IP 165.160.13.20:80
Size811 kB (810644 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: no7beauty.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 31 May 2025 08:59:26 GMT
Location: http://www.no7beauty.co.uk/
Content-Length: 0
|
IP 185.217.104.134:443
ASN#197651 The Hut.com Limited
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1087) Size811 kB (810644 bytes) Hash684fac5ab696bc714744422396a0e32d e3efd5b5097168100afde106e383ce1a11557493 2591ad17b04c8a7c4afee98a767751737b8f7486d12d3494db3b8b91ae81989e
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO Referrer-Policy set to unsafe-url |
GET / HTTP/1.1
Host: www.no7beauty.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID=62A08BC8FCBC32950634EFD179061BB6; Path=/; Secure; HttpOnly; SameSite=Lax
chumewe_user=8628129e-d612-4ce9-a756-f7daf356523f; Version=1; Domain=.no7beauty.co.uk; Path=/; Max-Age=157784630; Expires=Fri, 31-May-2030 14:03:16 GMT; SameSite=None; Secure
chumewe_sess=ce43f2ce-5e9c-43a3-91c5-e7a336f7e13c; Version=1; Domain=.no7beauty.co.uk; Path=/; Max-Age=14400; Expires=Sat, 31-May-2025 12:59:26 GMT; SameSite=None; Secure
locale_V6=en_GB; Version=1; Domain=.no7beauty.co.uk; Path=/; Max-Age=31556926; Expires=Sun, 31-May-2026 14:48:12 GMT; SameSite=None; Secure
csrf_token=12755435212711532902; Version=1; Path=/; SameSite=None; HttpOnly; Secure
NSC_mc_wtsw_efgbvmu_xfctsw_8010_K=4bb3a3d8ab7ccb8d7f3498818caad6a0934111308dd5de97d300dc396307364cb022f6cd;expires=Sat, 31-May-2025 12:02:09 GMT;path=/;secure;httponly
Content-Security-Policy: child-src 'self' 'self' https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://d2d7do8qaecbru.cloudfront.net https://*.ringcentral.com https://hcaptcha.com https://*.hcaptcha.com https://*.akamaihd.net https://*.translate.naver.net https://www.recaptcha.net https://www.google.com https://www.zenaps.com https://tr.snapchat.com https://www.youtube.com https://d38knilzwtuys1.cloudfront.net blob: https://gum.criteo.com https://cdn-akamai.mookie1.com/ blob: https://*.abtasty.com https://cdn.revieve.com; connect-src 'self' 'self' https://*.thcdn.com https://*.ingest.sentry.io https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://privacyportal-eu.onetrust.com https://geolocation.onetrust.com https://cdn.cookielaw.org wss://*.liveperson.net https://*.liveperson.net https://*.lpsnmedia.net https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://cognito-identity.eu-west-1.amazonaws.com https://firehose.eu-west-1.amazonaws.com https://*.ringcentral.com wss://*.ringcentral.com https://hcaptcha.com https://*.hcaptcha.com https://the.sciencebehindecommerce.com https://*.akamaihd.net https://*.googleapis.com https://*.trustpilot.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://d38knilzwtuys1.cloudfront.net https://partner-test.revieve.com https://partner.revieve.com https://plugins.makeupar.com https://plugins-media.makeupar.com https://*.parcellab.com https://*.contentsquare.net https://*.abtasty.com https://o86764.ingest.sentry.io https://sst.revieve.com https://partner.revieve.com https://partner-test.revieve.com https://cdn.revieve.com https://www.google-analytics.com https://analytics.tiktok.com; default-src https://*.lpsnmedia.net https://cdn.revieve.com; font-src 'self' data: https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io https://*.ringcentral.com https://plugins-media.makeupar.com blob: data: https://*.abtasty.com https://*.gstatic.com https://d38knilzwtuys1.cloudfront.net https://cdn.revieve.com; form-action 'self' https://www.facebook.com https://checkout.no7beauty.co.uk https://connect.facebook.net https://tr.snapchat.com; frame-ancestors 'self'; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https://*.ringcentral.com https: blob: data:; media-src 'self' https://*.thcdn.com https://*.lpsnmedia.net blob:; object-src 'self' https://*.thcdn.com https://www.youtube.com; report-uri https://csp.thehut.net/cspReport.txt; script-src 'unsafe-inline' 'self' 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.liveperson.net https://*.lpsnmedia.net https://*.doubleclick.net https://static.cdn-apple.com https://*.liveperson.com https://geolocation.onetrust.com https://cdn.cookielaw.org https://cdn.parcellab.com https://smct.co https://*.smct.co https://smct.io https://*.smct.io https://*.ringcentral.com https://hcaptcha.com https://*.hcaptcha.com https://challenges.cloudflare.com https://the.sciencebehindecommerce.com https://*.akamaihd.net https://*.microsofttranslator.com https://google.com https://*.googleapis.com https://www.recaptcha.net https://connect.facebook.net https://*.trustpilot.com https://www.googleadservices.com https://*.translate.naver.net https://*.doubleclick.net https://*.google.com https://*.google-analytics.com https://fp.zenaps.com https://www.gstatic.com https://bat.bing.com https://www.googletagmanager.com https://www.youtube.com https://s.ytimg.com https://www.dwin1.com https://sc-static.net https://geolocation.onetrust.com https://d38knilzwtuys1.cloudfront.net https://partner-test.revieve.com https://plugins-media.makeupar.com https://static.criteo.net https://*.criteo.com https://*.pinimg.com https://*.googleadservices.com https://*.pinterest.com https://*.contentsquare.net https://app.contentsquare.com blob: https://*.abtasty.com https://dev--revieve-web-plugin-4.netlify.app https://cdn.revieve.com https://analytics.tiktok.com https://*.ibytedtos.com; style-src 'self' 'unsafe-inline' https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://www.googletagmanager.com https://*.lpsnmedia.net https://*.liveperson.net https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io https://*.ringcentral.com https://hcaptcha.com https://*.hcaptcha.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://cdn.parcellab.com https://*.abtasty.com https://*.gstatic.com https://d38knilzwtuys1.cloudfront.net https://cdn.revieve.com; upgrade-insecure-requests; report-to report-endpoint
Referrer-Policy: unsafe-url
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Report-To: {"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://csp.thehut.net/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true}
vary: accept-encoding
Content-Encoding: gzip
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Sat, 31 May 2025 08:59:26 GMT
Keep-Alive: timeout=60
Connection: keep-alive
|
IP 0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: no7beauty.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|