Report - elephantpassresort.com/auc/blvomuidtiutaosp

Report Overview

Submitted URL
elephantpassresort.com/auc/blvomuidtiutaosp
IP
103.76.228.55
ASN
#394695 PUBLIC-DOMAIN-REGISTRY
Submitted
2022-10-27 22:14:51
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.7 kB	3.5 kB	142.250.74.35
translate.google.com	1156	2012-05-30T03:30:32Z	2023-03-10T05:17:00Z	420 B	28 kB	142.250.74.46
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.0 kB	5.3 kB	23.36.76.226
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	72 kB	34.120.237.76
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	3.1 kB	134 kB	216.58.207.195
www.elephantpassresort.com	unknown	2019-05-31T15:41:53Z	2023-02-21T11:34:03Z	470 B	627 B	103.76.228.55
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
to.getnitropack.com	17316	2020-05-19T12:36:28Z	2023-03-10T15:46:59Z	534 B	655 B	194.242.11.186
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	787 B	99 kB	142.250.74.168
elephantpassresort.com	unknown	2018-07-14T05:21:39Z	2023-03-07T06:40:15Z	472 B	370 B	103.76.228.55
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.41.253.170
cdn-fjafn.nitrocdn.com	unknown	2022-10-19T15:04:10Z	2023-02-21T11:34:04Z	24 kB	626 kB	172.64.147.148
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	2.8 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-27	medium	elephantpassresort.com/auc/blvomuidtiutaosp	Malware
2022-10-27	medium	www.elephantpassresort.com/	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-10-27	medium	elephantpassresort.com	Sinkholed
2022-10-27	medium	elephantpassresort.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-27	medium	elephantpassresort.com	Sinkholed
2022-10-27	medium	elephantpassresort.com	Sinkholed

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.elephantpassresort.com/	9.3 kB	2023-03-10	2023-03-11
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-11 23:38:13 Times Seen1 Hash b1190be61704062f98a54736b2ce4ffb e18e4bbd2c6d2adf6d99e73459fe7b1ef11050d2 6d9502285d04aaa6885bcd58c9b4b72b6fb55ef49d79ede87582892260cb7d9b Loading...

	www.elephantpassresort.com/	1.1 kB	2023-03-10	2023-03-14
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-14 06:44:47 Times Seen1 Hash d9a0593f3723e7b74a5f2bcf891738f8 018a44398b5f0f706df0e57b2ac89fb96cb8f32c 58ecd91e824d3b9d20af530f3beec812a06ea811f3b131cf5f72865754d16441 Loading...

	www.elephantpassresort.com/	3.3 kB	2023-03-07	2023-03-17
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:57 Last Seen2023-03-17 12:45:55 Times Seen1 Hash 8ac4d6a74033cf9cd4157b3ad2dee63f 1ceae7c8471dee56d2207616fde220fae512fc04 b68c0e926e7e0d9300b1f7fb4c5bf0ec4547a5e154edabc7c0217961db047e8e Loading...

	www.elephantpassresort.com/	6.7 kB	2023-03-10	2023-03-10
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-10 16:50:49 Times Seen1 Hash 180a730cf0b9ea83c0218e845d0a7674 be0905b37cf4d032c92f48ea9f6412dc7b9bebc5 a8a281a387d5c2f601c01b5a84c6928a15860bf1807a154e307e372e121dcf65 Loading...

	www.elephantpassresort.com/	2.0 kB	2023-03-07	2024-03-01
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-03-01 03:22:18 Times Seen441 Hash 7bdc0b403fbfe0691850c0b534f0fbe1 43a6ac1ef7bd0db9faa4077c686b10c59e8b3318 19855ca227ac4c4975fc9a19ced99a7c0ae3294869d542efcefb24d5feec911b Loading...

	www.elephantpassresort.com/	390 B	2023-03-10	2023-03-10
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-10 16:50:49 Times Seen1 Hash 8d021d143546971149b6563f377d02e5 8b32ffd9f96cc051384a6a85091d6dc5a1e1a113 cee3e5bee32cc2e19d3e4bc028bf72d7ae5c617c10cf82cfcd1a87e72e44c05b Loading...

	http:https://www.elephantpassresort.com/8c0e3b1b-d43d-4e1a-9bb3-d7daa0831c1b	2.1 kB	2023-03-10	2023-03-10
Pretty URL http:https://www.elephantpassresort.com/8c0e3b1b-d43d-4e1a-9bb3-d7daa0831c1b IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-10 16:50:49 Times Seen1 Hash 9078739de8b6d11d13f06af05a132559 98c93f17e63a93aa9753d086278b8472f1911dd8 ba7452b95ac3343cbf8c73b6c501af2449de7253abc3c57cff18cb6707af0b8f Loading...

	www.elephantpassresort.com/	547 B	2023-03-07	2023-06-02
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2023-06-02 21:13:59 Times Seen133 Hash b31d86751701107ec14d39bb2b002a93 d76e6396176bd87149ecc3d6f14d0d0e53d65dbe 7c675b40e379e3a44781777b54759ea86d574df72dc8cf3b4f107e2f382843b7 Loading...

	www.elephantpassresort.com/	7.1 kB	2023-03-07	2024-04-03
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-04-03 14:42:38 Times Seen463 Hash dcbdf0d2a1aafb382a213379527c6872 9b3fc3b042ce7562d170a04418556814da1406b7 0dbfb7addee2ddac0cb6f3c621d7c1045d94c02b5fbe58b89738a5b2e7826769 Loading...

	www.elephantpassresort.com/	1.1 kB	2023-03-07	2024-03-01
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-03-01 03:22:18 Times Seen439 Hash 9d639432cd936693758e2ea0fd4517fc 4a733037594ac95947bc47efb047c431e9c932c5 0565756ae9c9455e46f92e46f68fcfe6ddebe51a4ff3b7b35a7085e39fe19a12 Loading...

	www.elephantpassresort.com/	96 B	2023-03-07	2024-03-01
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-03-01 03:22:18 Times Seen170 Hash 903d99d7dd539feefd196de5edf7b92e 8122327012a619c618bc7733df2f6b32aeeb5c95 a03b4b62f6811c457c558fa553b32530e452fc508112370db9804d10f08bdda1 Loading...

	www.elephantpassresort.com/	665 B	2023-03-07	2023-06-28
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2023-06-28 20:49:49 Times Seen176 Hash cd0c35fc4ce8a58fbf3aa7ec439e567d 340d5487242dd27cb6f31aaac73750ac728a3f86 4a328c151a25a40917d8f51c665019b52b57e7e7572acace94eaaf2740980d90 Loading...

	www.elephantpassresort.com/	12 B	2023-03-07	2024-04-22
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-04-22 13:25:27 Times Seen446 Hash b5485476b7124b0ea6039821fa4de356 f1a002e8095c3fe89f50fc6473f3eb6eeb20a788 1f89c209eb9c23196c8bdd742753f04bbf293f392093450e14a4d511b480b67a Loading...

	www.elephantpassresort.com/	461 B	2023-03-07	2024-03-01
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-03-01 03:22:17 Times Seen474 Hash e970f30d0c11892c72e15b7b881e7450 c07323cae9122b259a216d6b0abe9a68ea5e771a 42406ecb48a9b05e70be6a7046b8c1323908fa015da0bd0eef41e550d777dd42 Loading...

	www.elephantpassresort.com/	324 B	2023-03-07	2024-04-22
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-04-22 13:25:27 Times Seen492 Hash b178d837bb2c153e761faa812111f1ca bb5dd14bf4a25358affb7f3ae0a0c47f46bf90f8 268cc310bf24fa09e617782da09d4bab8b30c0d13b184ae76af1e3f5a494ac4d Loading...

	www.elephantpassresort.com/	16 kB	2023-03-07	2023-03-17
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2023-03-17 12:45:55 Times Seen1 Hash 32b44ff0d3d29858a2ee603e86abb07e b49c6212792631bf4dd040b830f502be74744f1f 566ef9e4282543fcd73d39f528d6f4fbee891ab388093c7fa7d49301fa65a3cf Loading...

	www.elephantpassresort.com/	54 B	2023-03-07	2024-04-22
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:15 Last Seen2024-04-22 13:25:27 Times Seen489 Hash 02e7b35734ec4ccb260436955b81f606 928279e349c7eb2c70bfe50556c1b3291f0e316f ca9c90e64d29537cb52e1e7925c3f5382746ab7f1785fc02044add9af20cc7be Loading...

	www.elephantpassresort.com/	18 kB	2023-03-10	2023-03-10
Pretty URL www.elephantpassresort.com/ IP 103.76.228.55 ASN #394695 PUBLIC-DOMAIN-REGISTRY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:35:08 Last Seen2023-03-10 16:50:49 Times Seen1 Hash 2c6c0801f97863d9848122c76a968366 ed84e980dfc8ca100560ceb526bd885055a1cf42 32ae36d8a3d6391340528372a8e546a814aec6823cd93fecf90d394fd0f360cd Loading...

HTTP Transactions (80)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1e997bec759570aa0db03e31bf013cc2
948fd8263ab0b40f75eaf9495f76a7f39f39d5f9
853f97990fe10ccb34066b1e73e93dac45794f42fb745b266b6a46b9e26d52e9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "853F97990FE10CCB34066B1E73E93DAC45794F42FB745B266B6A46B9E26D52E9"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9152
Expires: Fri, 28 Oct 2022 00:47:12 GMT
Date: Thu, 27 Oct 2022 22:14:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22eebb819dc140cc288474d9891526b4
45c18772664e9e3efb6a44d7da93699c81f71827
ce6a96e470dbfb48ff42fdaf5eaa464a87dc60b495e3e2767086ec0b6564fdd7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE6A96E470DBFB48FF42FDAF5EAA464A87DC60B495E3E2767086EC0B6564FDD7"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3368
Expires: Thu, 27 Oct 2022 23:10:48 GMT
Date: Thu, 27 Oct 2022 22:14:40 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2674
Cache-Control: max-age=129663
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:40 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 10:15:43 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PiwmkdJfF7mbEl5/Np2i961B/kKJiMsq/UbDXUZLUnOKSEWFgA37WGwFjMs1uq3GNGdmqJ/fsX0=
x-amz-request-id: QQ336QVP5TPTYASZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 22:10:01 GMT
age: 279
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 22:14:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93a173376788d3414ffe6bb152398a4d
bd9e2c6d67d502331a45a2d886c412da6b886fc0
728883a614bf8bf5dcad9e6b7169c0c700837bd4a6edd21dc6993f73be43bb76

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "728883A614BF8BF5DCAD9E6B7169C0C700837BD4A6EDD21DC6993F73BE43BB76"
Last-Modified: Tue, 25 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Fri, 28 Oct 2022 04:14:34 GMT
Date: Thu, 27 Oct 2022 22:14:40 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d72d2f5d05f03753594e43fd34398221
ac6795c1c33f3fa2139e7f8dc601c3e6de6029a5
036c965156cf07faecc342cb2e30b7a20def68ad4a10423951ce871a7a3a6777

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 781
Cache-Control: max-age=122710
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:40 GMT
Etag: "635a3c19-1d7"
Expires: Sat, 29 Oct 2022 08:19:50 GMT
Last-Modified: Thu, 27 Oct 2022 08:06:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.41.253.170

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.253.170:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VceZBk+/lla6oXF3p9xbLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5RWop8jqG0tIbjb4M00nATX0Zbs=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15216
Expires: Fri, 28 Oct 2022 02:28:18 GMT
Date: Thu, 27 Oct 2022 22:14:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15216
Expires: Fri, 28 Oct 2022 02:28:18 GMT
Date: Thu, 27 Oct 2022 22:14:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15216
Expires: Fri, 28 Oct 2022 02:28:18 GMT
Date: Thu, 27 Oct 2022 22:14:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9720 bytes)
Hash
2193431d88baf9af6829421cd13743ff
a192ab139ad0dc5cf206986eb06028ddad224e46
c535e09fb4a53ca580f5f5926d1494c50b6ad6c7c9ec78df6b7015213852b737

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9720
x-amzn-requestid: 6b4749ca-bcb9-4274-a309-e6d463851a6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_n6FOSIAMFroA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524632-56186f1f2a0bf68f6dba843b;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:11:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DjRLNrY4BFc3GwHGBW40LIyh-RYT3hshdKPxXok4KE97fGvatXN6yQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 11:05:53 GMT
age: 40129
etag: "a192ab139ad0dc5cf206986eb06028ddad224e46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250d1e28-eb33-40d6-b1f3-54b9dc6db605.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5661 bytes)
Hash
94b630648bd97dc4a32c2c6f2e0c135b
bd207107f5c6b48295da4b51fc1d3b5f571702d5
f8f6427f4acadfcabc4bde77288790fe86a6561a3a716894a44fc206080454b5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250d1e28-eb33-40d6-b1f3-54b9dc6db605.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5661
x-amzn-requestid: 472e1f28-9fd7-4958-833e-ad74f7e35f98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arwdAFGXIAMFp5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afab9-1e0450f4642203295d608ae7;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:40:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8dC4GSe5AF5KwnRyX-__AxJrDkoG0X87mLI40KtYrqrVhBs016V4Rg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:41:30 GMT
age: 1992
etag: "bd207107f5c6b48295da4b51fc1d3b5f571702d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa50e9cdb-811a-4b19-b8f3-5ef198d658d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15891 bytes)
Hash
778c3efac4fe8fd34b7e0cf37242de39
4b689f83290db7c174ade2febf7b3430adc8dcc3
02c1c749e24b2533673106228ddff20333a79316d427e6880b5d8fb8ef781180

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa50e9cdb-811a-4b19-b8f3-5ef198d658d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15891
x-amzn-requestid: 2c52870d-49cb-4a1f-8a46-e9ee2d7d9090
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv1-HxuoAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9bf-5f22733f5c48a6c56c93c874;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:35:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dNL18IfhrEwp09Mn_6iIcAL4h8ZIjUs0bcYz0kVlNB6LUEhnuQ3nwA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:41:18 GMT
age: 2004
etag: "4b689f83290db7c174ade2febf7b3430adc8dcc3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fc8f8f0-162f-412f-aae9-5d8f363b48af.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.0 kB (2987 bytes)
Hash
46deaa111c196a313a563af1e22921a1
c5d29e8859c7d885c5f4829a1fb64e144267ab13
6776e0f75644cc543388587de52bbb78f39cd058cb751e7e84cdd3ca8baa0c9f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fc8f8f0-162f-412f-aae9-5d8f363b48af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2987
x-amzn-requestid: 14097870-fb20-4362-b281-4244cf558033
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv19Fb4IAMFuoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9bf-6c59ff2a3f54af5b675696cf;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:35:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UyYN42fsF2EDEnRYd9ebhfBVnl3CojcYRnzl8tifoVctvZm5xmGdOw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:41:18 GMT
age: 2004
etag: "c5d29e8859c7d885c5f4829a1fb64e144267ab13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9608b604-2fb0-4009-9b22-93d14b2b82a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10727 bytes)
Hash
deef89b8848bc9e554885d50334d12a2
ccad3b77484eaa6b7753aee1252e330fb3a897fe
b65cc5438a40809026d98b9cbe210b9f56d0b055def5a8b03516ac54a5ff82b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9608b604-2fb0-4009-9b22-93d14b2b82a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10727
x-amzn-requestid: 1a1d87f9-4187-45aa-a329-bfcff8ed2981
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arw32FBxoAMFsmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afb65-163911f12df777e0414e2076;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:43:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oS9JLMr8w10N9Gr6r_PD-x286hBhdKphPgvcqM5PJNdJBn6-idKgpA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:02:11 GMT
age: 751
etag: "ccad3b77484eaa6b7753aee1252e330fb3a897fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c17e2f3-4edf-44ae-9b49-0a83b2498309.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10330 bytes)
Hash
9ec53913f994b99340024aa1958102a2
8a2e935e59efbe8a6b4f4fad1ef0b87241731dec
7a17e72f6767e8d129ce43ec41aa535827fbc90b085898f5a764166c7600b48b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c17e2f3-4edf-44ae-9b49-0a83b2498309.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10330
x-amzn-requestid: d1306110-4c96-44f6-86c9-542354fb5f26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arw3DHedoAMFegg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afb60-236067d573debd7b248a3579;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:42:56 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FEgc1gYGoQvntxdOiUoXrDNK6irThtVu-E1iztiw5Zry4zyLE3V9eQ==
via: 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:02:13 GMT
age: 1057
etag: "8a2e935e59efbe8a6b4f4fad1ef0b87241731dec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

elephantpassresort.com/auc/blvomuidtiutaosp

103.76.228.55

301 Moved Permanently

0 B

URL HTTP/2
elephantpassresort.com/auc/blvomuidtiutaosp
IP
103.76.228.55:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /auc/blvomuidtiutaosp HTTP/1.1
Host: elephantpassresort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Thu, 27 Oct 2022 22:14:39 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 0
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.elephantpassresort.com
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9809e3d09f73953822576f306dc55cb0
39150992ebeafec4a75d4a01dbd31d5adc7417a4
e9e5e47a8cfd0384f13b18985876ad2fd6d625100a7bc435963463c152c14be5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2136
Cache-Control: max-age=140602
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Etag: "635a7cb9-118"
Expires: Sat, 29 Oct 2022 13:18:09 GMT
Last-Modified: Thu, 27 Oct 2022 12:42:33 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9809e3d09f73953822576f306dc55cb0
39150992ebeafec4a75d4a01dbd31d5adc7417a4
e9e5e47a8cfd0384f13b18985876ad2fd6d625100a7bc435963463c152c14be5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2136
Cache-Control: max-age=140602
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Etag: "635a7cb9-118"
Expires: Sat, 29 Oct 2022 13:18:09 GMT
Last-Modified: Thu, 27 Oct 2022 12:42:33 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/css/fonts/daeb889685e065f06e9d3a5e06a8b6d4.fontello.ttf

172.64.147.148

200 OK

138 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/css/fonts/daeb889685e065f06e9d3a5e06a8b6d4.fontello.ttf
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
TrueType Font data, 14 tables, 1st "OS/2", 18 names, Macintosh, Copyright (C) 2015 by original authors @ fontello.comfontelloRegularfontellofontelloVersion 1.0f\012- DOS 2.0-3.2 backed up sequence 1 of file \016\012- data
Size
138 kB (138244 bytes)
Hash
cb6b0ae6514f0e6f62d45eabc113efcd
c6efb2056a5ea8bd2396accfa2336a8a782eb08a
685aa088b0ea4e9881049bb49aed66ed7cb9263c1cbff883157a0f2c57d7ecae

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/css/fonts/daeb889685e065f06e9d3a5e06a8b6d4.fontello.ttf HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: font/ttf
etag: W/"628fb211-34683"
last-modified: Thu, 26 May 2022 17:00:01 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/css/fonts/fontello.ttf?61757689>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23183
server: cloudflare
cf-ray: 760ec9604bfb1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a6e99afc26edeaa6e0ec14ea98868
6909f81a74cb2479794f87397c2c9f7bbe759721
af5090a668f3b5293473c111761ca086d6e77a40cd9b5022d669327736034a4c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a6e99afc26edeaa6e0ec14ea98868
6909f81a74cb2479794f87397c2c9f7bbe759721
af5090a668f3b5293473c111761ca086d6e77a40cd9b5022d669327736034a4c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a6e99afc26edeaa6e0ec14ea98868
6909f81a74cb2479794f87397c2c9f7bbe759721
af5090a668f3b5293473c111761ca086d6e77a40cd9b5022d669327736034a4c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2

216.58.207.195

200 OK

29 kB

URL HTTP/2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 29448, version 1.0\012- data
Size
29 kB (29448 bytes)
Hash
e27d5ac8c6b65ef044382651394fae47
86c82324e68383a3489f49e8df639d1ec106e04b
97851eef36494add9813e74e64c29aacd125f298bee582af057da8b11be153e4

HTTP Headers

GET /s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 15:47:19 GMT
expires: Sat, 21 Oct 2023 15:47:19 GMT
cache-control: public, max-age=31536000
age: 541648
last-modified: Mon, 11 Jul 2022 21:20:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFhFTc7Nq6y-r0Yr5dA.woff

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFhFTc7Nq6y-r0Yr5dA.woff
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 23728, version 1.1\012- data
Size
24 kB (23728 bytes)
Hash
b179917d57bd97adbdc1ec5daec0d87a
b1f6756fe274d68f8cca251d8ab3244eaa626b16
4ac46414251e026576c1c9669c889e5387651d6170dc3fc0c6a41250b7b43b0f

HTTP Headers

GET /s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFhFTc7Nq6y-r0Yr5dA.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 18:09:10 GMT
expires: Fri, 27 Oct 2023 18:09:10 GMT
cache-control: public, max-age=31536000
age: 14737
last-modified: Tue, 28 Jun 2022 17:55:09 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVIUx6EQ.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVIUx6EQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11536, version 1.0\012- data
Size
12 kB (11536 bytes)
Hash
c9ef156037f8c08271fd2d593a9f0b59
9e1d134ff42bb06a2d9ded883115cb1a0006abf7
73fe8ab9505321d8aa0052729376531073d9852ba61bfd4e673b02ae588f16e6

HTTP Headers

GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVIUx6EQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 20:13:04 GMT
expires: Tue, 24 Oct 2023 20:13:04 GMT
cache-control: public, max-age=31536000
age: 266503
last-modified: Wed, 11 May 2022 19:25:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/dosis/v26/HhyJU5sn9vOmLxNkIwRSjTVNWLEJ0LQl2xMEbK0UPg.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/dosis/v26/HhyJU5sn9vOmLxNkIwRSjTVNWLEJ0LQl2xMEbK0UPg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15804, version 1.0\012- data
Size
16 kB (15804 bytes)
Hash
6a78e52d163394944759cdd66febb3f6
fda5f27b09a04d48e5c3a28f04fc83b8803b2488
3cbd773d7ac9032afd1fae0244794ed1c8b60e73a21895342ed839191413b36e

HTTP Headers

GET /s/dosis/v26/HhyJU5sn9vOmLxNkIwRSjTVNWLEJ0LQl2xMEbK0UPg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 15:48:25 GMT
expires: Fri, 27 Oct 2023 15:48:25 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:44:07 GMT
content-type: font/woff2
age: 23182
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v27/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrEVJz9d.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v27/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrEVJz9d.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16428, version 1.0\012- data
Size
16 kB (16428 bytes)
Hash
44a89f3e5e132b23d4b3c26fcb298720
e58a0e20956c11404a24e31abeb573702641dc95
faae28e03117a89ff6e83bdfecfa7d930854b3b28e7f5b2d4cb2db877c831780

HTTP Headers

GET /s/raleway/v27/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrEVJz9d.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16428
date: Thu, 27 Oct 2022 22:14:47 GMT
expires: Fri, 27 Oct 2023 22:14:47 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:53:21 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a6e99afc26edeaa6e0ec14ea98868
6909f81a74cb2479794f87397c2c9f7bbe759721
af5090a668f3b5293473c111761ca086d6e77a40cd9b5022d669327736034a4c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-fa7f418e75af47f6b97d38fbca6d1cf0-stylesheet.css

172.64.147.148

200 OK

8.6 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-fa7f418e75af47f6b97d38fbca6d1cf0-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5713), with no line terminators
Size
8.6 kB (8576 bytes)
Hash
b020d69da2858a9a27eaa0fb6794bbcc
f2c115de9da50a0645bfd79d7f464aaa88663b5c
5682a920b9562682c6d9f001767cf8f9b89903d16395a8cfe9db54c67495d142

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-fa7f418e75af47f6b97d38fbca6d1cf0-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62ce7cea-16e4"
last-modified: Wed, 13 Jul 2022 08:06:02 GMT
link: <https://www.elephantpassresort.com/combinedCss/fa7f418e75af47f6b97d38fbca6d1cf0-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9627dea1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-487ed1e8d62865f05c6f2169dc5b2b00-stylesheet.css

172.64.147.148

200 OK

1.3 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-487ed1e8d62865f05c6f2169dc5b2b00-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3324), with no line terminators
Size
1.3 kB (1277 bytes)
Hash
7ec4d42b230b3e2fec587016fc87eb7b
b86f7fd9c5347c889e09509919c6abc4eaeba5f4
7132e8914e81bc18495f87859de1eb244f031b889cd04b907c805f5c04b09125

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-487ed1e8d62865f05c6f2169dc5b2b00-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62c0d69e-d8f"
last-modified: Sat, 02 Jul 2022 23:37:02 GMT
link: <https://www.elephantpassresort.com/combinedCss/487ed1e8d62865f05c6f2169dc5b2b00-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9626ddc1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-c3313efda89c10337d90a3a7d496d39f-stylesheet.css

172.64.147.148

200 OK

4.5 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-c3313efda89c10337d90a3a7d496d39f-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.5 kB (4546 bytes)
Hash
90b72729405cbfed3244eea73db3b3e4
ddfa34d368ab49c96876e2b077aef4baf362f39f
e33614c4fc420cfde65a267a49977d12285b5050a88ad93d2629de1e9afc5dff

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-c3313efda89c10337d90a3a7d496d39f-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62978382-1641"
last-modified: Wed, 01 Jun 2022 15:19:30 GMT
link: <https://www.elephantpassresort.com/combinedCss/c3313efda89c10337d90a3a7d496d39f-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9627df31c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-47ebae9eb598898977ae010082788b51-stylesheet.css

172.64.147.148

200 OK

250 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-47ebae9eb598898977ae010082788b51-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (33906), with CRLF line terminators
Size
250 kB (249883 bytes)
Hash
8b9975a8549a22c383f6d611da694e86
deb03c4673f5aeb228a5eb860d12fa5de61b0db8
81ed07a469a3a9773f5d235fef2e1208a3dc0b13073db52b06e87b1516f656d9

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-47ebae9eb598898977ae010082788b51-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62bd9b01-77995"
last-modified: Thu, 30 Jun 2022 12:45:53 GMT
link: <https://www.elephantpassresort.com/combinedCss/47ebae9eb598898977ae010082788b51-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 19497
server: cloudflare
cf-ray: 760ec9626dd41c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v24/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2

216.58.207.195

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v24/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
57cf39e316b7e79e7cd2c70bdd01c8a0
3cb638f40c93c286c90f8b3bbc179ecd9fd182a5
fab57614b562fa655d1663afa2720078a3b016e0fd780cf7305c06338642516f

HTTP Headers

GET /s/montserrat/v24/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 05:43:15 GMT
expires: Fri, 27 Oct 2023 05:43:15 GMT
cache-control: public, max-age=31536000
age: 59492
last-modified: Tue, 26 Apr 2022 14:37:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

to.getnitropack.com/

194.242.11.186

200 OK

20 B

URL HTTP/2
to.getnitropack.com/
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with no line terminators
Size
20 B (20 bytes)
Hash
c23d32bc84330ad96c990858c2eb1235
3e5b07d19cb12ba27e5777030db284a0abe5209e
a4d2b5c10747a9a02c401ece039329ec75c8a8f1dc4de0c7fb53a4ebde5555e4

HTTP Headers

POST / HTTP/1.1
Host: to.getnitropack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------197003470518948956183347618178
Content-Length: 428
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/html; charset=UTF-8
content-length: 20
server: BunnyCDN-NO-830
cdn-pullzone: 234442
cdn-uid: b7e07321-6c82-48dc-b332-ec6b5d5d2a32
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=0
content-encoding: none
x-powered-by: PHP/7.3.33
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/27/2022 22:14:47
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fd8363f4243cc3b62dea8a69c91478a9
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/cmsmasters-mega-menu/js/nitro-min-077c55c402e433bd26b372a66b2c2179.jquery.megaMenu.js

172.64.147.148

200 OK

1.2 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/cmsmasters-mega-menu/js/nitro-min-077c55c402e433bd26b372a66b2c2179.jquery.megaMenu.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2194), with no line terminators
Size
1.2 kB (1156 bytes)
Hash
e441b8ef95e2bdead2373c05ad04469b
2d69607c5cabb396dd6cc0b532c29d64400316ff
047fcec79d103fdee83ecd110912e3a34783b5d59bc8abfd8aa753c7cd28dff6

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/cmsmasters-mega-menu/js/nitro-min-077c55c402e433bd26b372a66b2c2179.jquery.megaMenu.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-93f"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/cmsmasters-mega-menu/js/jquery.megaMenu.js?ver=1.2.9>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9639eeb1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4cdf16c5333628708fae7b304303fc48
23654b66838aa89e8b975a9e6c0251d2f8f18366
6f3935f102b0dcfee703eb07abcf04d9181fdfe13fae4d7566aed743a00beb9c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 22:14:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-847594148

142.250.74.168

200 OK

53 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-847594148
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1588)
Size
53 kB (52798 bytes)
Hash
d33b70a0dd05b5e2b8f4bb445ec10d94
ff121f66571ed432d46c527c30a70112a8743463
3ca28d0a6b936d3c5092381a1955bbf78522b51576bdc0c05461951213589778

HTTP Headers

GET /gtag/js?id=AW-847594148 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 22:14:47 GMT
expires: Thu, 27 Oct 2022 22:14:47 GMT
cache-control: private, max-age=900
last-modified: Thu, 27 Oct 2022 21:13:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52798
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-77532242-1

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-77532242-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1588)
Size
45 kB (44689 bytes)
Hash
9e2393eb8a0e9793bf43d8bf6329bfb4
009baf5a6c05e21d8674c2c5e67edaafc1d3f129
ed8edeb003a1879d023106251cf57f23dc6afb4cfac44586334bfff9c099d099

HTTP Headers

GET /gtag/js?id=UA-77532242-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 22:14:47 GMT
expires: Thu, 27 Oct 2022 22:14:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44689
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/contact-form-7/modules/recaptcha/nitro-min-04ddcb4cfedbd7a7a2f4e9ef55d20118.index.js

172.64.147.148

200 OK

26 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/contact-form-7/modules/recaptcha/nitro-min-04ddcb4cfedbd7a7a2f4e9ef55d20118.index.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (999), with no line terminators
Size
26 kB (26194 bytes)
Hash
872828590027b38d0303e1478049b340
5c6682a1f2c1ad8788306d5896b4683f29526e01
6c26eff0dfafa6c235a2eb33be9ff69a8a09a0972dcf84f5bff554915b4d2ab3

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/contact-form-7/modules/recaptcha/nitro-min-04ddcb4cfedbd7a7a2f4e9ef55d20118.index.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-495"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6.1>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963df381c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/recaptcha/nitro-min-68e3c696ab8437ee89c3d7a55da5bfc5.api.js

172.64.147.148

200 OK

26 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/recaptcha/nitro-min-68e3c696ab8437ee89c3d7a55da5bfc5.api.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (884), with no line terminators
Size
26 kB (25734 bytes)
Hash
57a7efbfcb6a73f040f2a74a97aa58f9
91cf9d4ffa66958a24b2bb1bc372e16d375472d2
c5df5bcb1bec33a834d0d1075b18df94340f85c4c57b9a5086b0114925fbed93

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/recaptcha/nitro-min-68e3c696ab8437ee89c3d7a55da5bfc5.api.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/javascript; charset=UTF-8
etag: W/"62bd9b02-41e"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.google.com/recaptcha/api.js?render=6LdmadEUAAAAAFY8ny4exROILdGqeNIERS0y2XN7&ver=3.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec963df2e1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.waypoints.min.js

172.64.147.148

200 OK

39 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.waypoints.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7841), with CRLF line terminators
Size
39 kB (38588 bytes)
Hash
3db4b5b1153e7c394d9e333b9b7c8a0d
d6c7c0918465fa21cdba5b89f57b77c112eaf891
4a39750aa532b5dafe4cad63f233cec7ca3902038eff6d02f2ccedcb72f02494

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.waypoints.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-2078"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/waypoints.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963cf221c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/theme-framework/theme-style/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.theme-script.js

172.64.147.148

200 OK

3.0 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/theme-framework/theme-style/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.theme-script.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (11727), with no line terminators
Size
3.0 kB (2968 bytes)
Hash
fa1f29e07c905a36ba322839d7891d0a
8fc8ecb2d6f83deef4fc7d108082a0881924514b
23deb62206b387439ffd2d3b5b7656738cb216e49b55b1947054796efb8286df

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/theme-framework/theme-style/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.theme-script.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-2e90"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/theme-framework/theme-style/js/jquery.theme-script.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963cf261c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-dfc9b0828541ebdeb49b17b70d67e348.comment-reply.min.js

172.64.147.148

200 OK

1.8 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-dfc9b0828541ebdeb49b17b70d67e348.comment-reply.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2949)
Size
1.8 kB (1773 bytes)
Hash
f77092d675ea0bfe72dc8167e9817993
acc31dc4e6ca1f254af10d15df54a0364d5025c1
7360fa346cd3b5ddfd45772aade4272e433503806b166523fb007af4e05f82f0

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-dfc9b0828541ebdeb49b17b70d67e348.comment-reply.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"631ffd17-c3b"
last-modified: Tue, 13 Sep 2022 03:46:31 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/comment-reply.min.js?ver=5.8.5>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963df2d1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit

142.250.74.46

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (26870 bytes)
Hash
4a65b221b36025c6f76fd86d654ca53c
2ace3ee6f1554a64ff1438b105b698b262a659d5
41534567227103335fab57c7e39aacf35a18e7fd6dbc202589fe31d9b04d1f7b

HTTP Headers

GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 27 Oct 2022 22:14:47 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+557; expires=Sat, 26-Oct-2024 22:14:47 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-2c7cef87d91a8c32817cef0915f9141b.wp-polyfill.min.js

172.64.147.148

200 OK

103 kB

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-2c7cef87d91a8c32817cef0915f9141b.wp-polyfill.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (16323)
Size
103 kB (102651 bytes)
Hash
cc23b65071e0d11e0b4c66d561cffdab
c927d0856554c3f60a4aa315a9da4f612c543d65
325fe5195ff23abadfe5db1e53c71470f430d7ef697daba5fb89d5f530c29139

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-2c7cef87d91a8c32817cef0915f9141b.wp-polyfill.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-40f4"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963df351c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4fada07-6e75-444a-8262-1c027c7be385.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9704 bytes)
Hash
1cf038646b6fb2335435f816f2561f3f
5de415be18d7a9186bc05a1dd94e45f40602b76d
9bf84cbfd9d93dc382846bf99b2f3b9a2bc576bea916dcb63c0e5bafabedad88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4fada07-6e75-444a-8262-1c027c7be385.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9704
x-amzn-requestid: 627b33be-c731-45ab-bf35-a801627d2fbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv3EFoVoAMFTnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9c6-152fb7a5440759e165decf98;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cam7WBkoY5EnFffBwxu4eSGzuf3YwmZ3QWSOigTKVjmIbRvGyr2EgA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:41:18 GMT
age: 2011
etag: "5de415be18d7a9186bc05a1dd94e45f40602b76d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.debounced-resize.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.debounced-resize.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.debounced-resize.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-293"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/debounced-resize.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9637ed61c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/revslider/public/assets/js/nitro-min-f542cd334b1ddc3daebe2a16122d45b7.jquery.themepunch.tools.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/revslider/public/assets/js/nitro-min-f542cd334b1ddc3daebe2a16122d45b7.jquery.themepunch.tools.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/revslider/public/assets/js/nitro-min-f542cd334b1ddc3daebe2a16122d45b7.jquery.themepunch.tools.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1b0a2"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9637ecc1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.stellar.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.stellar.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.stellar.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-326e"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/stellar.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963cf201c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.respond.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.respond.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.respond.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-12ef"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/respond.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9638eda1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-839b53ec3bb6b5a572e3d96945bb7440-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-839b53ec3bb6b5a572e3d96945bb7440-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-839b53ec3bb6b5a572e3d96945bb7440-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62bd9b01-7e29"
last-modified: Thu, 30 Jun 2022 12:45:53 GMT
link: <https://www.elephantpassresort.com/combinedCss/839b53ec3bb6b5a572e3d96945bb7440-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9626dcd1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b4e4537ad44425cf273a05cb97fc6dd0-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b4e4537ad44425cf273a05cb97fc6dd0-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b4e4537ad44425cf273a05cb97fc6dd0-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62ce7cea-2f50"
last-modified: Wed, 13 Jul 2022 08:06:02 GMT
link: <https://www.elephantpassresort.com/combinedCss/b4e4537ad44425cf273a05cb97fc6dd0-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9626dde1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/theme-vars/theme-style/css/fonts/8f46a9bd6bf1c089c8513373f6540f43.fontello-custom.ttf

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/theme-vars/theme-style/css/fonts/8f46a9bd6bf1c089c8513373f6540f43.fontello-custom.ttf
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/source/rev-b8c7603/wp-content/themes/hotel-lux/theme-vars/theme-style/css/fonts/8f46a9bd6bf1c089c8513373f6540f43.fontello-custom.ttf HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.elephantpassresort.com
Connection: keep-alive
Referer: https://www.elephantpassresort.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: font/ttf
etag: W/"628fb211-f171"
last-modified: Thu, 26 May 2022 17:00:01 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/theme-vars/theme-style/css/fonts/fontello-custom.ttf?75326912>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9648fcb1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.scrollspy.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.scrollspy.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.scrollspy.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1bc1"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/scrollspy.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963af0a1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-4e7c300ace9779e55b1c9ee7506d6e2f-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-4e7c300ace9779e55b1c9ee7506d6e2f-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-4e7c300ace9779e55b1c9ee7506d6e2f-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62bd9b01-39d"
last-modified: Thu, 30 Jun 2022 12:45:53 GMT
link: <https://www.elephantpassresort.com/combinedCss/4e7c300ace9779e55b1c9ee7506d6e2f-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9626dd81c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-20b9206c1c963aab0ba8a39d912a8419.smooth-sticky.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-20b9206c1c963aab0ba8a39d912a8419.smooth-sticky.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-20b9206c1c963aab0ba8a39d912a8419.smooth-sticky.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1486"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/smooth-sticky.min.js?ver=1.0.2>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963df2c1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/google-language-translator/js/nitro-min-3f2f7d042df596484d905b2b71db535c.scripts.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/google-language-translator/js/nitro-min-3f2f7d042df596484d905b2b71db535c.scripts.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/google-language-translator/js/nitro-min-3f2f7d042df596484d905b2b71db535c.scripts.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1b17"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9639eed1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.request-animation-frame.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.request-animation-frame.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.request-animation-frame.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-437"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/request-animation-frame.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963af091c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.owlcarousel.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.owlcarousel.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.owlcarousel.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-614a"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/owlcarousel.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963af061c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-3601d9521d9e919c9b43d251e839cfab.jquery.iLightBox.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-3601d9521d9e919c9b43d251e839cfab.jquery.iLightBox.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-3601d9521d9e919c9b43d251e839cfab.jquery.iLightBox.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-d4ce"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/jquery.iLightBox.min.js?ver=2.2.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9638edf1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-e50fbe8a2fa81f250e33929f99ec05b7-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-e50fbe8a2fa81f250e33929f99ec05b7-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-e50fbe8a2fa81f250e33929f99ec05b7-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"631ffd17-376ed"
last-modified: Tue, 13 Sep 2022 03:46:31 GMT
link: <https://www.elephantpassresort.com/combinedCss/e50fbe8a2fa81f250e33929f99ec05b7-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9626dd21c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-6c2d074a40553599670a34f2748f727f.layerslider.transitions.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-6c2d074a40553599670a34f2748f727f.layerslider.transitions.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-6c2d074a40553599670a34f2748f727f.layerslider.transitions.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-5419"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.2>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9637ec91c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easing.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easing.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easing.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-fa1"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/easing.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec963aefa1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-eda163fa3f5615b4a4368b51733d3a45.imagesloaded.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-eda163fa3f5615b4a4368b51733d3a45.imagesloaded.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/nitro-min-eda163fa3f5615b4a4368b51733d3a45.imagesloaded.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-168f"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec963af071c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.script.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.script.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.jquery.script.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-5d28"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/jquery.script.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963cf251c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.elephantpassresort.com/

103.76.228.55

200 OK

0 B

URL HTTP/2
www.elephantpassresort.com/
IP
103.76.228.55:0
ASN
#394695 PUBLIC-DOMAIN-REGISTRY

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.elephantpassresort.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:46 GMT
server: Apache
content-type: text/html; charset=UTF-8
cache-control: no-cache
x-nitro-cache: HIT
x-nitro-cache-from: drop-in
vary: user-agent
x-nitro-rev: b8c7603
link: <https://cdn-fjafn.nitrocdn.com>; rel=preconnect, <https://www.elephantpassresort.com/wp-json/>; rel="https://api.w.org/", <https://www.elephantpassresort.com/wp-json/wp/v2/pages/7366>; rel="alternate"; type="application/json", <https://www.elephantpassresort.com/>; rel=shortlink
x-cache-ctime: 1664899455
content-encoding: gzip
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b65d762097097cd1eef82b9462adf606-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b65d762097097cd1eef82b9462adf606-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-b65d762097097cd1eef82b9462adf606-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62d6dad1-685b8"
last-modified: Tue, 19 Jul 2022 16:24:49 GMT
link: <https://www.elephantpassresort.com/combinedCss/b65d762097097cd1eef82b9462adf606-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9625dca1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/revslider/public/assets/js/nitro-min-f542cd334b1ddc3daebe2a16122d45b7.jquery.themepunch.revolution.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/revslider/public/assets/js/nitro-min-f542cd334b1ddc3daebe2a16122d45b7.jquery.themepunch.revolution.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-fe78"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9637ed01c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-af6cb5bfb91ce2d78377e57c8d18ffc0.jquery.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-af6cb5bfb91ce2d78377e57c8d18ffc0.jquery.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-af6cb5bfb91ce2d78377e57c8d18ffc0.jquery.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b01-15e44"
last-modified: Thu, 30 Jun 2022 12:45:53 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9634e881c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easy-pie-chart.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easy-pie-chart.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.easy-pie-chart.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-106d"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/easy-pie-chart.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963af021c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.mousewheel.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.mousewheel.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.mousewheel.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-57e"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/mousewheel.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963af031c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.modernizr.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.modernizr.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-8a5471f88ca9c58e18cea05ebc9fe21a.modernizr.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-3d8d"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/modernizr.min.js?ver=1.0.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9637ed71c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-6c2d074a40553599670a34f2748f727f.layerslider.kreaturamedia.jquery.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-6c2d074a40553599670a34f2748f727f.layerslider.kreaturamedia.jquery.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1e9ee"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.2>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9636eae1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-b36a884fdbbbba2533f2492b22f2f849.regenerator-runtime.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-b36a884fdbbbba2533f2492b22f2f849.regenerator-runtime.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/dist/vendor/nitro-min-b36a884fdbbbba2533f2492b22f2f849.regenerator-runtime.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-19ac"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963df311c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-d6171631e2919215b5e490dc93564c56.jquery-migrate.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-d6171631e2919215b5e490dc93564c56.jquery-migrate.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-includes/js/jquery/nitro-min-d6171631e2919215b5e490dc93564c56.jquery-migrate.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b01-2c73"
last-modified: Thu, 30 Jun 2022 12:45:53 GMT
link: <https://www.elephantpassresort.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9635e951c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-b3a60e4d602da9f04eb745de045196b0.greensock.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/plugins/LayerSlider/static/layerslider/js/nitro-min-b3a60e4d602da9f04eb745de045196b0.greensock.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1c827"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec9635ea51c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-27daef0c14ad50dab7ea456fe9935c08-stylesheet.css

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-27daef0c14ad50dab7ea456fe9935c08-stylesheet.css
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/combinedCss/nitro-min-noimport-27daef0c14ad50dab7ea456fe9935c08-stylesheet.css HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: text/css
etag: W/"62ce7cea-23fd"
last-modified: Wed, 13 Jul 2022 08:06:02 GMT
link: <https://www.elephantpassresort.com/combinedCss/27daef0c14ad50dab7ea456fe9935c08-stylesheet.css>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 760ec9627df21c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-e7f0aef1210f737ba350d958f909a51e.jquery.tweet.min.js

172.64.147.148

200 OK

0 B

URL HTTP/2
cdn-fjafn.nitrocdn.com/kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-e7f0aef1210f737ba350d958f909a51e.jquery.tweet.min.js
IP
172.64.147.148:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /kmWWMxHouuahwxCOJQDhrKQHGweznnvF/assets/static/optimized/rev-b8c7603/wp-content/themes/hotel-lux/js/nitro-min-e7f0aef1210f737ba350d958f909a51e.jquery.tweet.min.js HTTP/1.1
Host: cdn-fjafn.nitrocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.elephantpassresort.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 27 Oct 2022 22:14:47 GMT
content-type: application/javascript
etag: W/"62bd9b02-1e92"
last-modified: Thu, 30 Jun 2022 12:45:54 GMT
link: <https://www.elephantpassresort.com/wp-content/themes/hotel-lux/js/jquery.tweet.min.js?ver=1.3.1>; rel="canonical"
vary: Accept-Encoding
cache-control: max-age=31536000, public
access-control-allow-origin: *
cf-cache-status: HIT
age: 23182
server: cloudflare
cf-ray: 760ec963cf281c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations