Report - Nippybox.com/s/--

Report Overview

Visited public
2024-10-20 03:50:46
Tags
URL
Nippybox.com/s/--
Finishing URL
nippybox.com/s/--
IP / ASN
172.67.138.53
#13335 CLOUDFLARENET
Title
Search

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
rawcdn.githack.com	72170	2013-10-12	2016-07-04	2024-10-13	483 B	3.4 kB	104.21.234.231
malsup.github.io	46665	2013-03-08	2013-04-11	2024-10-16	402 B	13 kB	185.199.111.153
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-10-16	880 B	143 kB	104.18.11.207
undefined	142677	unknown	2020-01-28	2024-10-16	927 B	0 B	0.0.0.0
nippybox.com	unknown	2016-11-19	2017-08-04	2024-04-15	2.2 kB	13 kB	188.114.96.1
ukankingwithea.com	unknown	2024-01-01	2024-10-13	2024-10-16	846 B	104 kB	172.67.192.190
www.hcaptcha.com	91052	2018-01-12	2019-09-05	2024-10-13	398 B	151 kB	104.19.230.21
orhavingartisticta.com	unknown	2024-07-08	2024-10-19	2024-10-19	978 B	1.8 kB	54.240.174.82
accounts.google.com	81	1997-09-15	2016-03-20	2024-10-16	3.7 kB	14 kB	64.233.164.84
static.addtoany.com	4091	2006-03-10	2012-05-21	2024-10-16	1.4 kB	78 kB	104.22.70.197
ssl.p.jwpcdn.com	2512	2012-08-07	2017-01-30	2024-10-13	404 B	25 kB	151.101.66.114
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-10-16	428 B	34 kB	142.250.74.42
d1u5ibtsigyagv.cloudfront.net	unknown	2008-04-25	2024-03-09	2024-05-31	1.1 kB	71 kB	108.157.232.187
ervantasrelaterc.com	unknown	2024-07-08	2024-10-19	2024-10-19	1.6 kB	2.5 kB	172.67.132.190

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-19	medium	undefined	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	malsup.github.io/jquery.form.js	ScriptElement	44 kB	2023-03-07	2025-04-25
Pretty URL malsup.github.io/jquery.form.js IP 185.199.111.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26 Last Seen2025-04-25 14:47 Times Seen368 Hash 08a24670beb2eae7ef79a6d5ac23874b eca8a1978457941622833130e92b9b274e2b3a36 3a16fd80d67008f1c947cf93ebb20e2af2ed1a6317e194d35ed15046076c4211 Loading...

	d1u5ibtsigyagv.cloudfront.net/?tbiud=958758	ScriptElement	210 kB	2024-10-20	2024-10-20
Pretty URL d1u5ibtsigyagv.cloudfront.net/?tbiud=958758 IP 108.157.232.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-20 03:50 Last Seen2024-10-20 03:50 Times Seen1 Hash 323042664767dee1ebae4d87d365835c fe1a1b0d02ef09265a453c1456fddc80b8307557 cf82f9399ec9e5a42f08808334c8abe25a550a2fbf8a99340228174ba3dfd490 Loading...

	ssl.p.jwpcdn.com/6/11/jwplayer.js	ScriptElement	72 kB	2023-03-07	2025-04-21
Pretty URL ssl.p.jwpcdn.com/6/11/jwplayer.js IP 151.101.66.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-04-21 17:30 Times Seen120 Hash 0529b2abc1e42b6739b9daa410de76eb 6c1e77f43caf36281ca02c2ae07fdbbbf277a627 c1170b83dab1a0d7b672925cc3883b8ab6560240ac09a605860f060b61aa022e Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js	ScriptElement	32 kB	2023-03-07	2025-04-26
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-26 14:41 Times Seen2913 Hash abda843684d022f3bc22bc83927fe05f 26908395e7a9a4eab607d80aa50a81d65f3017cb 24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f Loading...

	nippybox.com/libs/ie10-viewport-bug-workaround.js	ScriptElement	714 B	2023-03-07	2025-04-21
Pretty URL nippybox.com/libs/ie10-viewport-bug-workaround.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-04-21 17:30 Times Seen93 Hash 7429e42055fe436071400eb6d8728fae a94e49895e6504b0e1659b0efd67b28bf4591bab a40593274512c4e808dd81c2b60fb0f2af2fcfbe15ea3c26703735e5f3857354 Loading...

	nippybox.com/libs/custom.js	ScriptElement	1.4 kB	2023-03-07	2025-04-21
Pretty URL nippybox.com/libs/custom.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:39 Last Seen2025-04-21 01:14 Times Seen25 Hash d4fe34eca57106b348decca3dc65f322 8f90609e9465471738be0733cc873b8652ea3516 5740970419a5e5c2d0ca52925ad7b162a7658e432b642fb0ec13b812b85012dc Loading...

	rawcdn.githack.com/grevory/bootstrap-file-input/2b38ec89c615045f6df6f98732fc189f310e394b/bootstrap.file-input.js	ScriptElement	5.2 kB	2023-03-07	2025-04-21
Pretty URL rawcdn.githack.com/grevory/bootstrap-file-input/2b38ec89c615045f6df6f98732fc189f310e394b/bootstrap.file-input.js IP 104.21.234.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42 Last Seen2025-04-21 17:30 Times Seen108 Hash ff43197a8b7f0aee9eadaa54b7084e04 3ddf3a440456fb7f9dfdd0f29d75b1d8c3bbf28a 8aca2158ffba4d335017abc99fa87b343dd130da12869ffa9a4d180f0366a016 Loading...

	static.addtoany.com/menu/page.js	ScriptElement	3.2 kB	2024-08-21	2025-04-11
Pretty URL static.addtoany.com/menu/page.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:11 Last Seen2025-04-11 12:35 Times Seen995 Hash 772611c06444a4ea58e375bdc98b3661 6f83ff26705d1b13fd2041198dd454c213cef4f3 0ebe2359f7106a99a4d5f17f482ca7efe495dcc7090fb121f56f8cf0055d562e Loading...

	static.addtoany.com/menu/sm.25.html#type=core&event=load	ScriptElement	0 B	0001-01-01	2025-04-27
Pretty URL static.addtoany.com/menu/sm.25.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-04-27 05:53 Times Seen4548925 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-04-27
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-27 05:40 Times Seen24876 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	static.addtoany.com/menu/modules/core.D0Uc7kY6.js	ScriptElement	71 kB	2024-07-24	2025-04-11
Pretty URL static.addtoany.com/menu/modules/core.D0Uc7kY6.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-24 09:41 Last Seen2025-04-11 12:35 Times Seen1789 Hash 4c62aecc026617eea577f89b2340ce8c cbfd9cf6455f136a142ced83c59559cb63b8dc8c d07ac60d7d494f8688e4844d51b988f6a2f95b5e9435880e628eb8966e091382 Loading...

	www.hcaptcha.com/1/api.js	ScriptElement	151 kB	2024-10-17	2024-10-28
Pretty URL www.hcaptcha.com/1/api.js IP 104.19.230.21 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-17 17:29 Last Seen2024-10-28 13:36 Times Seen82 Hash 707d2441020d21c1a4992e879c8be91f ebe5d7846e6125baaec14d36e0aa553ed8a82e82 7263c4508d7b37b27c45c5b54f4839ce8574ae63032d7ace5e15412859e6b9fc Loading...

HTTP Transactions (30)

URL IP Response Size

ssl.p.jwpcdn.com/6/11/jwplayer.js

151.101.66.114

200 OK

25 kB

URL GET
ssl.p.jwpcdn.com/6/11/jwplayer.js
IP
151.101.66.114:0
ASN
#54113 FASTLY

Requested by
https://nippybox.com/s/--
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, ASCII text, with very long lines (1160)
Size
25 kB (24829 bytes)
Hash
0529b2abc1e42b6739b9daa410de76eb
6c1e77f43caf36281ca02c2ae07fdbbbf277a627
c1170b83dab1a0d7b672925cc3883b8ab6560240ac09a605860f060b61aa022e

HTTP Headers

GET /6/11/jwplayer.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 22 Jun 2015 14:09:42 GMT
etag: "0529b2abc1e42b6739b9daa410de76eb"
content-type: text/plain
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Oct 2024 03:50:21 GMT
via: 1.1 varnish
age: 1371
x-served-by: cache-hel1410020-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1729396222.585815,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 24829
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js

142.250.74.42

200 OK

33 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint04:E9:E7:03:97:99:66:D7:5B:E7:AE:2C:40:95:6F:E2:07:A3:7D:6C
ValidityMon, 30 Sep 2024 15:09:59 GMT - Mon, 23 Dec 2024 15:09:58 GMT

File type
JavaScript source, ASCII text, with very long lines (32086)
Size
33 kB (33434 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

HTTP Headers

GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Oct 2024 23:45:22 GMT
expires: Sat, 18 Oct 2025 23:45:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 101099
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rawcdn.githack.com/grevory/bootstrap-file-input/2b38ec89c615045f6df6f98732fc189f310e394b/bootstrap.file-input.js

104.21.234.231

200 OK

2.0 kB

URL GET HTTP/2
rawcdn.githack.com/grevory/bootstrap-file-input/2b38ec89c615045f6df6f98732fc189f310e394b/bootstrap.file-input.js
IP
104.21.234.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectgithack.com
FingerprintCE:A7:45:B7:CB:B6:23:DB:DF:DE:40:67:7D:79:3C:57:D5:83:27:5F
ValiditySun, 25 Aug 2024 11:18:01 GMT - Sat, 23 Nov 2024 11:18:00 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (1956 bytes)
Hash
ff43197a8b7f0aee9eadaa54b7084e04
3ddf3a440456fb7f9dfdd0f29d75b1d8c3bbf28a
8aca2158ffba4d335017abc99fa87b343dd130da12869ffa9a4d180f0366a016

HTTP Headers

GET /grevory/bootstrap-file-input/2b38ec89c615045f6df6f98732fc189f310e394b/bootstrap.file-input.js HTTP/1.1
Host: rawcdn.githack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 1956
etag: W/"f03b0647e61d80b13ea762c046dab403f07e9da731fefd014862e7f87fab7802"
x-content-type-options: nosniff
x-github-request-id: 1282:0E60:4B7481:5044CC:65DB07A0
content-encoding: gzip
via: 1.1 varnish
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1708853153.983835,VS0,VE212
vary: Authorization,Accept-Encoding,Origin
cross-origin-resource-policy: cross-origin
x-fastly-request-id: dc6625838b775c5de4bf14c4b082321951b82a01
source-age: 0
expires: Mon, 24 Feb 2025 14:52:08 GMT
cache-control: max-age=31536000, public, immutable
x-robots-tag: none
access-control-allow-origin: *
x-githack-cache-status: STALE
cf-cache-status: HIT
age: 5048905
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SLyzpA8seLt5TJh9yh%2FfpXJtS4MfjRyQIeaFwjObWPmRjIWfy1XY%2FAW2VRopiGOmtXbuh7K4oy0xB1QPp3qXMV48DygT43BTBE6i6LJIvay%2Br9iXR%2Bm%2BxpDKrUiqOSbwextTuEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b114f3c76f0-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=18297&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3199&recv_bytes=1117&delivery_rate=236408&cwnd=75&unsent_bytes=0&cid=66ac6f39e7177c86&ts=87&x=0"
X-Firefox-Spdy: h2

malsup.github.io/jquery.form.js

185.199.111.153

200 OK

12 kB

URL GET HTTP/2
malsup.github.io/jquery.form.js
IP
185.199.111.153:443
ASN
#54113 FASTLY

Requested by
https://nippybox.com/s/--
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
12 kB (12365 bytes)
Hash
08a24670beb2eae7ef79a6d5ac23874b
eca8a1978457941622833130e92b9b274e2b3a36
3a16fd80d67008f1c947cf93ebb20e2af2ed1a6317e194d35ed15046076c4211

HTTP Headers

GET /jquery.form.js HTTP/1.1
Host: malsup.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Tue, 17 Oct 2023 01:04:50 GMT
access-control-allow-origin: *
etag: W/"652dddb2-ab74"
expires: Tue, 01 Oct 2024 02:30:42 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 5B56:3E9962:5ED045:616E65:66FB5DBA
accept-ranges: bytes
date: Sun, 20 Oct 2024 03:50:21 GMT
via: 1.1 varnish
age: 44
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 4
x-timer: S1729396222.661659,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 0aa4d88e10ec3c367d26e1bfbd5f6b4ffb626257
content-length: 12365
X-Firefox-Spdy: h2

d1u5ibtsigyagv.cloudfront.net/?tbiud=958758

108.157.232.187

200 OK

69 kB

URL GET HTTP/2
d1u5ibtsigyagv.cloudfront.net/?tbiud=958758
IP
108.157.232.187:443
ASN
#16509 AMAZON-02

Requested by
https://nippybox.com/s/--
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15945)
Size
69 kB (69358 bytes)
Hash
323042664767dee1ebae4d87d365835c
fe1a1b0d02ef09265a453c1456fddc80b8307557
cf82f9399ec9e5a42f08808334c8abe25a550a2fbf8a99340228174ba3dfd490

HTTP Headers

GET /?tbiud=958758 HTTP/1.1
Host: d1u5ibtsigyagv.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 69358
date: Sun, 20 Oct 2024 03:50:21 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 917c6054ae6e10a98fc566c655129e8a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: EF93QoW4E_OxNddtDJvn23NRedYJv02liJatEwMtKruWKX6s3h04xQ==
X-Firefox-Spdy: h2

orhavingartisticta.com/aUFuMzQIIw1eCwh8DBVBGy1TFgYvZFx1UFg0W1pWHTIHVE0IJhgdVwUuG1dSGy4ARxoHJBoWBi8mD2QNOiA7C38oBRljVytxKX1YO3M2dVAFGSZXZCE4L35/PxAsfEwCZFx1cShxV3ZjLAovdw05CzxcdTkDAkpkEXVYeHURJSBafg8CAnJcKjlaCmwsKgN2TR0UNgBlLw0JUH0LcVZCdh45GGRzAggtSXY8JF4LViAmN1hiKAQCcnAeFS9ZQw8NCQZ+IzYGSnYoAAFydyQHKl1QCwI4S3YwKhYKYzwiH2R8XAw2cXYkJzhYcCY2DQVxPDEJZGANEzliGVgnCwNMCgQrSw0+E15YYCE2AWVZOwkIA3YiGChYWy0AGQZ2BDEMeGMrGwhfWA8YX18RWwM6dQUABRdqViorP3R6WTkKdXIrdDwCDVkJJnltTysdXFoZfDhCXCgCWmpEXwRXfW0eM1s

54.240.174.82

200 OK

1.2 kB

URL GET HTTP/2
orhavingartisticta.com/aUFuMzQIIw1eCwh8DBVBGy1TFgYvZFx1UFg0W1pWHTIHVE0IJhgdVwUuG1dSGy4ARxoHJBoWBi8mD2QNOiA7C38oBRljVytxKX1YO3M2dVAFGSZXZCE4L35/PxAsfEwCZFx1cShxV3ZjLAovdw05CzxcdTkDAkpkEXVYeHURJSBafg8CAnJcKjlaCmwsKgN2TR0UNgBlLw0JUH0LcVZCdh45GGRzAggtSXY8JF4LViAmN1hiKAQCcnAeFS9ZQw8NCQZ+IzYGSnYoAAFydyQHKl1QCwI4S3YwKhYKYzwiH2R8XAw2cXYkJzhYcCY2DQVxPDEJZGANEzliGVgnCwNMCgQrSw0+E15YYCE2AWVZOwkIA3YiGChYWy0AGQZ2BDEMeGMrGwhfWA8YX18RWwM6dQUABRdqViorP3R6WTkKdXIrdDwCDVkJJnltTysdXFoZfDhCXCgCWmpEXwRXfW0eM1s
IP
54.240.174.82:443
ASN
#16509 AMAZON-02

Requested by
https://nippybox.com/s/--
Certificate
IssuerAmazon
Subjectorhavingartisticta.com
FingerprintC9:69:B6:3C:3A:F8:7B:A9:5D:41:27:08:E5:F5:5B:5B:AB:AC:3A:FA
ValidityTue, 08 Oct 2024 00:00:00 GMT - Thu, 06 Nov 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3051), with no line terminators
Size
1.2 kB (1200 bytes)
Hash
25d15331b41480d0a3971d3c6706c8e9
23f288e23360f343ab0ccbb9c320e5922a6c98e2
ffb0e5cbc6b7fa30afaf5095b08c2c0cbce484397796ae892c6d2405917dcef2

HTTP Headers

GET /aUFuMzQIIw1eCwh8DBVBGy1TFgYvZFx1UFg0W1pWHTIHVE0IJhgdVwUuG1dSGy4ARxoHJBoWBi8mD2QNOiA7C38oBRljVytxKX1YO3M2dVAFGSZXZCE4L35/PxAsfEwCZFx1cShxV3ZjLAovdw05CzxcdTkDAkpkEXVYeHURJSBafg8CAnJcKjlaCmwsKgN2TR0UNgBlLw0JUH0LcVZCdh45GGRzAggtSXY8JF4LViAmN1hiKAQCcnAeFS9ZQw8NCQZ+IzYGSnYoAAFydyQHKl1QCwI4S3YwKhYKYzwiH2R8XAw2cXYkJzhYcCY2DQVxPDEJZGANEzliGVgnCwNMCgQrSw0+E15YYCE2AWVZOwkIA3YiGChYWy0AGQZ2BDEMeGMrGwhfWA8YX18RWwM6dQUABRdqViorP3R6WTkKdXIrdDwCDVkJJnltTysdXFoZfDhCXCgCWmpEXwRXfW0eM1s HTTP/1.1
Host: orhavingartisticta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1200
date: Sun, 20 Oct 2024 03:50:22 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K0N54JE0k7IjUpSwlevxeKsU-OoSf1-Qi2GppUb-wY7ZdQ6pDqLrPA==
X-Firefox-Spdy: h2

ervantasrelaterc.com/TmI5bVdhXVoeai0PbFwDFg5yOCAcRwsrA340aixkHClqAR4IBHwKcToLXVBue1oOWG5oElAJan9aHx4jLxZMHmp/RFADMSFfHxtqf0wJQ2VgVx8Yan9ETR02KV8ISyc6FlVQZnlQAF5ueFALX2Z/Wg

172.67.132.190

204 No Content

0 B

URL GET HTTP/2
ervantasrelaterc.com/TmI5bVdhXVoeai0PbFwDFg5yOCAcRwsrA340aixkHClqAR4IBHwKcToLXVBue1oOWG5oElAJan9aHx4jLxZMHmp/RFADMSFfHxtqf0wJQ2VgVx8Yan9ETR02KV8ISyc6FlVQZnlQAF5ueFALX2Z/Wg
IP
172.67.132.190:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectervantasrelaterc.com
Fingerprint82:78:80:21:BA:53:7C:B6:FD:87:C1:6E:BA:24:A8:57:55:82:06:1C
ValidityFri, 06 Sep 2024 06:55:23 GMT - Thu, 05 Dec 2024 06:55:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /TmI5bVdhXVoeai0PbFwDFg5yOCAcRwsrA340aixkHClqAR4IBHwKcToLXVBue1oOWG5oElAJan9aHx4jLxZMHmp/RFADMSFfHxtqf0wJQ2VgVx8Yan9ETR02KV8ISyc6FlVQZnlQAF5ueFALX2Z/Wg HTTP/1.1
Host: ervantasrelaterc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sun, 20 Oct 2024 03:50:22 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MmEnoxTMUrh3zbVPcfnjA86ct6NHLlz%2FqEQyiJM5OPfq9T27o9kKGJsdnkz3dPU2zn4WKr%2FzKiAF0pdfxSKD7iC6ImwUss3EjWusyWS0EPfGob6m3aMukGMmV28Odnx%2BUBFnxbKmHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b14ac0e56a5-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=21652&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3298&recv_bytes=1506&delivery_rate=263496&cwnd=254&unsent_bytes=0&cid=5e2ef3e1b9f5e32b&ts=163&x=0"
X-Firefox-Spdy: h2

ervantasrelaterc.com/WWdUSWJ2WDc6XwshJDw0aTVsKw4xADcBKCswAxsVPSAaLTgRBHI9Cz1abXxablJsbxIwA2l4RCoTNT0XKlplbws3ATt0RC9aZWdRbUlnf0xtQSF0U38TJCgFZFZyORYtC2l4VWteZ3BUa1VmeVth

172.67.132.190

204 No Content

0 B

URL GET HTTP/2
ervantasrelaterc.com/WWdUSWJ2WDc6XwshJDw0aTVsKw4xADcBKCswAxsVPSAaLTgRBHI9Cz1abXxablJsbxIwA2l4RCoTNT0XKlplbws3ATt0RC9aZWdRbUlnf0xtQSF0U38TJCgFZFZyORYtC2l4VWteZ3BUa1VmeVth
IP
172.67.132.190:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectervantasrelaterc.com
Fingerprint82:78:80:21:BA:53:7C:B6:FD:87:C1:6E:BA:24:A8:57:55:82:06:1C
ValidityFri, 06 Sep 2024 06:55:23 GMT - Thu, 05 Dec 2024 06:55:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WWdUSWJ2WDc6XwshJDw0aTVsKw4xADcBKCswAxsVPSAaLTgRBHI9Cz1abXxablJsbxIwA2l4RCoTNT0XKlplbws3ATt0RC9aZWdRbUlnf0xtQSF0U38TJCgFZFZyORYtC2l4VWteZ3BUa1VmeVth HTTP/1.1
Host: ervantasrelaterc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sun, 20 Oct 2024 03:50:22 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gbZxwpm%2BLlblb%2FRNrUxGzkmcroCtddFWaqgF%2BlZB5tkVNm85VIyJe0UJDT4%2Fer%2FlKtsPTiYn1Huw5JNwbA9r4nOS8J93FxGcR3TEiHQjPP5GrK7%2BnwIp1oUnGC60wlYgLQjqiAgIvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b14ac0956a5-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=21652&sent=9&recv=12&lost=0&retrans=0&sent_bytes=3858&recv_bytes=1506&delivery_rate=263496&cwnd=254&unsent_bytes=0&cid=5e2ef3e1b9f5e32b&ts=169&x=0"
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

64.233.164.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5E:A8:02:9D:AE:0D:62:9F:66:84:D2:BE:37:6E:89:FD:FF:7C:18:94
ValidityMon, 30 Sep 2024 15:11:51 GMT - Mon, 23 Dec 2024 15:11:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:JSpQeFe-9HXA5lVRlr0Kt6CXevVPtQ:7PBbYQAX_CxqFxYe; Expires=Tue, 20-Oct-2026 03:50:22 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARpgrqf2_B2z9eihJSKV9-fWZohRxzSd7VFny3s3V7GGq3SRVhiHC4piPuZkBvZtCvjDX7h2BZTt4w
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-koodWwHURijEk_BsOWHPag' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

64.233.164.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5E:A8:02:9D:AE:0D:62:9F:66:84:D2:BE:37:6E:89:FD:FF:7C:18:94
ValidityMon, 30 Sep 2024 15:11:51 GMT - Mon, 23 Dec 2024 15:11:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:VadEmhjujvFfeRS6PTYyv2x3Mpnq9Q:CQ4RUeFwfINUOq_U; Expires=Tue, 20-Oct-2026 03:50:22 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARpgrqfMTkcwbKToyeesdpTN8LMKLH37gH437Yut3D1-vyhFMwd_Q4J33b4Cj-Dn9d5sQESYZmCCcA
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-nffMJAV_RtI57sKMIaOqMw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARpgrqf2_B2z9eihJSKV9-fWZohRxzSd7VFny3s3V7GGq3SRVhiHC4piPuZkBvZtCvjDX7h2BZTt4w

64.233.164.84

302 Found

423 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARpgrqf2_B2z9eihJSKV9-fWZohRxzSd7VFny3s3V7GGq3SRVhiHC4piPuZkBvZtCvjDX7h2BZTt4w
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5E:A8:02:9D:AE:0D:62:9F:66:84:D2:BE:37:6E:89:FD:FF:7C:18:94
ValidityMon, 30 Sep 2024 15:11:51 GMT - Mon, 23 Dec 2024 15:11:50 GMT

File type
HTML document, ASCII text, with very long lines (395)
Size
423 B (423 bytes)
Hash
fbdf72d67eb73ba90662317ce715d5f4
b2c2ce58207eac7bad4b2c1aadc2f02fa464ac72
50d0342bd49fa10cf09b1aca9c98350741cdb72350027ccbf4aadc1f9423ca93

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=ARpgrqf2_B2z9eihJSKV9-fWZohRxzSd7VFny3s3V7GGq3SRVhiHC4piPuZkBvZtCvjDX7h2BZTt4w HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:rBtlaOrTUqtO-6tnoe2k02Thg0hVRg:Yv2F50-k4DdQxmuJ;Path=/;Expires=Tue, 20-Oct-2026 03:50:22 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqeEPc5zrzSNtiMK5Uyl6gA5mDk3hj-BYDAWbbK-Z0McQAqmDkENuHFuTPZVGc83Lld-IH_K7A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1423751561%3A1729396222555579&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-LO2KnOovBySkfQQxnKBaIg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 423
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARpgrqfMTkcwbKToyeesdpTN8LMKLH37gH437Yut3D1-vyhFMwd_Q4J33b4Cj-Dn9d5sQESYZmCCcA

64.233.164.84

302 Found

417 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARpgrqfMTkcwbKToyeesdpTN8LMKLH37gH437Yut3D1-vyhFMwd_Q4J33b4Cj-Dn9d5sQESYZmCCcA
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5E:A8:02:9D:AE:0D:62:9F:66:84:D2:BE:37:6E:89:FD:FF:7C:18:94
ValidityMon, 30 Sep 2024 15:11:51 GMT - Mon, 23 Dec 2024 15:11:50 GMT

File type
HTML document, ASCII text, with very long lines (389)
Size
417 B (417 bytes)
Hash
ed268fed3c25babfbd72eb278c8bca52
60cf00ecd67143301a65aa7e6839cc162297fab2
9a538f897ea021d005963bb5b839796ddc1f5b02b4e63478f8fdc4716cdb340b

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=ARpgrqfMTkcwbKToyeesdpTN8LMKLH37gH437Yut3D1-vyhFMwd_Q4J33b4Cj-Dn9d5sQESYZmCCcA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:9mpKna7pFB9tuZDAtsnSoaMdsvJAmg:cME26M4_xTFUmf26;Path=/;Expires=Tue, 20-Oct-2026 03:50:22 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqd7rwcyyhn5kz3edTKeftVJiJxHvrxT1nmksIwNHY5Dn2nxfVGJMwPnY_sHeU5KnMMxkayvug&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S269231901%3A1729396222579779&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-wID02UkR-QWqU0BFTnVXGA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 417
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d1u5ibtsigyagv.cloudfront.net/gaW9SaU8KADwPcB0GNlR2XFdlXHdPHyAMKVQBOxk/EA09EWEKAD9PJRoAPBlyPx46KAxdNiJfClAhCx49XEkmEytUX3QFLgcIb08qBwxvWGkICzBUe08bIgYkVAElADwTAjwfLg5JJwhyBAAoACMFDndbCVxBYkx9WUcqWH5MXBBMfVkDOwc6EUpgWTdRWQ-1fe0xcEEx9WR0kTHwoVmRHf0BKYFkoDAw5BmpbKWBZfllfY1l+TF1iDyYbCjQGN0xdFFB5R190HHJY

108.157.232.187

200 OK

581 B

URL
d1u5ibtsigyagv.cloudfront.net/gaW9SaU8KADwPcB0GNlR2XFdlXHdPHyAMKVQBOxk/EA09EWEKAD9PJRoAPBlyPx46KAxdNiJfClAhCx49XEkmEytUX3QFLgcIb08qBwxvWGkICzBUe08bIgYkVAElADwTAjwfLg5JJwhyBAAoACMFDndbCVxBYkx9WUcqWH5MXBBMfVkDOwc6EUpgWTdRWQ-1fe0xcEEx9WR0kTHwoVmRHf0BKYFkoDAw5BmpbKWBZfllfY1l+TF1iDyYbCjQGN0xdFFB5R190HHJY
IP
108.157.232.187:0
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (804), with no line terminators
Size
581 B (581 bytes)
Hash
97804cbaad0d195aebaae90415378017
a62c02a9cfa697a33f41106dcdc65af16b22d60a
4a8366e507637511fb1f82ceeb2cd94ddcd033b162ed1ecac6f6a682a7a46e32

HTTP Headers

GET /gaW9SaU8KADwPcB0GNlR2XFdlXHdPHyAMKVQBOxk/EA09EWEKAD9PJRoAPBlyPx46KAxdNiJfClAhCx49XEkmEytUX3QFLgcIb08qBwxvWGkICzBUe08bIgYkVAElADwTAjwfLg5JJwhyBAAoACMFDndbCVxBYkx9WUcqWH5MXBBMfVkDOwc6EUpgWTdRWQ-1fe0xcEEx9WR0kTHwoVmRHf0BKYFkoDAw5BmpbKWBZfllfY1l+TF1iDyYbCjQGN0xdFFB5R190HHJY HTTP/1.1
Host: d1u5ibtsigyagv.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://orhavingartisticta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 581
date: Sun, 20 Oct 2024 03:50:22 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 917c6054ae6e10a98fc566c655129e8a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: gSVbaZ-2rXzSZ2ImQlJfhlAOLKIe6vPvtJKqTDKNteULXpunL-hvPQ==
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqd7rwcyyhn5kz3edTKeftVJiJxHvrxT1nmksIwNHY5Dn2nxfVGJMwPnY_sHeU5KnMMxkayvug&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S269231901%3A1729396222579779&ddm=0

64.233.164.84

403 Forbidden

868 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqd7rwcyyhn5kz3edTKeftVJiJxHvrxT1nmksIwNHY5Dn2nxfVGJMwPnY_sHeU5KnMMxkayvug&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S269231901%3A1729396222579779&ddm=0
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintAE:05:D4:AA:9F:89:AF:07:C3:A9:65:C2:3F:3B:9E:07:43:65:6E:FE
ValidityMon, 30 Sep 2024 14:36:26 GMT - Mon, 23 Dec 2024 14:36:25 GMT

File type
data
Size
868 B (868 bytes)
Hash
7d5f36148dd823d9ca469ec47a0c4fb2
0211c2a104077f6da3fa17cefab3de997fa028de
cdcca936a984c7cd310210d09549cccb20fac46fab0443dd7bcb1efecce6ce0b

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqd7rwcyyhn5kz3edTKeftVJiJxHvrxT1nmksIwNHY5Dn2nxfVGJMwPnY_sHeU5KnMMxkayvug&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S269231901%3A1729396222579779&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-c-PQH8rintutMvhcaq3xRQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.QLLbM0KFWAE.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

nippybox.com/css/custom.css

188.114.96.1

200 OK

268 B

URL GET HTTP/3
nippybox.com/css/custom.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectnippybox.com
Fingerprint09:18:71:52:B1:C5:8A:46:59:AD:E6:9C:46:C3:C2:82:D2:81:A5:9F
ValidityTue, 03 Sep 2024 11:34:06 GMT - Mon, 02 Dec 2024 11:34:05 GMT

File type
ASCII text, with no line terminators
Size
268 B (268 bytes)
Hash
63022e7a5a52fdbf3491d9ff0d17c2af
f76ea90a9b93f44b0c6189419ec1facff75dbe58
2d8d69ba61354a053dbf5a234aff0537342796b4ea235955c396d997dd5e4136

HTTP Headers

GET /css/custom.css HTTP/1.1
Host: nippybox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/s/--
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 02:42:10 GMT
etag: W/"10c-61422a764fe6d"
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: HIT
age: 273
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OPscjBHI88d88tFXb0Z5PAoJpCQUqSwb3G%2FgwclEpm0lR1SZPFIpq8CoCAwdvMdxu9ZAy9RmwBEdqG7TecXGwqXp7YIvVohLkLFdksir4zpcLntQm1nUb58gBh2EaY0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d560b10293d56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19122&sent=13&recv=8&lost=0&retrans=0&sent_bytes=4092&recv_bytes=1581&delivery_rate=34176&cwnd=12000&unsent_bytes=0&cid=681cb2192fe94e18&ts=191&x=1", cfExtPri, cfHdrFlush;dur=0

static.addtoany.com/menu/modules/core.D0Uc7kY6.js

104.22.70.197

200 OK

71 kB

URL GET HTTP/3
static.addtoany.com/menu/modules/core.D0Uc7kY6.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
Fingerprint59:F4:F4:14:DE:67:A0:7A:39:B0:7B:A8:C5:5C:BE:48:B2:A1:57:98
ValidityThu, 05 Sep 2024 19:26:26 GMT - Wed, 04 Dec 2024 19:26:25 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
71 kB (71398 bytes)
Hash
4c62aecc026617eea577f89b2340ce8c
cbfd9cf6455f136a142ced83c59559cb63b8dc8c
d07ac60d7d494f8688e4844d51b988f6a2f95b5e9435880e628eb8966e091382

HTTP Headers

GET /menu/modules/core.D0Uc7kY6.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nippybox.com
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"6fea96ea56ee4fff557b8776f9c8c3a6"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MLxffB7PDjMCieMPV8l2nxPTkIJ3hAxwDMV7USb%2BXfppdmelxZsZvuoxvv4gph6yXUH4tM7bT1lRFRISOtUtNfFIdBcxA5qbTEjVBXBmelyi%2B2EzoadlINxgQgyo%2FeJwZXhMq551aQsEkdtGPw1TYqgF"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 7753
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8d560b13f972929a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

maxcdn.bootstrapcdn.com/bootstrap/3.2.0/css/bootstrap.min.css

104.18.11.207

200 OK

110 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.2.0/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint95:66:C2:43:CE:55:3C:D7:76:0E:9C:5F:28:8C:E9:AA:DC:AC:A2:59
ValidityFri, 20 Sep 2024 01:25:04 GMT - Thu, 19 Dec 2024 01:25:03 GMT

File type
ASCII text, with very long lines (65371)
Size
110 kB (109518 bytes)
Hash
385b964b68acb68d23cb43a5218fade9
58a360d7ef24d8d05737db1712dd5c086597e862
b5fd723750763ebb731f9221e413e7d64d58d5192dc040e42292ed3dcccca732

HTTP Headers

GET /bootstrap/3.2.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"385b964b68acb68d23cb43a5218fade9"
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 03/18/2024 12:56:56
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1055
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 86f17a78549de5598d31afa7193d2cd9
cdn-cache: HIT
cf-cache-status: HIT
age: 11130936
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8d560b10df1c569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nippybox.com/images/favicon.ico

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
nippybox.com/images/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectnippybox.com
Fingerprint09:18:71:52:B1:C5:8A:46:59:AD:E6:9C:46:C3:C2:82:D2:81:A5:9F
ValidityTue, 03 Sep 2024 11:34:06 GMT - Mon, 02 Dec 2024 11:34:05 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
2dff55f85e7cb08618e2144233a5d805
d13bc199312835a51f0c282a4340f9c54d796e86
13962010b40fdee3f124fb961adf6dbc0d210aad01346ee9db9d63715994939f

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: nippybox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/s/--
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: image/vnd.microsoft.icon
vary: Accept-Encoding
last-modified: Thu, 21 Mar 2024 02:42:10 GMT
etag: W/"47e-61422a7698e65"
strict-transport-security: max-age=31536000;
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3451
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2Bb9d8DPjDEVCWXXhVgQBsu8v%2BccrYgZocaKNGp%2ByesTyCmbarstetm1mPRAUW%2FF3toTnDV3O%2Ba4dxX6LvZy1evomZ5UfCvtpPN%2BnTyxcf%2BL2APYLjK8%2FXQnSKza2yY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b15fce456a5-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19103&sent=18&recv=10&lost=0&retrans=0&sent_bytes=7404&recv_bytes=1900&delivery_rate=19698&cwnd=12000&unsent_bytes=0&cid=681cb2192fe94e18&ts=1119&x=1", cfExtPri, cfHdrFlush;dur=0

nippybox.com/libs/custom.js

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
nippybox.com/libs/custom.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectnippybox.com
Fingerprint09:18:71:52:B1:C5:8A:46:59:AD:E6:9C:46:C3:C2:82:D2:81:A5:9F
ValidityTue, 03 Sep 2024 11:34:06 GMT - Mon, 02 Dec 2024 11:34:05 GMT

File type
JavaScript source, ASCII text, with very long lines (1598), with no line terminators
Size
1.4 kB (1407 bytes)
Hash
6b639f0130ac730fe848d7d88e1454ab
bf5fd677e17bacfcdbd5f72650f61c884f9f792d
cde0202e61e54134c5ad5806421333e64143b7af6e58e6947c0e10447ec28477

HTTP Headers

GET /libs/custom.js HTTP/1.1
Host: nippybox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/s/--
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 21 Mar 2024 02:42:14 GMT
etag: W/"57f-61422a7ad2ee4"
strict-transport-security: max-age=31536000;
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6406
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pojtLBwuO44YOmD9j%2Fwvxv5i3DJLnSxrPAMn5wQNs0KMQZSMcNLJDl4ykcfJg4rZasVrsvMNt4GGMU%2BmsM7c8yr8gD3eh9FiyGs2AEquFnBKhqVDm0zrTJOw4PDVYY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b10394c56a5-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19122&sent=14&recv=8&lost=0&retrans=0&sent_bytes=4994&recv_bytes=1581&delivery_rate=34176&cwnd=12000&unsent_bytes=0&cid=681cb2192fe94e18&ts=194&x=1", cfExtPri, cfHdrFlush;dur=0

nippybox.com/libs/ie10-viewport-bug-workaround.js

188.114.96.1

200 OK

714 B

URL GET HTTP/3
nippybox.com/libs/ie10-viewport-bug-workaround.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectnippybox.com
Fingerprint09:18:71:52:B1:C5:8A:46:59:AD:E6:9C:46:C3:C2:82:D2:81:A5:9F
ValidityTue, 03 Sep 2024 11:34:06 GMT - Mon, 02 Dec 2024 11:34:05 GMT

File type
JavaScript source, ASCII text, with very long lines (758), with no line terminators
Size
714 B (714 bytes)
Hash
865f0c9027e16bd0348839279c1d6ecb
7d0a2a56b8ef7c03f6cfad01c7c3e3097247034d
48b10c8d10a70a75b98e2c07d5075847e87a11abce7abfa2d72537db4cf561ae

HTTP Headers

GET /libs/ie10-viewport-bug-workaround.js HTTP/1.1
Host: nippybox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/s/--
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 21 Mar 2024 02:42:15 GMT
etag: W/"2ca-61422a7b04fac"
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: HIT
age: 6406
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BrDPWtFP%2Bzodz5%2FoxHSUACYFcHv%2BJ60oct35qpeDX6venR%2Bwi79P6S8%2B0CVYtbN2PTZLx7szzhKEVbEzdibT4hrEZRVi2k6dzwK9Yp7Zqc7vHp4bOrNgWsFDHwJC5jc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d560b10394b56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19122&sent=16&recv=8&lost=0&retrans=0&sent_bytes=6261&recv_bytes=1581&delivery_rate=34176&cwnd=12000&unsent_bytes=0&cid=681cb2192fe94e18&ts=195&x=1", cfExtPri, cfHdrFlush;dur=0

ukankingwithea.com/asd100.bin

172.67.192.190

200 OK

102 kB

URL GET HTTP/2
ukankingwithea.com/asd100.bin
IP
172.67.192.190:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint1E:50:56:01:B8:4D:0D:64:A3:5D:F9:E4:4A:5D:AE:8D:5E:FC:FB:FC
ValidityThu, 05 Sep 2024 11:45:15 GMT - Wed, 04 Dec 2024 11:45:14 GMT

File type
data
Size
102 kB (102400 bytes)
Hash
4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
Origin: https://nippybox.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://nippybox.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 6407
last-modified: Sun, 20 Oct 2024 02:03:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9SeanEzR4NMvwk2pMbJPRmPp9SvjH%2B6UkcAasm74nJdAL1y02pVEeoitDRXxMzGRhh8V9eBRyk1L1W5CkuyBiaqSZA4viqAwjq0xFIaNBrUVSCf99c70PjNo%2F2cd%2FE3839m9%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d560b166d2556bf-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=16462&sent=6&recv=10&lost=0&retrans=0&sent_bytes=3297&recv_bytes=1247&delivery_rate=262953&cwnd=252&unsent_bytes=0&cid=72c93b4b2333318d&ts=51&x=0"
X-Firefox-Spdy: h2

static.addtoany.com/menu/page.js

104.22.70.197

200 OK

3.2 kB

URL GET HTTP/2
static.addtoany.com/menu/page.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
Fingerprint59:F4:F4:14:DE:67:A0:7A:39:B0:7B:A8:C5:5C:BE:48:B2:A1:57:98
ValidityThu, 05 Sep 2024 19:26:26 GMT - Wed, 04 Dec 2024 19:26:25 GMT

File type
JavaScript source, ASCII text, with very long lines (3283), with no line terminators
Size
3.2 kB (3152 bytes)
Hash
94bb2bc1a2a9be5dc14f574034ba1449
dfaa0466c2a8f515a1a69bcb30e265f6d4b12942
e19a2b596ce2ef118a7fd704b12e88cb30dbf93ad4ae13b8159a897a7b41ee76

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"b57737a151d7fd411c90e2eb8cdb171e"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EYhkkcDL1rm2tG0fSuVhf3WnDTjCvhOFHcWYBr0gU1b%2FhTeZzPXxEvyYGqsumZx4KlV0XeflKLO7Eb%2BYOkzgwA6iQ5KkPCitsFKU8NWSHI4LW5jhbtV2RfPmJIxyiOB0pvPFG%2FTu"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2898
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8d560b110efb6de8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ukankingwithea.com/

172.67.192.190

200 OK

26 B

URL GET HTTP/2
ukankingwithea.com/
IP
172.67.192.190:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint1E:50:56:01:B8:4D:0D:64:A3:5D:F9:E4:4A:5D:AE:8D:5E:FC:FB:FC
ValidityThu, 05 Sep 2024 11:45:15 GMT - Wed, 04 Dec 2024 11:45:14 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
f47013d4ec4784c5403456b877b5f7b3
87f802bf728edeccae2836f250cec3c75fa3efe2
7b902f5e82aaab15dfabaa3b9051611faa6b6f70cbdf978d925aee92ea6a8ac9

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
Origin: https://nippybox.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: text/plain
set-cookie: csu=175027562305555@1@1729396222; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://nippybox.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Evocji66RvxdQzjENaSSB7SSE7KBFFz%2BPK6%2Bo1fth35Xo9qlFAMeIB9s6gI2ZKE6dyWt2nqEMOv0O0g%2FJyoFqXaQi06vKTqyH9%2BoPAtTl5V0xPdeXTvDqWrr%2Fd2fh4VELIOUuZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b166d2756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=22465&sent=81&recv=33&lost=0&retrans=0&sent_bytes=107701&recv_bytes=1278&delivery_rate=902221&cwnd=265&unsent_bytes=0&cid=72c93b4b2333318d&ts=274&x=0"
X-Firefox-Spdy: h2

static.addtoany.com/menu/sm.25.html

104.22.70.197

200 OK

716 B

URL GET HTTP/3
static.addtoany.com/menu/sm.25.html
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
Fingerprint59:F4:F4:14:DE:67:A0:7A:39:B0:7B:A8:C5:5C:BE:48:B2:A1:57:98
ValidityThu, 05 Sep 2024 19:26:26 GMT - Wed, 04 Dec 2024 19:26:25 GMT

File type
HTML document, ASCII text, with very long lines (744), with no line terminators
Size
716 B (716 bytes)
Hash
c3c97893ca5c74e7504aa4ec474ea41b
cdccb12d7e73682e0e807107243ede7d5e14c962
b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00

HTTP Headers

GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZZ5BqwgXXfAXSABOGPCWln29dcV8TQTO%2BtNdjQ1w%2F3UBYuVUpXuqIHul1UoWryBlOiPs3zM3Ag65Cx5jxBP4kWnj2xDbVZDycpY4XjyYwsxMWpVedv65ddlDs7aTVQ7llp7EHTqQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6170
last-modified: Sun, 20 Oct 2024 02:07:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8d560b13e970929a-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400

ervantasrelaterc.com/popunder.gif

0.0.0.0

200 OK

0 B

URL GET
ervantasrelaterc.com/popunder.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectervantasrelaterc.com
Fingerprint82:78:80:21:BA:53:7C:B6:FD:87:C1:6E:BA:24:A8:57:55:82:06:1C
ValidityFri, 06 Sep 2024 06:55:23 GMT - Thu, 05 Dec 2024 06:55:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /popunder.gif HTTP/1.1
Host: ervantasrelaterc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Oct 2024 03:50:22 GMT
content-type: image/gif
content-length: 58
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
content-encoding: gzip
cf-cache-status: HIT
age: 77382
last-modified: Sat, 19 Oct 2024 06:20:40 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X%2Boe74pvQq2c3vG5gIXkZRmalr1kkZ0ADDN1DpaCg%2BKoTHOsIbjDb58UQ25CLYqkX%2FFwZz1dJsH2N8vk9udbUVWl1ONFAYnXFlDQetmhPj9ymnQC1YpBrg2cOwQ4bWXR2mhYw0wR3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d560b18e9ef568a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20282&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4071&recv_bytes=1097&delivery_rate=32896&cwnd=12000&unsent_bytes=0&cid=ceb059da30df0547&ts=539&x=1", cfExtPri, cfHdrFlush;dur=0

www.hcaptcha.com/1/api.js

104.19.230.21

200 OK

151 kB

URL GET HTTP/2
www.hcaptcha.com/1/api.js
IP
104.19.230.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjecthcaptcha.com
Fingerprint88:FF:9C:DC:27:99:24:BE:11:6A:8A:2A:CD:49:CD:45:93:8C:4E:AD
ValiditySat, 07 Sep 2024 22:14:18 GMT - Fri, 06 Dec 2024 22:14:17 GMT

File type

Size
151 kB (150620 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/api.js HTTP/1.1
Host: www.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript
cf-ray: 8d560b10ffbe7131-OSL
cf-cache-status: HIT
age: 0
cache-control: private, max-age=300
etag: W/"2af278e106346ae2019b3a79b35d7861"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
alt-svc: h3=":443"; ma=86400
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js

104.18.11.207

200 OK

32 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint95:66:C2:43:CE:55:3C:D7:76:0E:9C:5F:28:8C:E9:AA:DC:AC:A2:59
ValidityFri, 20 Sep 2024 01:25:04 GMT - Thu, 19 Dec 2024 01:25:03 GMT

File type
JavaScript source, ASCII text, with very long lines (31650)
Size
32 kB (31819 bytes)
Hash
abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f

HTTP Headers

GET /bootstrap/3.2.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"abda843684d022f3bc22bc83927fe05f"
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 05/01/2023 21:10:53
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 58faf08cc82ef1a549ecd53f62ce3ac9
cdn-cache: HIT
cf-cache-status: HIT
age: 9226818
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8d560b10df1b569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqeEPc5zrzSNtiMK5Uyl6gA5mDk3hj-BYDAWbbK-Z0McQAqmDkENuHFuTPZVGc83Lld-IH_K7A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1423751561%3A1729396222555579&ddm=0

64.233.164.84

403 Forbidden

0 B

URL GET HTTP/2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqeEPc5zrzSNtiMK5Uyl6gA5mDk3hj-BYDAWbbK-Z0McQAqmDkENuHFuTPZVGc83Lld-IH_K7A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1423751561%3A1729396222555579&ddm=0
IP
64.233.164.84:443
ASN
#15169 GOOGLE

Requested by
https://nippybox.com/s/--
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint5E:A8:02:9D:AE:0D:62:9F:66:84:D2:BE:37:6E:89:FD:FF:7C:18:94
ValidityMon, 30 Sep 2024 15:11:51 GMT - Mon, 23 Dec 2024 15:11:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=ARpgrqeEPc5zrzSNtiMK5Uyl6gA5mDk3hj-BYDAWbbK-Z0McQAqmDkENuHFuTPZVGc83Lld-IH_K7A&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1423751561%3A1729396222555579&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nippybox.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 20 Oct 2024 03:50:22 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-WbcomM3z39ULNhIGlPAzfw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ghelp/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.QLLbM0KFWAE.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nippybox.com/s/--

188.114.96.1

200 OK

4.9 kB

URL User Request GET HTTP/2
nippybox.com/s/--
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectnippybox.com
Fingerprint09:18:71:52:B1:C5:8A:46:59:AD:E6:9C:46:C3:C2:82:D2:81:A5:9F
ValidityTue, 03 Sep 2024 11:34:06 GMT - Mon, 02 Dec 2024 11:34:05 GMT

File type
HTML document, ASCII text, with very long lines (5275), with no line terminators
Size
4.9 kB (4935 bytes)
Hash
2bbc79e4dae1578b252b06f2abb4201c
893bbc4b285a9b595bdbbcf6e9c2d0fd59bb175c
a72cb7c00e6315660ae683458b456912e47614cbcbf83b24ce9c0d6e86d2a33e

HTTP Headers

GET /s/-- HTTP/1.1
Host: nippybox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Oct 2024 03:50:21 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.30
strict-transport-security: max-age=31536000;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jMeNlFvAyOsHqehpjD0In1%2Fif%2BTLKyYux3o15oChHi6OggO%2Fjx9TFD8BM91q6adqEVCNahdxgGVuYF16W108QNJVuyuhI1k%2F%2FiGVoeLcSit9RI5UOe2niNR0LTjMeeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d560b0788540b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=23450&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3275&recv_bytes=1243&delivery_rate=258771&cwnd=254&unsent_bytes=0&cid=a7bfbbdf18e1e688&ts=1212&x=0"
X-Firefox-Spdy: h2

undefined/SGRVTTYpBjYgCSlZN2tDOghoaAQOQWcLUnkRYCRUPBc8Kk8pAyNjVSQLIClQOgs7ORgmASFoBA41AwVReyoAAAUOVTkZUAslBxhBIFIMGHcJJR09TwshAxx8Hw8CFV0dHhkfRhEwAn0FDlU6GX0bBw0aYx5BZw9mMAAFGWcvLB19UhgjOAhgDTEQeHsNMR0IT3BVEyF3AT4BCGEeJT00VSAIARsFfQMNJnwdAj8mbhwyIjt5Cg8GD0EeDAMqVRkHAh9nHBMHNFUdEGQIfg4PEwsDKio8NVIKNQB6VA1ROgwFLBwGfmMZBwIcfRk2FzpwHSEXCgUGXQ0cGx0iHwlzKjwTPVsSDmELdBAuPh53ESI2I3ADJmQARwIMZB9hIhAtHlgNKTEVRgEhAA8TeiYPHBAiFzojRnUPOjVOAzcyPUwRUTg

0.0.0.0

0 B

URL GET
undefined/SGRVTTYpBjYgCSlZN2tDOghoaAQOQWcLUnkRYCRUPBc8Kk8pAyNjVSQLIClQOgs7ORgmASFoBA41AwVReyoAAAUOVTkZUAslBxhBIFIMGHcJJR09TwshAxx8Hw8CFV0dHhkfRhEwAn0FDlU6GX0bBw0aYx5BZw9mMAAFGWcvLB19UhgjOAhgDTEQeHsNMR0IT3BVEyF3AT4BCGEeJT00VSAIARsFfQMNJnwdAj8mbhwyIjt5Cg8GD0EeDAMqVRkHAh9nHBMHNFUdEGQIfg4PEwsDKio8NVIKNQB6VA1ROgwFLBwGfmMZBwIcfRk2FzpwHSEXCgUGXQ0cGx0iHwlzKjwTPVsSDmELdBAuPh53ESI2I3ADJmQARwIMZB9hIhAtHlgNKTEVRgEhAA8TeiYPHBAiFzojRnUPOjVOAzcyPUwRUTg
IP
0.0.0.0:0
ASN
#0

Requested by
https://nippybox.com/s/--

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /SGRVTTYpBjYgCSlZN2tDOghoaAQOQWcLUnkRYCRUPBc8Kk8pAyNjVSQLIClQOgs7ORgmASFoBA41AwVReyoAAAUOVTkZUAslBxhBIFIMGHcJJR09TwshAxx8Hw8CFV0dHhkfRhEwAn0FDlU6GX0bBw0aYx5BZw9mMAAFGWcvLB19UhgjOAhgDTEQeHsNMR0IT3BVEyF3AT4BCGEeJT00VSAIARsFfQMNJnwdAj8mbhwyIjt5Cg8GD0EeDAMqVRkHAh9nHBMHNFUdEGQIfg4PEwsDKio8NVIKNQB6VA1ROgwFLBwGfmMZBwIcfRk2FzpwHSEXCgUGXQ0cGx0iHwlzKjwTPVsSDmELdBAuPh53ESI2I3ADJmQARwIMZB9hIhAtHlgNKTEVRgEhAA8TeiYPHBAiFzojRnUPOjVOAzcyPUwRUTg HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nippybox.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by