Report - tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php

Report Overview

Submitted URL
tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php
IP
192.124.249.69
ASN
#30148 SUCURI-SEC
Submitted
2022-09-28 02:44:23
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
www.tunngavik.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	1.3 MB	192.124.249.69
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	7.0 kB	142.250.74.3
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	690 B	142.250.74.164
tunngavik.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	946 B	1.6 kB	192.124.249.69
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	2.3 kB	192.124.249.41
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	34 kB	142.250.74.74
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.43.46.140
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	77 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	934 B	49 kB	142.250.74.163
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	21 kB	142.250.74.174
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	477 B	746 B	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-28	medium	tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php	Phishing
2022-09-28	medium	tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php	Phishing
2022-09-28	medium	www.tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	www.tunngavik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 09:01:40 Times Seen31805 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=2.9.7.1	8.9 kB	2023-03-07	2024-01-11
Pretty URL www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=2.9.7.1 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:40:05 Last Seen2024-01-11 13:11:34 Times Seen15 Hash 1d55076341ab3624e74daf1d00482fa6 e7a037993bd2f9c7fda50312eff10ae1f044d477 957ef61ed673d4dbd93d51b3e05b0c5eb3ff5467f87f80db07694b94089f1781 Loading...

	www.tunngavik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 09:01:40 Times Seen68581 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.tunngavik.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	16 kB	2023-03-07	2024-04-21
Pretty URL www.tunngavik.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-21 18:55:17 Times Seen1693 Hash 38400d9c6ba7d41239fccfaa9f523558 fe9a1548961441ce82e5399444f2be5408d2644c 293913879d30bab7499013e935009f5183facbddd63bfc9656a859622590b80b Loading...

	www.tunngavik.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20171218	6.1 kB	2023-03-07	2024-01-22
Pretty URL www.tunngavik.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20171218 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:48 Last Seen2024-01-22 16:31:27 Times Seen397 Hash 205a9f5fc8043e7b6b06ad20c4690de2 7a0f335ada046fd60c8a67bb00d7836fec178424 bd82cac24cbdef5b83f92479a62813edddc8f515353bfa0e3e774f30f6327254 Loading...

	www.tunngavik.com/	310 B	2023-03-08	2023-03-29
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-29 22:21:33 Times Seen2 Hash 4e023ed4f41537d0224c25f2a832d2a5 1bab33155c0560ccc7f90ac6869f27d66e96f60f 8995252a6e55975b5a0d6e63412aa69cb2d18085b404b329dd0b342050b76969 Loading...

	www.tunngavik.com/	141 B	2023-03-08	2023-03-29
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-29 22:21:33 Times Seen2 Hash a8302c7fe94efc3b97b6b82537c9fe47 09fd185172e1c6f4781b1aabc220bd816749c7ae dcae50a72d56a640da1a6dfe218ad7751c82f4df6f74fedf3738b5a669f0e81e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	www.tunngavik.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7	6.4 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-24 02:44:08 Times Seen3660 Hash 8fe2803a01c9fa77cb1a2618c3552dce 2230dd8f0604e4328e7c2a3f9437a6bf2986f592 e87a1c5e24f9a7c7dcb437417f0b05b0a3c12947ce32d65c990c988a8b5ed4d7 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js	93 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-24 07:39:11 Times Seen16784 Hash e0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e Loading...

	www.tunngavik.com/	391 B	2023-03-08	2023-03-29
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-29 22:21:33 Times Seen2 Hash 59673648f34d014367f491a3937ba04f 2c3fb191ba5f97891c6f345ed3c5963716885a6d 224b6ecf2becbce2ad414169d758f6bc96f1ced9468a778cb9b19280abba7350 Loading...

	www.tunngavik.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.75.6	3.2 kB	2023-03-07	2024-04-23
Pretty URL www.tunngavik.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.75.6 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-23 16:16:44 Times Seen936 Hash 92a77854e7be2f0cf4350123adf6e4d2 8ac459501bf94deb660ddd844ac0b825f169b9ae 03d87f337bb68d971d9fdb8ed746c0ab6f4008e6060e63ed67057f444a05a6a6 Loading...

	www.tunngavik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5	18 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 09:01:40 Times Seen12582 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	www.tunngavik.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.5	999 B	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.5 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-24 04:45:45 Times Seen11029 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c Loading...

	www.tunngavik.com/wp-includes/js/wp-embed.min.js?ver=5.8.5	1.4 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-includes/js/wp-embed.min.js?ver=5.8.5 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-24 01:38:20 Times Seen6873 Hash 905225d5711b559d3092387d5ffbedbd 6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991 Loading...

	www.tunngavik.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5	9.7 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-24 04:45:45 Times Seen4631 Hash cfb428c02811f0cbe515d5f3dca61de6 e95f8696fbe29a706e66ccf582b36d9bd650ab9f 679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78 Loading...

	www.tunngavik.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6	25 kB	2023-03-07	2024-04-24
Pretty URL www.tunngavik.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:44 Last Seen2024-04-24 03:14:06 Times Seen2631 Hash a1ade95e21102c15d71ee475ac3818f6 13c693d748d12cc673b292261adf54b4ce0c10db d455ab882af3a742e6c9680578e6a590681bda99e34847f550f1f41a7d167969 Loading...

	www.tunngavik.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-08 04:04:04 Times Seen1 Hash 0d8d65be19294069e372d65eb5e08124 cf010b2c8054755e4766253fdf311f3f45414ee8 4ee540a9458ca78c5c897f5f5e60e2b5c84c0aa97909af79938692087272e284 Loading...

	www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=2.9.7.1	316 B	2023-03-07	2024-02-12
Pretty URL www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=2.9.7.1 IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:41 Last Seen2024-02-12 14:55:07 Times Seen168 Hash d3f35e758c92fdd01ed6f4abbe928337 3294d0e6ee2712beb2c3b4d5965e310dbb8bf866 2cc9244e23a9cb8c4e4328c1cacb124544871e6bc864c4b8cf5efb56ee4a562f Loading...

	www.tunngavik.com/	187 B	2023-03-08	2023-03-29
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-29 22:21:33 Times Seen2 Hash 71e8ce2412106d143796a27f754b5b17 e0a1da131b1f88a7e82a65f7cb51282a8f46a6b4 30843cdbc6d9cf70e6a05f9440772c5f7e45bc1adda2ca8b0117bcc94247df70 Loading...

	www.tunngavik.com/	105 B	2023-03-08	2023-03-29
Pretty URL www.tunngavik.com/ IP 192.124.249.69 ASN #30148 SUCURI-SEC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:51:42 Last Seen2023-03-29 22:21:33 Times Seen2 Hash 5bb46b6dbf331ad2dc1da2948320abb2 a7a82ed1bd4c9f5b40aa2dba19bdbf7cf24808aa 27bb7efe73da05cf44ad4898ab929df03152f359de1748e5921f1b48a2aad67e Loading...

HTTP Transactions (87)

URL IP Response Size

tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php

192.124.249.69

301 Moved Permanently

162 B

URL HTTP/1.1
tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php HTTP/1.1
Host: tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 02:44:12 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19019
Location: https://tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 02:15:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VrfN-D3tAnQ46qg7h5cfmKuOcHmvtSdfUErbxPE8Jhh-Pgk-kSo4Xg==
Age: 1715

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Wed, 28 Sep 2022 04:04:06 GMT
Date: Wed, 28 Sep 2022 02:44:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3098
Expires: Wed, 28 Sep 2022 03:35:50 GMT
Date: Wed, 28 Sep 2022 02:44:12 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Md5fDcr7C1E8qT/BtgsjpoQNmWafpYJ2NR6MuL0m+x6DQT6K1VMZsHud9ca9wFsEoJOPfyxNnwA=
x-amz-request-id: HF74NRJBT15S2KEJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 01:47:10 GMT
age: 3422
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.41

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.41:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
807a168f2eedb166309a309f76fa3827
c6c233a820b517084bb42620753fc2ac2f66ab6a
65745495b81f0c5392f69a671fb9d511a45ac8d2514d0bb48fdfafeb7a66773a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 02:44:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 20:28:23 GMT
Expires: Wed, 28 Sep 2022 20:28:23 GMT
ETag: "c6c233a820b517084bb42620753fc2ac2f66ab6a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 02:10:46 GMT
Expires: Wed, 28 Sep 2022 02:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XWYKCNSSiqBm2tsEqVaduGEKSiCkchSwllo3Q1Jf97GWo63G55O0Ew==
Age: 2006

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5754
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:13 GMT
Last-Modified: Wed, 28 Sep 2022 01:08:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.46.140

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.46.140:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Vm71O1MsZScXuZcp55FSWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HRwZaKIY5RWOnLZwRjcsCZ0rLfg=

tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php

192.124.249.69

301 Moved Permanently

20 B

URL HTTP/2
tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php HTTP/1.1
Host: tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Sep 2022 02:44:13 GMT
content-type: text/html; charset=UTF-8
content-length: 20
location: https://www.tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
set-cookie: qtrans_front_language=en; expires=Thu, 28-Sep-2023 02:44:13 GMT; Max-Age=31536000; path=/; HttpOnly; SameSite=Lax; secure
pdb-sess=b24d5e133a5f2fad126927b693188ed8; path=/; secure
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-tag: 84d1_HTTP.404,84d1_HTTP.301
x-redirect-by: WordPress
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 02:44:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 02:44:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 02:44:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3063
Expires: Wed, 28 Sep 2022 03:35:16 GMT
Date: Wed, 28 Sep 2022 02:44:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11314 bytes)
Hash
ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 18204
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yW-bGn5vYTa6Z28ELKYgYpy98wQEbYJIl5yxd1qLxz1YjVYKxMH2Wg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:31:02 GMT
age: 69191
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12016 bytes)
Hash
4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 17983
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9733 bytes)
Hash
f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:55:01 GMT
age: 78552
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14018 bytes)
Hash
d039db0b842a4cbbaefdaab98bc6722b
78b1a603c4f7f2d6fbad15d7a4cd1397554339e9
65a3c7b0515cfd2a723f3bc3147cb98f3dd75ce1ecfce915c7c8e9ba5ae0bf2d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb17f4e8-cf01-41dc-8d4d-247daf3e0160.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14018
x-amzn-requestid: fb0f02e7-1ce0-4861-9446-13d60df06f24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xSEhCIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-79f482493d204a1208fad00f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZAov4fpWAjIBhHfeYEwu39wJTG58HnW7ebekpIoNSgA7PLIs5b7sSg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:09:19 GMT
age: 16494
etag: "78b1a603c4f7f2d6fbad15d7a4cd1397554339e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8500 bytes)
Hash
6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 17830
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php

192.124.249.69

302 Found

20 B

URL HTTP/2
www.tunngavik.com/documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /documents/beneficiaryProgramForms/pastForms/2008/517610c5cc94aa430dad0f17fdd68ede/login.php HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 02:44:14 GMT
content-type: text/html; charset=UTF-8
content-length: 20
location: https://www.tunngavik.com
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
set-cookie: qtrans_front_language=en; expires=Thu, 28-Sep-2023 02:44:14 GMT; Max-Age=31536000; path=/; HttpOnly; SameSite=Lax; secure
pdb-sess=cb9e03dd9c9ac987d0849933123cb52e; path=/; secure
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-litespeed-tag: 84d1_HTTP.404,84d1_HTTP.302
x-redirect-by: WordPress
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5

192.124.249.69

200 OK

10 kB

URL HTTP/2
www.tunngavik.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
Unicode text, UTF-8 text, with very long lines (33376)
Size
10 kB (9960 bytes)
Hash
cf64bd69df964ad7baacebb5f165288e
3b43b33729294f0378142606559dac91d56919f8
f8d581c3f1abb40a8a24d79f47abe7b7b4ea24207160d0e260d06ca0cdebcb19

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 9960
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 07 Sep 2021 12:32:41 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5

192.124.249.69

200 OK

848 B

URL HTTP/2
www.tunngavik.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text
Size
848 B (848 bytes)
Hash
c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 848
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:37:33 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/css/styles.css?ver=2.9.7.1

192.124.249.69

200 OK

18 kB

URL HTTP/2
www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/css/styles.css?ver=2.9.7.1
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (65536), with no line terminators
Size
18 kB (18142 bytes)
Hash
d40e9352c75dbea07430e4b5312bb00b
a13db13f639a34084496b1e9281696c769eccc9b
64250e82f984c964509ddb0c50687ee2e1a1e983e28b8d843e50371b9b26c9b3

HTTP Headers

GET /wp-content/plugins/feed-them-social/feeds/css/styles.css?ver=2.9.7.1 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 18142
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:38:10 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/wp-polls/polls-css.css?ver=2.75.6

192.124.249.69

200 OK

640 B

URL HTTP/2
www.tunngavik.com/wp-content/plugins/wp-polls/polls-css.css?ver=2.75.6
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text
Size
640 B (640 bytes)
Hash
75faff79e5b96023d7b72b8175d45c10
ac96d894d2fe4b91376abee11ead105d6d4acbf1
3d3be4dda727830bfb4dadb59a1d170812ea5b19bf0ff99e8f5f33d45b6ef2fb

HTTP Headers

GET /wp-content/plugins/wp-polls/polls-css.css?ver=2.75.6 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 640
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 04 Mar 2021 08:05:52 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/twentyfourteen/style.css?ver=5.8.5

192.124.249.69

200 OK

14 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/twentyfourteen/style.css?ver=5.8.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (417)
Size
14 kB (13878 bytes)
Hash
d1c9e931febe401c1c9aad2906206fc3
9cb6fe847e27d2fa9c8f96f0754ddc32212e6798
79457f6ea3a4cf1dcbe0a820f9536b756ad8a416ffdb6e3bb6f240d5d23503df

HTTP Headers

GET /wp-content/themes/twentyfourteen/style.css?ver=5.8.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 13878
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:42:05 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/style.css?ver=1614852253

192.124.249.69

200 OK

11 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/style.css?ver=1614852253
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
assembler source, ASCII text, with very long lines (362)
Size
11 kB (10816 bytes)
Hash
599210cd754cb6d74d0ede7a4a6796f1
e3883a9d5db9e4ff82097eb10e542e0001657507
db34b7097d1bdcf9e7d7cd8f33b09ef99d5b0c202011266b88935d457dd78f2e

HTTP Headers

GET /wp-content/themes/nti/style.css?ver=1614852253 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 10816
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 04 Mar 2021 10:04:13 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/style_current-initiative-site.css

192.124.249.69

200 OK

1.2 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/style_current-initiative-site.css
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
assembler source, ASCII text
Size
1.2 kB (1243 bytes)
Hash
c0bb73352dc811302883da067563841f
51f60969c44fbe2b511e34c0dfe450d6965e8de2
ec3dcd36128b924b837990a227fa08bf04f837c0288cd06af01c88856802aad8

HTTP Headers

GET /wp-content/themes/nti/style_current-initiative-site.css HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 1243
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 16 Jan 2017 11:54:49 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3

192.124.249.69

200 OK

19 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (23046)
Size
19 kB (18872 bytes)
Hash
3148cc3d22eaed3a3a76b19d9fdc4a00
f3d2c531509fd4f621dea0d12d3f03625d5f3733
d98c9de78b5efa8e434531b2b4e08a950b06a7a3615cbe918a57b988fc609934

HTTP Headers

GET /wp-content/themes/twentyfourteen/genericons/genericons.css?ver=3.0.3 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 18872
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:42:05 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/twentyfourteen/css/blocks.css?ver=20190102

192.124.249.69

200 OK

1.5 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/twentyfourteen/css/blocks.css?ver=20190102
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text
Size
1.5 kB (1532 bytes)
Hash
55ff09f04cd1d46d55696c6f728a23e9
4b25dc641cd147d9d3af0ab79b0be47f4ae36097
a7b94d2dceb1bdc72813dcbc713403c7c61d08e932b64ed53bfa62708e88f631

HTTP Headers

GET /wp-content/themes/twentyfourteen/css/blocks.css?ver=20190102 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 1532
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:42:05 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

192.124.249.69

200 OK

30 kB

URL HTTP/2
www.tunngavik.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (65447)
Size
30 kB (30273 bytes)
Hash
34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 30273
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 07 Sep 2021 12:32:43 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.124.249.69

200 OK

4.0 kB

URL HTTP/2
www.tunngavik.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 3995
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 17 May 2021 06:58:37 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=2.9.7.1

192.124.249.69

200 OK

187 B

URL HTTP/2
www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=2.9.7.1
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (316), with no line terminators
Size
187 B (187 bytes)
Hash
5f54567eca91d90b21a772debec4320c
7e432552c5f7089fa4a838a4eb38642bcae3d49e
ba4defd27e61341d42e70cf04be0f91e9ae5235ea632604eb3a94677995e5049

HTTP Headers

GET /wp-content/plugins/feed-them-social/feeds/js/powered-by.js?ver=2.9.7.1 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 187
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:38:10 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=2.9.7.1

192.124.249.69

200 OK

2.1 kB

URL HTTP/2
www.tunngavik.com/wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=2.9.7.1
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (8872), with no line terminators
Size
2.1 kB (2136 bytes)
Hash
7531987f103c692728835aa5d2640538
14ed437cbc5ab15cfe70670df70c37b9b1037273
54cc5467a71f044b346897d42faa23d316a349377d62280473808f3bd56714cd

HTTP Headers

GET /wp-content/plugins/feed-them-social/feeds/js/fts-global.js?ver=2.9.7.1 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 2136
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:38:10 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7

192.124.249.69

200 OK

2.3 kB

URL HTTP/2
www.tunngavik.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (6406), with no line terminators
Size
2.3 kB (2308 bytes)
Hash
0a5d2d9461ad0dc29cdb0fbab916277d
2705d5ae926519a3bd371ceb07d2851236331a76
46cc96bf94441771fa1b64edd72c60408c5fc863142234f1906238b363dc4325

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 2308
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 07 Sep 2021 12:32:43 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

192.124.249.69

200 OK

5.8 kB

URL HTTP/2
www.tunngavik.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
Unicode text, UTF-8 text, with very long lines (16323)
Size
5.8 kB (5805 bytes)
Hash
54751d4cd4f7fd32b25850ef8ad71fc6
47e74afa81675e761838a6eb5bc70ad9c7d47528
8f3249357e3247b7f0efc468ee2f421f5fd2ee1856af1e37f9e8dd1867753eba

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 5805
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 07 Sep 2021 12:32:43 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5

192.124.249.69

200 OK

3.1 kB

URL HTTP/2
www.tunngavik.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
HTML document, ASCII text, with very long lines (9720), with no line terminators
Size
3.1 kB (3050 bytes)
Hash
7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 3050
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:37:33 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.75.6

192.124.249.69

200 OK

572 B

URL HTTP/2
www.tunngavik.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.75.6
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (3242), with no line terminators
Size
572 B (572 bytes)
Hash
888e34b22b3d97179ba76a27bc55afb4
63917ce09a089a6e2d5f982d8b24a2c09e999440
b5474709b55b852c247ba50f3dfcee6f14ad7af2cef5a1aadef4ba326da58f36

HTTP Headers

GET /wp-content/plugins/wp-polls/polls-js.js?ver=2.75.6 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 572
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 04 Mar 2021 08:05:52 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20171218

192.124.249.69

200 OK

1.9 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/twentyfourteen/js/functions.js?ver=20171218
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text
Size
1.9 kB (1943 bytes)
Hash
99119c5443f8dc80b1232f36f1108daa
52af9cf4a719a6bb4ec70eaf8d96a61855c7eec3
d0efa74163a364de47468e5cd9d34e11a4a5eb475a536c8e9697167460c2067b

HTTP Headers

GET /wp-content/themes/twentyfourteen/js/functions.js?ver=20171218 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 1943
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:42:05 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6

192.124.249.69

200 OK

8.6 kB

URL HTTP/2
www.tunngavik.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Size
8.6 kB (8563 bytes)
Hash
68595c6cc0dcbfdacf99bc94ff77ad86
2b2719f3d55566841af05dacf068dc2d3c10dcce
5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce

HTTP Headers

GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 8563
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Jan 2022 17:12:18 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.5

192.124.249.69

200 OK

439 B

URL HTTP/2
www.tunngavik.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (999), with no line terminators
Size
439 B (439 bytes)
Hash
941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 439
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:37:33 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/NTI%20logo-coloured-nofade_blue.png

192.124.249.69

200 OK

20 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/NTI%20logo-coloured-nofade_blue.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19620 bytes)
Hash
9716a60dce4b321ebbf4bd451a3ab909
36f660672f650bafead1398ee30f12b1bca2ede2
b90fbed2ec5665e34557e302a5313b23d490158c2bc01ff0f68385cb95a9db37

HTTP Headers

GET /wp-content/themes/nti/images/NTI%20logo-coloured-nofade_blue.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 19620
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 05 Nov 2015 10:16:31 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/twitter.png

192.124.249.69

200 OK

1.2 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/twitter.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1211 bytes)
Hash
3ca11b83450df80898b3c402f1d556fd
5a8e06fc3da019693bda6cf9bdce99403e1d2058
997e00f95d46f90e51e9fab53c7acae79ee12a49d6b9822a66ab2030dc691de9

HTTP Headers

GET /wp-content/themes/nti/images/twitter.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 1211
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:50 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/facebook.png

192.124.249.69

200 OK

2.3 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/facebook.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2254 bytes)
Hash
5f200e5116f5c405c5b9767b0b6ea833
29274d1653d7d9099f5850b41092f0168e00d94e
57b88f1f1d7e5656fb9c3022fabba65261329401e705d0c7373d37f32a3b1624

HTTP Headers

GET /wp-content/themes/nti/images/facebook.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2254
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:44 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/rss_button.png

192.124.249.69

200 OK

2.1 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/rss_button.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2059 bytes)
Hash
3e60a9b5717a2eedf73a358dc301a9dd
efb2b3c4764c67c77bd31fe1d104e591c2e0e4ef
c65ccbcab85b95093198f4a92460c8f8deb35c8659dd21ac6c9fa09307d9cf5c

HTTP Headers

GET /wp-content/themes/nti/images/rss_button.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2059
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:56 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/call_button.png

192.124.249.69

200 OK

2.4 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/call_button.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2351 bytes)
Hash
ef76147aa592f37a5fbabcc879f297d7
39e0f94fc043110bd8bf100187cbf8da682eb4df
6ced6eb49005f29e0bce36d8852b120bc3cc1920c44f7b066ca6b6983532f972

HTTP Headers

GET /wp-content/themes/nti/images/call_button.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2351
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:43 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/email.png

192.124.249.69

200 OK

1.9 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/email.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1948 bytes)
Hash
60e832ee74fb23e9a14b41058643b9b3
bc4bf709460e94ad5038317d0879ea6b9d9f54f9
be8d74cb773c6ef583991f84564c73ff4ed8e8ef58cb940fe014578ac1fb805b

HTTP Headers

GET /wp-content/themes/nti/images/email.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 1948
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:36:04 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/contact.png

192.124.249.69

200 OK

2.4 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/contact.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2400 bytes)
Hash
98f6ed4cba2229deb3087d1ff4900627
6553ee7be9dbae71432123b397c9aa0dec0e29cf
15ddefb4bcd1d0e2c1478179d323f3fc7294bb55967f59aa64e6bda99e664aa4

HTTP Headers

GET /wp-content/themes/nti/images/contact.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2400
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:51 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/link.png

192.124.249.69

200 OK

1.8 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/link.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1773 bytes)
Hash
37835aca9fb121de8b2701fc84c09ea6
906c2907de2d008888d5806b8d3c83af452b4471
cca5f698d58ecfff3f4915cefc8ec65d37a4caaddd14d15ec6eda49d9a5c74c6

HTTP Headers

GET /wp-content/themes/nti/images/link.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 1773
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 14 Feb 2019 16:36:15 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/images/address.png

192.124.249.69

200 OK

2.6 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/images/address.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2630 bytes)
Hash
9f5c075f830883c5b0d17be808f6499e
b0474c78a773fd267f732cbdcaac33936ced747e
06d0f8cff0bf008e8b089cd623f498cacf8b8ce16674ec1d52643feebe8575bb

HTTP Headers

GET /wp-content/themes/nti/images/address.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2630
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 20 Dec 2014 14:35:45 GMT
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-includes/js/wp-embed.min.js?ver=5.8.5

192.124.249.69

200 OK

663 B

URL HTTP/2
www.tunngavik.com/wp-includes/js/wp-embed.min.js?ver=5.8.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (1391)
Size
663 B (663 bytes)
Hash
992198ff853eb696f88bb0ec8586d015
a6262428de1b6c68cccf617d2a503f5a3bd3aecd
ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.8.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 663
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 16 Apr 2021 00:55:13 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tunngavik.com/wp-content/themes/twentyfourteen/style.css

192.124.249.69

200 OK

14 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/twentyfourteen/style.css
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (417)
Size
14 kB (13878 bytes)
Hash
d1c9e931febe401c1c9aad2906206fc3
9cb6fe847e27d2fa9c8f96f0754ddc32212e6798
79457f6ea3a4cf1dcbe0a820f9536b756ad8a416ffdb6e3bb6f240d5d23503df

HTTP Headers

GET /wp-content/themes/twentyfourteen/style.css HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/wp-content/themes/nti/style.css?ver=1614852253
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: text/css
content-length: 13878
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 18 Feb 2022 13:42:05 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js

142.250.74.74

200 OK

33 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32072)
Size
33 kB (32954 bytes)
Hash
d38e2944bbc9ae54b8947a2bd0b9a932
782a825679b248d38979c2d7ecae257873344437
65a0917567cb7037612cf420629873f2f3594d2e741aaadf90d893d07d8f5fdd

HTTP Headers

GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tunngavik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:17:53 GMT
expires: Mon, 25 Sep 2023 18:17:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 203183
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6LfJVqYUAAAAAFa19Zr5Rk9G-SV0C6rwM7ZSYtWA&ver=3.0

142.250.74.164

400 Bad Request

119 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6LfJVqYUAAAAAFa19Zr5Rk9G-SV0C6rwM7ZSYtWA&ver=3.0
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
119 B (119 bytes)
Hash
96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0

HTTP Headers

GET /recaptcha/api.js?render=6LfJVqYUAAAAAFa19Zr5Rk9G-SV0C6rwM7ZSYtWA&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tunngavik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 28 Sep 2022 02:44:16 GMT
expires: Wed, 28 Sep 2022 02:44:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tunngavik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5

192.124.249.69

200 OK

4.5 kB

URL HTTP/2
www.tunngavik.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.5
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
ASCII text, with very long lines (15224)
Size
4.5 kB (4539 bytes)
Hash
3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.5 HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: application/javascript
content-length: 4539
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 07 Sep 2021 12:32:49 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.tunngavik.com/wp-content/themes/nti/fonts/canter_bold.otf

192.124.249.69

200 OK

12 kB

URL HTTP/2
www.tunngavik.com/wp-content/themes/nti/fonts/canter_bold.otf
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
OpenType font data\012- data
Size
12 kB (11644 bytes)
Hash
1f0dc87b8ff2dfdeb7dc78d42da821be
646dbb74f041b03e7ad4ecb35991af8e2dcc6c70
ff5b5b0cbd58414fb93621883741468d1b3053c1503163b3973f87bd5f08b3a9

HTTP Headers

GET /wp-content/themes/nti/fonts/canter_bold.otf HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/wp-content/themes/nti/style.css?ver=1614852253
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: font/otf
content-length: 11644
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Sat, 20 Dec 2014 14:36:08 GMT
content-encoding: br
vary: Accept-Encoding
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tunngavik.com/files/2014/11/JAK.jpg

192.124.249.69

200 OK

12 kB

URL HTTP/2
www.tunngavik.com/files/2014/11/JAK.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Size
12 kB (11635 bytes)
Hash
a39ccead9b9ec4912ccd70435ff7b6a7
c7e13df0fbe6732c71b4dbfbea7bbaa88ac87ebc
d437ff399658b2dfb9c16424f0c8e2c2e02d2054b2f782584fba41f51fc78979

HTTP Headers

GET /files/2014/11/JAK.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 11635
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Tue, 06 Jan 2015 09:06:13 GMT
etag: "29fefefe35aa10f6d3d70ba455f023fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.163

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tunngavik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 34435
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2

142.250.74.163

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Size
23 kB (23236 bytes)
Hash
716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tunngavik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:17:26 GMT
expires: Wed, 27 Sep 2023 17:17:26 GMT
cache-control: public, max-age=31536000
age: 34010
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.tunngavik.com/files/2021/03/covid-profile-1.jpg

192.124.249.69

200 OK

22 kB

URL HTTP/2
www.tunngavik.com/files/2021/03/covid-profile-1.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Created with GIMP", progressive, precision 8, 300x225, components 3\012- data
Size
22 kB (21457 bytes)
Hash
0ade189ad2de3a416ec420e63f38b0dd
0ecb5023702bdbcf0f7d512c146aa5915596862b
bbc24cf71db567f58caf10e0f59f7d0ce2499e2ddffafd9f8883c4dd7c128a20

HTTP Headers

GET /files/2021/03/covid-profile-1.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 21457
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Mon, 15 Mar 2021 15:19:42 GMT
etag: "9ea7c1b65595bc0ad2c04529b21a49b7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2019/02/FI-nlca.jpg

192.124.249.69

200 OK

56 kB

URL HTTP/2
www.tunngavik.com/files/2019/02/FI-nlca.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=GIMP 2.8.22, datetime=2019:02:22 17:48:32], progressive, precision 8, 300x225, components 3\012- data
Size
56 kB (55886 bytes)
Hash
98272c2458dcb7f6fcfa39751c47f192
0644d00176bba15bb32d45aace5ef6fef318ce7d
c2247f5cb05beb9405f39020f9b45915dba219c0d70c2c3389c4c10573f6fd81

HTTP Headers

GET /files/2019/02/FI-nlca.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 55886
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Fri, 22 Feb 2019 16:48:42 GMT
etag: "09e58af0175b0c16c34a625784295b32"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2020/10/EldersInitiativeFeaturedImg1.jpg

192.124.249.69

200 OK

12 kB

URL HTTP/2
www.tunngavik.com/files/2020/10/EldersInitiativeFeaturedImg1.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x225, components 3\012- data
Size
12 kB (12502 bytes)
Hash
babe49c24f84257ad7f1a99f5499cba4
dc5357cde42d11ee00d242b7bec61b0eb97d6dd0
993866372478f9ca5e79e8bcfc98c48e7488d214a9f4fe3c92eb22bfb56174ca

HTTP Headers

GET /files/2020/10/EldersInitiativeFeaturedImg1.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 12502
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Thu, 04 Mar 2021 10:19:20 GMT
etag: "f3f7c288414a000b3fc39dbc532cdb19"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2019/04/nilfa-300x225-3.jpg

192.124.249.69

200 OK

59 kB

URL HTTP/2
www.tunngavik.com/files/2019/04/nilfa-300x225-3.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, manufacturer=NIKON CORPORATION, model=NIKON D3100, xresolution=164, yresolution=172, resolutionunit=2, software=GIMP 2.8.22, datetime=2019:04:26 11:17:14], comment: "AppleMark", progressive, precision 8, 300x225, components 3\012- data
Size
59 kB (58900 bytes)
Hash
17f50e51a5b7ab5657f292a71d226309
0b492c8d1aeca509bb91834fa9b56bc0d802f166
a777a13904c42dcda92374d8d8b1167521531afa7124f2ef2a5161b4e350b567

HTTP Headers

GET /files/2019/04/nilfa-300x225-3.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 58900
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Fri, 26 Apr 2019 09:17:32 GMT
etag: "bb2a6385eca3323ad6d3bcf975d8af9a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2019/02/FI-ifr.jpg

192.124.249.69

200 OK

53 kB

URL HTTP/2
www.tunngavik.com/files/2019/02/FI-ifr.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, manufacturer=NIKON CORPORATION, model=NIKON D70s, orientation=upper-left, xresolution=164, yresolution=172, resolutionunit=2, software=GIMP 2.8.22, datetime=2019:02:22 17:52:06], progressive, precision 8, 300x225, components 3\012- data
Size
53 kB (52913 bytes)
Hash
f4d72799ba1efba78e01eae923b5c437
e5204995f19cf2a3bb7c4228b2194c2898b34f92
0b5d5c04b8cd08214445dc1124f84622dc94fa5fa65a3fb983ac8ac645f1bb6d

HTTP Headers

GET /files/2019/02/FI-ifr.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 52913
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Fri, 22 Feb 2019 16:55:49 GMT
etag: "7338985898252cb6d749b1c6f74aa4de"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2016/04/FI-taima.jpg

192.124.249.69

200 OK

31 kB

URL HTTP/2
www.tunngavik.com/files/2016/04/FI-taima.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "File source: http://commons.wikimedia.org/wiki/File:Iqaluit_stop_sign.jpg", progressive, precision 8, 300x225, components 3\012- data
Size
31 kB (30923 bytes)
Hash
17ee748b0ed2c08d58fe8119efc22745
fd9e9363d16bd531d451aa30764c916502fbbe17
08f3f819d60b66f55f5259e1f390115ebd18cb94934560a213d5b768691ebc9c

HTTP Headers

GET /files/2016/04/FI-taima.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 30923
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Fri, 22 Feb 2019 16:43:08 GMT
etag: "7145a6cde6cd48153367df98f5f6acf4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2016/06/enrollment.jpg

192.124.249.69

200 OK

19 kB

URL HTTP/2
www.tunngavik.com/files/2016/06/enrollment.jpg
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x236, components 3\012- data
Size
19 kB (18703 bytes)
Hash
c712f28355e07d8224b76a3a062cc795
38fec3388278863411a13305d398d6ac3c5fa038
6bb6582ccf9abd6a8bc28f6f0816e60ee3e0148a8e494c01843f27aa3d83f955

HTTP Headers

GET /files/2016/06/enrollment.jpg HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/jpeg
content-length: 18703
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Tue, 21 Jun 2016 13:50:34 GMT
etag: "676bd9786fca1beef36446558de9fbf0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2019/02/landsImg-sunset.png

192.124.249.69

200 OK

625 kB

URL HTTP/2
www.tunngavik.com/files/2019/02/landsImg-sunset.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 1037 x 378, 8-bit/color RGBA, non-interlaced\012- data
Size
625 kB (624982 bytes)
Hash
7abb43a0e74aa225523abc6881ffffb7
cef036b93385868c226463747fd065f37fa1906c
2969cd800e8b8106b5265add7fff856903903155c0f7dfd09aec390bb5d0e3b6

HTTP Headers

GET /files/2019/02/landsImg-sunset.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 624982
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Thu, 14 Feb 2019 16:56:33 GMT
etag: "99a65d2da9fc1a834121fb64c538f764"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tunngavik.com/files/2018/03/ntf-ci.png

192.124.249.69

200 OK

124 kB

URL HTTP/2
www.tunngavik.com/files/2018/03/ntf-ci.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 300 x 225, 8-bit/color RGBA, non-interlaced\012- data
Size
124 kB (124427 bytes)
Hash
fd456a88af4af8efad5c9ea92578ba73
2f9460f54e8aaf25ab0967b62e5143842372a09c
96a6ff85b0adfe969da53dc2cbd2849b57dac8e049b04575ed8e1658a8c9c3ae

HTTP Headers

GET /files/2018/03/ntf-ci.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 124427
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Fri, 02 Mar 2018 14:05:22 GMT
etag: "0e253573ef9fa5bbaa87a02d6ec14187"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

www.tunngavik.com/files/2016/09/cropped-NTI-site-icon-2-32x32.png

192.124.249.69

200 OK

2.9 kB

URL HTTP/2
www.tunngavik.com/files/2016/09/cropped-NTI-site-icon-2-32x32.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2868 bytes)
Hash
182e695f07b2c7bc6d803e383f4f26b0
6e10725317c5702d498dbddac8293c49bb929d0d
d04363b1ff9c174e35edb465ac25e6defbfadae8f4ce8bf2c507c90938e6f480

HTTP Headers

GET /files/2016/09/cropped-NTI-site-icon-2-32x32.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:16 GMT
content-type: image/png
content-length: 2868
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Tue, 20 Sep 2016 08:23:18 GMT
etag: "a9c7b27985068b77b1161925343e90a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tunngavik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 02:41:09 GMT
expires: Wed, 28 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 187
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 02:44:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j97&a=2140022107&t=pageview&_s=1&dl=https%3A%2F%2Fwww.tunngavik.com%2F&ul=en-us&de=UTF-8&dt=Nunavut%20Tunngavik%20Inc.%20-%20Inuit%20economic%2C%20social%20and%20cultural%20well-being%20through%20the%20implementation%20of%20the%20Nunavut%20Land%20Claims%20Agreement.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=835801773&gjid=537593040&cid=180905660.1664333054&tid=UA-27721762-1&_gid=2072705834.1664333054&_r=1&_slc=1&z=418678665

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j97&a=2140022107&t=pageview&_s=1&dl=https%3A%2F%2Fwww.tunngavik.com%2F&ul=en-us&de=UTF-8&dt=Nunavut%20Tunngavik%20Inc.%20-%20Inuit%20economic%2C%20social%20and%20cultural%20well-being%20through%20the%20implementation%20of%20the%20Nunavut%20Land%20Claims%20Agreement.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=835801773&gjid=537593040&cid=180905660.1664333054&tid=UA-27721762-1&_gid=2072705834.1664333054&_r=1&_slc=1&z=418678665
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j97&a=2140022107&t=pageview&_s=1&dl=https%3A%2F%2Fwww.tunngavik.com%2F&ul=en-us&de=UTF-8&dt=Nunavut%20Tunngavik%20Inc.%20-%20Inuit%20economic%2C%20social%20and%20cultural%20well-being%20through%20the%20implementation%20of%20the%20Nunavut%20Land%20Claims%20Agreement.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=835801773&gjid=537593040&cid=180905660.1664333054&tid=UA-27721762-1&_gid=2072705834.1664333054&_r=1&_slc=1&z=418678665 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.tunngavik.com
Connection: keep-alive
Referer: https://www.tunngavik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.tunngavik.com
date: Wed, 28 Sep 2022 02:44:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.tunngavik.com/files/2016/09/cropped-NTI-site-icon-2-192x192.png

192.124.249.69

200 OK

61 kB

URL HTTP/2
www.tunngavik.com/files/2016/09/cropped-NTI-site-icon-2-192x192.png
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
61 kB (60658 bytes)
Hash
981eaf27175e978d17c8169937ee02e4
cd80c4ad62c9e2356f59eefda4f4141ef2ae31ef
50070f4c9084bce8f32c8d061f78faedc3195342dc4b13a6fc382810c6a65ee3

HTTP Headers

GET /files/2016/09/cropped-NTI-site-icon-2-192x192.png HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:17 GMT
content-type: image/png
content-length: 60658
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
last-modified: Tue, 20 Sep 2016 08:23:18 GMT
etag: "a9c7b27985068b77b1161925343e90a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: REVALIDATED
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6721 bytes)
Hash
c4a66beda24621e812a929933c52025d
e951f6b11e473b68d2fdd95b822cef120d37b1eb
28efb1495fdb363cea9ccc6c38f84b2731dbd44dd4dbbe42996fa6fab74e1ce6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: ea4416a4-ffbe-4006-bb09-aa0a70763ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xTGNOoAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-6634cd372bd677227f755769;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TlEcmqE03c_aVOwGbXRCTsU5MOTiUF4C93U3zcIVqzg6NCGJJGup7A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:09:10 GMT
age: 16510
etag: "e951f6b11e473b68d2fdd95b822cef120d37b1eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.tunngavik.com/page/2/

192.124.249.69

200 OK

24 kB

URL HTTP/2
www.tunngavik.com/page/2/
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type
data
Size
24 kB (24501 bytes)
Hash
f6ef1bed76da11cb08411602a8b402ea
982fd813b1c539c3a0f27dfe24fd773a556ac428
8a79cbd2e8b5a8faeb69cc61ab02e0bb82b822e90e52de78e225973d85e148a8

HTTP Headers

GET /page/2/ HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.tunngavik.com/
X-Moz: prefetch
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e; _ga=GA1.2.180905660.1664333054; _gid=GA1.2.2072705834.1664333054; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:18 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
set-cookie: qtrans_front_language=en; expires=Thu, 28-Sep-2023 02:44:17 GMT; Max-Age=31536000; path=/; HttpOnly; SameSite=Lax; secure
x-litespeed-tag: 84d1_HTTP.200
link: <https://www.tunngavik.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato%3A300%2C400%2C700%2C900%2C300italic%2C400italic%2C700italic&subset=latin%2Clatin-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tunngavik.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 02:44:16 GMT
date: Wed, 28 Sep 2022 02:44:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.tunngavik.com/

192.124.249.69

200 OK

0 B

URL HTTP/2
www.tunngavik.com/
IP
192.124.249.69:0
ASN
#30148 SUCURI-SEC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: www.tunngavik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en; pdb-sess=cb9e03dd9c9ac987d0849933123cb52e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 02:44:15 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19019
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains; preload
set-cookie: qtrans_front_language=en; expires=Thu, 28-Sep-2023 02:44:15 GMT; Max-Age=31536000; path=/; HttpOnly; SameSite=Lax; secure
x-litespeed-tag: 84d1_HTTP.200
link: <https://www.tunngavik.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations