/fafd985707d45ec356cc1d01b20ffee0.css?ver=1.0.9

188.114.96.1

200 OK

4.7 kB

URL GET
arletaasecordula.pages.dev/wp-content/fonts/fafd985707d45ec356cc1d01b20ffee0.css?ver=1.0.9
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
ASCII text, with very long lines (4872), with no line terminators
Size
4.7 kB (4746 bytes)
Hash
2c0598f1241097a1f63f40336ed224c5
267b11e7a8f52050517c8debf002c10e0e2d08e6
2df33f2dc9dd47f6c861255ee65618059b34ed7424edbc6258b8559a11ee8483

HTTP Headers

GET /wp-content/fonts/fafd985707d45ec356cc1d01b20ffee0.css?ver=1.0.9 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cb7ca4f460940af80e7b7f9020e3e380"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9%2B%2BurNOZLKjBAuOZlBAuE4A9jadQYUaKmmDBanYKauRiGoSOcm46QjnhwmZv2apc8e%2F7Qs4LK%2FAoyp8uIwSqRddt1pC%2BtRh9g2QSPPWnYxMTEqPkpyI3ArJK0N5O7hM5%2FudkYXnYBpGgwwQtDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16acd2356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1239&min_rtt=444&rtt_var=1535&sent=18&recv=19&lost=0&retrans=0&sent_bytes=10084&recv_bytes=1906&delivery_rate=7554782&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=123&x=0"
X-Firefox-Spdy: h2

GET arletaasecordula.pages.dev/wp-content/themes/blog-up/style.css?ver=1.0.9

188.114.96.1

200 OK

58 kB

URL GET
arletaasecordula.pages.dev/wp-content/themes/blog-up/style.css?ver=1.0.9
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
ASCII text, with very long lines (451)
Size
58 kB (57725 bytes)
Hash
0a19232434bac9515ebf07658f3329af
ceafabc7da64e34a31793309d30a27deed0d4ddb
b6f28d8783708c1ff2adfd90e03410987b3b28f97e173d233fcfc092606c02b1

HTTP Headers

GET /wp-content/themes/blog-up/style.css?ver=1.0.9 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"97f4277071105b18dc1f8679d18a4124"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7KDD07wdPy%2BWwM6Vqlu6d4fhAbPmYmWzWnN5GsUmdghr4F05qElUb1G94IzvZImwKddohjZQBTgq2jpJB3ASD0QSACpttjTiV3C75u45CRqQi2aUtR6%2FA0PkOEkBB%2F55ZK%2B6iutp0sspUHMPhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16add4056ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1005&min_rtt=364&rtt_var=847&sent=67&recv=36&lost=0&retrans=0&sent_bytes=64393&recv_bytes=1906&delivery_rate=19885143&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=138&x=0"
X-Firefox-Spdy: h2

GET arletaasecordula.pages.dev/wp-includes/css/dist/block-library/style.min.css?ver=6.7.1

188.114.96.1

200 OK

115 kB

URL GET
arletaasecordula.pages.dev/wp-includes/css/dist/block-library/style.min.css?ver=6.7.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type

Size
115 kB (114706 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.7.1 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6ed691929b7a2d5e6665dabf6b647f6d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZmvMATPs6rQbDcsCZwPDtRBAQvDgeL%2FcQF8fbGJM1MgMNg5ypdQ%2FvnrbcIfvfVy119qA5awQ26fK6C0lcRzezX7GFqWCtRuc4ypQE6osRXM1DeDMJQlcmpPQzmFCHIsTcvEZ9WigmXLxqnYcaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16aad0256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1239&min_rtt=444&rtt_var=1535&sent=14&recv=19&lost=0&retrans=0&sent_bytes=5478&recv_bytes=1906&delivery_rate=7554782&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=123&x=0"
X-Firefox-Spdy: h2

GET arletaasecordula.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

188.114.96.1

200 OK

14 kB

URL GET
arletaasecordula.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"ff416357a541c2641e2808b797569af3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fK7v4%2BWWKS1onvyDkPVpmhZjEMLlZHpPN%2B7IoYlxPkcVF5GgDNsaYuraxuRpdy8nDcNVPHQxTg5P4RnXCDEaMrcmyLOvOTQ8KeVO3kZziPa758COlylHvrypV1B7CI6o4k9r%2FRX2nV%2Btu0PhEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16aed5e56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1040&min_rtt=439&rtt_var=884&sent=31&recv=25&lost=0&retrans=0&sent_bytes=23083&recv_bytes=1906&delivery_rate=19885143&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=127&x=0"
X-Firefox-Spdy: h2

GET arletaasecordula.pages.dev/wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2

188.114.96.1

200 OK

48 kB

URL GET
arletaasecordula.pages.dev/wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Size
48 kB (48444 bytes)
Hash
8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af

HTTP Headers

GET /wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://arletaasecordula.pages.dev/
Origin: https://nuvenilikf.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: font/woff2
content-length: 48444
cf-ray: 9269a16d2851b518-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9726af3504df0c97cacc4df72fc7eb77"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gCEax6mz4j2ZHIg%2BZHDet8GGQ5SeZ3h8ke%2FPpdX86RX1d9w%2FsArIjonKMYmDspixBNgpBFlzUaM3Rk88%2FM5T46heoMdCqyxLWv4d9r%2FEeyb3J%2FNMuMBCtJp8HzE%2FBgzfWibSbMxXkGdGK7sjhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4574&min_rtt=2718&rtt_var=2344&sent=11&recv=8&lost=0&retrans=0&sent_bytes=4118&recv_bytes=1674&delivery_rate=218501&cwnd=12000&unsent_bytes=0&cid=d6f09d22a44b8c08&ts=75&x=1", cfExtPri, cfHdrFlush;dur=0

GET arletaasecordula.pages.dev/wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2

188.114.96.1

200 OK

48 kB

URL GET
arletaasecordula.pages.dev/wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Size
48 kB (48444 bytes)
Hash
8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af

HTTP Headers

GET /wp-content/fonts/inter/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://arletaasecordula.pages.dev/
Origin: https://nuvenilikf.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: font/woff2
content-length: 48444
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9726af3504df0c97cacc4df72fc7eb77"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wCMd6Cpwdvww6A2EImwnXp3rOdfY7mzj3xnwvj3jcim%2BDHsEXx91LEc5ECoMynCsYi4I3vELLsLwoVnhPUtwctI%2FyXwfyRq2Sw1b0uMAv79oimhNBJvucxeD6%2F6Pyt2XOitkdRq5MY%2BiLLPQ1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16d2855b518-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4367&min_rtt=2718&rtt_var=2172&sent=41&recv=9&lost=0&retrans=0&sent_bytes=40118&recv_bytes=1717&delivery_rate=233787&cwnd=24000&unsent_bytes=0&cid=d6f09d22a44b8c08&ts=81&x=1", cfExtPri, cfHdrFlush;dur=1

GET nuvenilikf.pages.dev/

172.66.47.167

200 OK

29 kB

URL User Request GET
nuvenilikf.pages.dev/
IP
172.66.47.167:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectnuvenilikf.pages.dev
Fingerprint66:99:1E:DB:44:33:71:ED:C0:A4:DF:2E:25:86:BB:C9:95:47:0E:D1
ValidityFri, 21 Mar 2025 14:00:57 GMT - Thu, 19 Jun 2025 14:54:08 GMT

File type

Size
29 kB (28637 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: nuvenilikf.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:41 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kNhFpXvt7HRBgp9esdlcGpXOQeCjBGtNLuEU0kYOdtybFAbgNBEULYinpvaKC7Hjz%2FHlTlMZTK0R2uV5VWqWyBWL6K3e54rsEmhrhGc8mw4Uan%2FrYIjR6EMymQXUzRrsaQzRnikjEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16719c1568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5777&min_rtt=499&rtt_var=10588&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3301&recv_bytes=1262&delivery_rate=7688495&cwnd=254&unsent_bytes=0&cid=3fab7b1cd8a94a3d&ts=250&x=0"
X-Firefox-Spdy: h2

GET nuvenilikf.pages.dev/favicon.ico

172.66.47.167

200 OK

29 kB

URL GET
nuvenilikf.pages.dev/favicon.ico
IP
172.66.47.167:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectnuvenilikf.pages.dev
Fingerprint66:99:1E:DB:44:33:71:ED:C0:A4:DF:2E:25:86:BB:C9:95:47:0E:D1
ValidityFri, 21 Mar 2025 14:00:57 GMT - Thu, 19 Jun 2025 14:54:08 GMT

File type

Size
29 kB (28637 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: nuvenilikf.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jzNpZAhVU4%2FtKjyp9ZbW08FlYrdPavB1TG%2BnhdiXAP%2F13TOFHv7whw5pG6ZKO6np%2B4cBQkd3osyFcfwNrHZZfvFbiITVtkqkg6osDzktdAzbSua%2BdGW7y5Cu7nLfUyfTMzH4fuwmcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16e8a1e712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3863&min_rtt=1476&rtt_var=2078&sent=16&recv=8&lost=0&retrans=0&sent_bytes=5402&recv_bytes=1408&delivery_rate=2421&cwnd=12000&unsent_bytes=0&cid=22140db8135b74bf&ts=1016&x=1", cfExtPri, cfHdrFlush;dur=0

GET arletaasecordula.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

188.114.96.1

200 OK

88 kB

URL GET
arletaasecordula.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nuvenilikf.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectarletaasecordula.pages.dev
FingerprintBA:3E:13:1C:19:14:9E:23:5A:16:0A:54:DC:47:0F:C5:D0:06:B4:23
ValidityThu, 06 Mar 2025 18:07:08 GMT - Wed, 04 Jun 2025 19:05:19 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: arletaasecordula.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nuvenilikf.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 26 Mar 2025 21:09:42 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4faaa9d1e8ac6b951abd4ab674ea9ec1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PdQCBzRFi5tbgrwE4nylMxJZEQhP%2BsmXDDw0dEsnWrsvK4g5UIVHNEAIZuno2lhVdAAyl7oe0MWF6oDeKhGsvyehYbZZ3%2BYaG1E4w3k8V6ebfJpwlx%2Fq0pYrJwPyjb96ZnKdjuKpc9SfkmKICg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9269a16aed5b56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=892&min_rtt=364&rtt_var=473&sent=43&recv=29&lost=0&retrans=0&sent_bytes=32059&recv_bytes=1906&delivery_rate=19885143&cwnd=256&unsent_bytes=0&cid=0fccf8c42c494c76&ts=135&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers