Report - jordanzraven.pages.dev/

Report Overview

Visited public
2024-07-30 18:39:38
Tags
URL
jordanzraven.pages.dev/
Finishing URL
jordanzraven.pages.dev/
IP / ASN
172.66.44.194
#13335 CLOUDFLARENET
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
jordanzraven.pages.dev	unknown	2020-09-02	2023-09-06 09:29:58	2024-03-11 20:55:36	12 kB	745 kB	172.66.44.194
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2024-07-30 07:11:49	676 B	1.9 kB	143.204.53.97
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-07-29 18:12:11	981 B	2.7 kB	23.36.76.249
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2024-07-30 08:57:45	3.0 kB	297 kB	188.114.97.1
pl16907464.highrevenuegate.com	unknown	2023-03-02	2023-07-04 11:23:46	2024-01-29 14:36:33	456 B	32 kB	192.243.59.13
bellowframing.com	unknown	2024-06-30	2024-07-01 09:15:09	2024-07-29 03:29:52	8.1 kB	13 kB	172.240.253.132
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-07-29 18:12:26	975 B	2.1 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-07-29 18:16:10	418 B	7.6 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-07-30 03:11:43	1.1 kB	33 kB	142.250.74.67
pl17601119.highrevenuegate.com	unknown	2023-03-02	2023-04-23 21:45:10	2024-02-05 08:51:23	456 B	13 kB	192.243.59.20
manureinforms.com	unknown	2024-07-01	2024-07-03 14:05:23	2024-07-29 19:19:16	490 B	467 B	192.243.59.12
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27 13:27:45	2024-07-29 19:59:01	421 B	375 B	172.240.253.132
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2024-07-29 19:59:02	1.5 kB	943 B	192.243.61.227
recordedthereby.com	unknown	2024-05-08	2024-05-14 07:24:53	2024-07-29 19:59:01	818 B	173 kB	188.114.96.1
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-29 18:12:12	2.9 kB	8.0 kB	23.36.77.32
tse1.mm.bing.net	7917	1997-09-03	2014-03-13 15:42:52	2024-07-29 18:25:56	4.7 kB	523 kB	150.171.27.10
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2024-07-29 19:59:01	445 B	429 B	52.57.71.154
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29 18:47:27	2024-07-30 08:57:44	509 B	2.4 kB	104.26.6.19

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-30	medium	unseenreport.com	Sinkholed
2024-07-30	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	jordanzraven.pages.dev/	ScriptElement	3.0 kB	2023-10-13	2024-08-21
Pretty URL jordanzraven.pages.dev/ IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-13 13:35 Last Seen2024-08-21 04:52 Times Seen14 Hash 89b85e9a4a8e361ddb7b8d0aaed5701c ffe5f9bab07793dc622bb768255e3dbb6e97b07e a11c432b3f412bba4229539850a411786b746da8e858fd72a58d1302a4aceee1 Loading...

	pl16907464.highrevenuegate.com/70/fc/c4/70fcc49edd080ac52f417ceb88fa752a.js	ScriptElement	84 kB	2024-08-19	2024-08-19
Pretty URL pl16907464.highrevenuegate.com/70/fc/c4/70fcc49edd080ac52f417ceb88fa752a.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash edd0e66d77515b7fa53c8ef68ffff845 bb988eb6d33eb76155f2782774bf3565983afcd0 306801b4e6bd71494452ac5ad0cf80afa0719df7e4d8aff18b527bea4ed51b0e Loading...

	jordanzraven.pages.dev/wp-includes/js/masonry.min.js?ver=4.2.2	ScriptElement	24 kB	2023-03-07	2025-06-18
Pretty URL jordanzraven.pages.dev/wp-includes/js/masonry.min.js?ver=4.2.2 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:13 Times Seen9515 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2024-05-17	2025-01-21
Pretty URL recordedthereby.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17 16:43 Last Seen2025-01-21 11:22 Times Seen13574 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	capaciousdrewreligion.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-06-18
Pretty URL capaciousdrewreligion.com/advertisers.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-18 06:22 Times Seen5000112 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	ScriptElement	2.2 kB	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 2d538375872c6271f472b7def984b237 9d3d5d0a742805648eaf1f3ae0d2ad5d27baacb9 d80fe610f507e1e7dbd10a71ba032b023a6ed18834e9c46478c8d7ad2b9469f0 Loading...

	jordanzraven.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-06-18
Pretty URL jordanzraven.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-06-18 06:06 Times Seen113591 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	jordanzraven.pages.dev/	ScriptElement	348 B	2023-11-08	2024-08-20
Pretty URL jordanzraven.pages.dev/ IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 11:37 Last Seen2024-08-20 20:25 Times Seen3 Hash 5500073619720dee244a46b4fc4d0f9a 24736fb445a2b6360b16f5ee933af9c57d3fabd7 38886d9c6b7666cc6a664d8446a4c98c1fbc32c6a00a7b7db2171d46c4f91d3f Loading...

	jordanzraven.pages.dev/wp-content/themes/acumen/js/keyboard-image-navigation.min.js?ver=20230905-140245	ScriptElement	248 B	2024-08-19	2024-11-22
Pretty URL jordanzraven.pages.dev/wp-content/themes/acumen/js/keyboard-image-navigation.min.js?ver=20230905-140245 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-22 11:12 Times Seen2 Hash ef4ffb6af3059d2f667d25b0757a108b f5f712e4c3c8b461b2955b7dad402c3c1f56c612 ba42e08a835ca4052732e1b4d1b0102f49c6ff8b561325db5efe7a1aba0387df Loading...

	jordanzraven.pages.dev/wp-includes/js/imagesloaded.min.js?ver=4.1.4	ScriptElement	5.6 kB	2023-03-07	2025-06-18
Pretty URL jordanzraven.pages.dev/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 04:55 Times Seen11380 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	jordanzraven.pages.dev/	ScriptElement	74 B	2023-07-04	2024-08-21
Pretty URL jordanzraven.pages.dev/ IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-04 11:24 Last Seen2024-08-21 04:52 Times Seen13 Hash c4dab8fd808ac118ba1e4d5b6b4bc5a4 177d413400bb195acdb60b2e4252d1114df93365 a744ec0839f2f9f6d2702f303817d0653f98bfec9d7d67409ef616b8aeb4e24e Loading...

	jordanzraven.pages.dev/wp-content/themes/acumen/js/skip-link-focus-fix.min.js?ver=20230905-140245	ScriptElement	325 B	2023-03-07	2025-06-18
Pretty URL jordanzraven.pages.dev/wp-content/themes/acumen/js/skip-link-focus-fix.min.js?ver=20230905-140245 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-06-18 00:38 Times Seen1827 Hash 06f019a6ff09db6b297570940eec1d5d 872efe186950ce534aad341e7030fe24f7c672dc 53f829ae556bf7011727483015d83a98bcdb4b5796eecb728827c1282c971536 Loading...

	pl17601119.highrevenuegate.com/c8/30/e6/c830e61dc7b13dddffbcf2286546b8d3.js	ScriptElement	29 kB	2024-08-19	2024-08-19
Pretty URL pl17601119.highrevenuegate.com/c8/30/e6/c830e61dc7b13dddffbcf2286546b8d3.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 90c9d620df201696c503bfdb259c141f 3c9d1b6a0c05d7cc054a0f5a6dc4c055d3fcdacc 1e93b6ade7c3636f920e998db3bec08d10b1855f08f2ffbe1ace92a394d31f65 Loading...

	jordanzraven.pages.dev/wp-content/themes/acumen/js/functions.min.js?ver=20230905-140245	ScriptElement	4.8 kB	2024-08-19	2024-11-22
Pretty URL jordanzraven.pages.dev/wp-content/themes/acumen/js/functions.min.js?ver=20230905-140245 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-22 11:12 Times Seen2 Hash 5524e33c2f7f38c7c5544f3fff18a9e8 c8079a51decf39c0df1366abd6e4b9de26c6bb02 40f725a0ab2ce6a81361a69a76c6c3fcdb53b1db7aa1cdbb65f76e4da859b3a8 Loading...

	jordanzraven.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-06-13	2025-06-18
Pretty URL jordanzraven.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-06-18 04:51 Times Seen26242 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	jordanzraven.pages.dev/	ScriptElement	121 B	2024-08-19	2024-11-22
Pretty URL jordanzraven.pages.dev/ IP 172.66.44.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 15:14 Last Seen2024-11-22 11:12 Times Seen2 Hash 49a2a2d7064e1afbbdea403d4daa674a f0457b83161c8c9548a729091e010d892ef96ec3 6afd836f197061bb2a973d918dd646b81414eb7a501b87d2fa027bc0eb4256f4 Loading...

HTTP Transactions (77)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1d047e3b166ee35938a43c55f20ee111
7880600b5415b4843047ef21d177aed6d4ad053f
61a47554eb6db3ac87779825845d4d458efeeb1c1833c7e9af01e2fd6014e4cb

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "61A47554EB6DB3AC87779825845D4D458EFEEB1C1833C7E9AF01E2FD6014E4CB"
Last-Modified: Mon, 29 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9282
Expires: Tue, 30 Jul 2024 21:13:51 GMT
Date: Tue, 30 Jul 2024 18:39:09 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
eb8b5a3f62f8ead7f86e028723019196
8941f16c283439f44a148ba7668a67a55aba16de
f76a44ac993c568fcdac2165655a7886f3207e980286b7605a48dc897e4fd68b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F76A44AC993C568FCDAC2165655A7886F3207E980286B7605A48DC897E4FD68B"
Last-Modified: Mon, 29 Jul 2024 18:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4847
Expires: Tue, 30 Jul 2024 19:59:56 GMT
Date: Tue, 30 Jul 2024 18:39:09 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7335e53b6e780bcc46feb27b6421e625
d5405503dbb1d5d734473133fdd449be49ef8ef0
3fe77d2e06518aee992b779c45a0b57d1353d7e9232e57d99d79bfdfaa488e34

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3FE77D2E06518AEE992B779C45A0B57D1353D7E9232E57D99D79BFDFAA488E34"
Last-Modified: Mon, 29 Jul 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Tue, 30 Jul 2024 21:36:37 GMT
Date: Tue, 30 Jul 2024 18:39:10 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
00599d2586dd7bc94597291537a481ae
13c2d4ddb37b39106e478de2de141a7063468dd7
7eb46bd061b6fbb7c5bf83417fd63fa53f987178c15fb5e57ae7ab0240feebc7

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7EB46BD061B6FBB7C5BF83417FD63FA53F987178C15FB5E57AE7AB0240FEEBC7"
Last-Modified: Mon, 29 Jul 2024 18:57:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14839
Expires: Tue, 30 Jul 2024 22:46:29 GMT
Date: Tue, 30 Jul 2024 18:39:10 GMT
Connection: keep-alive

tse1.mm.bing.net/th?q=Csumb%20Fall%202024%20Calendar

150.171.27.10

200 OK

75 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Csumb%20Fall%202024%20Calendar
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x587, components 3
Size
75 kB (74744 bytes)
Hash
6d9d82efe98447633b94272ec8bff080
b11a1ba98566a199ce4822437afbac2204c71829
8f3b8847538d834295167de86d1771d93cd4e1d14ea7d77508c1cd9b84db395f

HTTP Headers

GET /th?q=Csumb%20Fall%202024%20Calendar HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 74744
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6EF539CD255445C9B8F8B46D715BBF93 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:10 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=Blank%202024%20Calendar%20Printable%20Pdf

150.171.27.10

200 OK

59 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Blank%202024%20Calendar%20Printable%20Pdf
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x613, components 3
Size
59 kB (58919 bytes)
Hash
bc3224a977495db1fbd308099a188b05
5f45ea3ccee885b23ce9b71bef8fb4551eee5c91
7e332b4ee05c8f860a34f8de79fd962fff7a648d9f58b4f8819777ae2a988362

HTTP Headers

GET /th?q=Blank%202024%20Calendar%20Printable%20Pdf HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 58919
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 27E9CA2B756C4AE4B77CF75C209E60F1 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:10 GMT
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1

172.66.44.194

200 OK

15 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (53449)
Size
15 kB (14716 bytes)
Hash
03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.1 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5dca238fed54e896000b2a0195fc50de"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FMa4Jl%2BlYU0SkJ8h0Hd%2B4AyEU2HyOss6qTRnsRzCb3NMJZkPTKBV6xXbO4JVJlxZKqAwTyNtYfF5PayjHwVGT0qNoSNo6GZZyDehtm3APFtl5N7mKtLDWYWTylsfWCNY6LSJHTSByyC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784cfb4c56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a0312122c6c5f7546dfbb93949040a9b
ec0a6b2719d7ef9f330e4943bf5402c171cd295e
13a8d4c2b22144aae11c77a503336e51c7f38a7f7ab834618ae2662a7d795056

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "13A8D4C2B22144AAE11C77A503336E51C7F38A7F7AB834618AE2662A7D795056"
Last-Modified: Mon, 29 Jul 2024 18:52:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7549
Expires: Tue, 30 Jul 2024 20:45:00 GMT
Date: Tue, 30 Jul 2024 18:39:11 GMT
Connection: keep-alive

pl17601119.highrevenuegate.com/c8/30/e6/c830e61dc7b13dddffbcf2286546b8d3.js

192.243.59.20

200 OK

12 kB

URL GET HTTP/1.1
pl17601119.highrevenuegate.com/c8/30/e6/c830e61dc7b13dddffbcf2286546b8d3.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjecthighrevenuegate.com
FingerprintA4:28:3B:47:BB:E9:15:B5:6C:F5:7E:5C:4A:89:E1:F5:BB:BA:0F:0F
ValidityWed, 26 Jun 2024 09:59:59 GMT - Tue, 24 Sep 2024 09:59:58 GMT

File type
JavaScript source, ASCII text, with very long lines (28963), with no line terminators
Size
12 kB (12171 bytes)
Hash
90c9d620df201696c503bfdb259c141f
3c9d1b6a0c05d7cc054a0f5a6dc4c055d3fcdacc
1e93b6ade7c3636f920e998db3bec08d10b1855f08f2ffbe1ace92a394d31f65

HTTP Headers

GET /c8/30/e6/c830e61dc7b13dddffbcf2286546b8d3.js HTTP/1.1
Host: pl17601119.highrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 18:39:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3278_sb=1; expires=Tue, 06 Aug 2024 18:39:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 482d8bae764f8ff8d78313c47676d81f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pl16907464.highrevenuegate.com/70/fc/c4/70fcc49edd080ac52f417ceb88fa752a.js

192.243.59.13

200 OK

31 kB

URL GET HTTP/1.1
pl16907464.highrevenuegate.com/70/fc/c4/70fcc49edd080ac52f417ceb88fa752a.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjecthighrevenuegate.com
FingerprintA4:28:3B:47:BB:E9:15:B5:6C:F5:7E:5C:4A:89:E1:F5:BB:BA:0F:0F
ValidityWed, 26 Jun 2024 09:59:59 GMT - Tue, 24 Sep 2024 09:59:58 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30704 bytes)
Hash
edd0e66d77515b7fa53c8ef68ffff845
bb988eb6d33eb76155f2782774bf3565983afcd0
306801b4e6bd71494452ac5ad0cf80afa0719df7e4d8aff18b527bea4ed51b0e

HTTP Headers

GET /70/fc/c4/70fcc49edd080ac52f417ceb88fa752a.js HTTP/1.1
Host: pl16907464.highrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 18:39:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 10e802aeb5ee443b3d8075854bf72e14
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

172.66.44.194

200 OK

7.7 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: font/woff2
content-length: 7748
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "bb17e458d195348d2c89141f6363e4fe"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pHLRiOrA7TyozSp9NFn1gH%2Bd0jWJsTzpu%2BS6ibsjNlyBVuMpDdYJMXBxbevA19%2F%2BxWqT%2FwYyUSBiDTG1Zh3LQlSovxxlwR8WE5kOkbW4SgJV8Oou4fP9yRMNuDAG7Wk1rUMsqnfnt7wF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778533b9456a5-OSL
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/themes/acumen/images/header-image.jpg

172.66.44.194

200 OK

143 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/images/header-image.jpg
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x800, components 3
Size
143 kB (142862 bytes)
Hash
3c2635d24dbd3ae25094041aafc2768f
f615e9e480cdd9b7ec6718e6e78bd45580a24063
6a6c6b3196c7b81cca2ab97a6e23f22ce6585b0b44af7c74854b90e3b1472b3b

HTTP Headers

GET /wp-content/themes/acumen/images/header-image.jpg HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: image/jpeg
content-length: 142862
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1ae6309e07e0720a77781fd48866012d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MmdNgB0q05LRL%2F%2Bga%2BERKYt77bO%2F0Ir9SkcEW2KqZi6PXxpO77jva2JdW6%2FzuIjrnKR3ZxTseLGjk4IbzwIzXWA7iBR5EitREkwLpiIAviA76lUTRd155cXpsONv5vX9lE87Gwb4th4B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778533b8a56a5-OSL
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfecg.woff2

172.66.44.194

200 OK

7.9 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: font/woff2
content-length: 7884
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9cc0158c2f34a9bbf8afb6f59f1b7194"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z1%2FNbXuNmo40POeZN9j5zwNJ72Jx1CxED4sPgigVxiJ9OKOe6gcKElNH3ojlNE7dkKsA1jZf6iVorNpAtvVB5%2F%2B%2BomkScav9SNpuYNU0cNmDZ%2F00d0Dxnl2J5pqfeOPAlECy85R%2BGI1Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778533b9e56a5-OSL
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

172.66.44.194

200 OK

83 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
83 kB (83239 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"ff416357a541c2641e2808b797569af3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1TKcidkMSbmQ4T9Ez0NGLvGu2UdyUbM7WDTWGYpKBBXwZWcALctUyS9IyBRaX663cZuD0R%2BrohRNdneNhWBxeayatCA8PZS9R9%2BGfPV6jZx5yogIjjeu8kGqg2gG443pxukQxoSQ9xSU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b6656a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/plugins/wp-author-date-and-meta-remover/css/entrymetastyle.css?ver=1.0

172.66.44.194

200 OK

8.0 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/plugins/wp-author-date-and-meta-remover/css/entrymetastyle.css?ver=1.0
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text
Size
8.0 kB (8021 bytes)
Hash
ed8e0debcc5d5da76c2fb558b74d6442
81854bb3b2c2950543466cca29719184ef8c5b5c
e8456c6f58105dfef69d2e2e3213aca84019d8e1a9ab5766e2951ad9693b5ebb

HTTP Headers

GET /wp-content/plugins/wp-author-date-and-meta-remover/css/entrymetastyle.css?ver=1.0 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"778814af68f9e82706e2f2f9337e92b5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q5upGq3v%2B9vms0yrFO9Xxr51em7UaAHCC3IBHS8B%2BauthgnM%2BOAMskd%2FBqyMZkMq1P5w6Om%2B3PC82HM0dNo5RjU4O7%2FDm5o8tyECKBn%2FkJ%2BBbf1ZpcsJ5lNwEB9JhKP%2B%2BjEn%2FtN1DRII"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d1b7e56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

172.66.44.194

200 OK

8.0 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: font/woff2
content-length: 8000
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "c993c65c430077ccae90b3e7e5eb4f62"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c5vEMZtG9ys11nXkQKb%2FAGj2Zvghmjjp8BKk7oyrcKsvpZzlyD2Rr9bUVb2pCI6gnzKxN7Aes0Is421MdO0ZOcSikonMAzCyK%2BOTaoEQcXJ71VjYtIkarBX9gn4%2FerYyclHP350nX5cE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778536bc156a5-OSL
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/themes/acumen/js/keyboard-image-navigation.min.js?ver=20230905-140245

172.66.44.194

200 OK

52 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/js/keyboard-image-navigation.min.js?ver=20230905-140245
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with no line terminators
Size
52 kB (52337 bytes)
Hash
ef4ffb6af3059d2f667d25b0757a108b
f5f712e4c3c8b461b2955b7dad402c3c1f56c612
ba42e08a835ca4052732e1b4d1b0102f49c6ff8b561325db5efe7a1aba0387df

HTTP Headers

GET /wp-content/themes/acumen/js/keyboard-image-navigation.min.js?ver=20230905-140245 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7081b04e043bfb63c748cd24ca3764c4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WlayP0GN5qJv8EFNARitxQ%2BQW1fsEI53Fo8QPZYjRpwKq3A2xfTIJ2L85sYp%2BmD4j8%2F5rZmcYeDIv3P0Va9SBg%2B9%2B5DgMXzB2H9Wtm%2Fky7zGXtGiOAyzIUkMY9xADeBpMkt%2BwkOXORi%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d3b9956a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ba6bed681df063f144d836ea77436891
aabf96f7e343901eb15fbb1e2d54feb66eb49dc4
46c999942731168837b51bcdcbfb37308f0ac1164779d7ae5299da432a45c5fa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 30 Jul 2024 18:39:12 GMT
Last-Modified: Tue, 30 Jul 2024 18:23:48 GMT
Server: ECAcc (ska/F757)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GlcP7AMZ9G1KoVsIkxRHDea8N5aoirExNwGRn2s7d-pbOSmWbPT6Yg==
Age: 924

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ba6bed681df063f144d836ea77436891
aabf96f7e343901eb15fbb1e2d54feb66eb49dc4
46c999942731168837b51bcdcbfb37308f0ac1164779d7ae5299da432a45c5fa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 30 Jul 2024 18:39:12 GMT
Last-Modified: Tue, 30 Jul 2024 18:16:33 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VhysddpuadBHUHKOaGyoNt-u8puj7DZ3ZM2wr0w49uoYpWGV3yXFlg==
Age: 1360

proftrafficcounter.com/stats

52.57.71.154

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.57.71.154:443
ASN
#16509 AMAZON-02

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
c1221ea7bea971929c4e90f1487548ce
30e3c7e6c47a9199ddbfecb1e0410cc545438033
1e8eb2ab95e20843306059cba3e2a2ddee8cb344509edc48a8ef67219e1e4a99

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://jordanzraven.pages.dev
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=1be03681-6e85-4439-9933-3767646d4e1b:3:1; expires=Fri, 28 Jul 2034 18:39:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-content/themes/acumen/css/blocks.min.css?ver=20230905-140245

172.66.44.194

200 OK

2.3 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/css/blocks.min.css?ver=20230905-140245
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (10646), with no line terminators
Size
2.3 kB (2257 bytes)
Hash
6e05db55fb2dedc0b9179e61f3528502
7d5047bf30b39c2b5269c6227652ce3a75f656d8
1864e28eac0888b7743da37cc13e61fadc6d67babe3c4e337d4feae574b16c24

HTTP Headers

GET /wp-content/themes/acumen/css/blocks.min.css?ver=20230905-140245 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2d1d596bb1a56bc02872f6f8dcab4be9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hWgJzmosthsTfSkgCN3zy74QSHpTJDaMaIMB93OOlUI0xWN2%2B1nZhTfwyV9KGtNPWXcwBYMEG8Zc4gC41wTLYL7k%2FwuwLPD%2Ba1U%2Bgw61W02VNklZq2qzFSP3MZEEUZYCaLWhx%2BzJyeh1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b5b56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tse1.mm.bing.net/th?q=Cavalier%20King%20Charles%20Calendar%202024

150.171.27.10

200 OK

41 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Cavalier%20King%20Charles%20Calendar%202024
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x474, components 3
Size
41 kB (40701 bytes)
Hash
7eddcf24a4dea42e080690e4eea14d9d
3034730e15b61bcd22e280cbdeb09ed6371ba2a2
32e39933bb6f5b4ce8a5e116e8c5c8d3d503d0a6c0b2ae8065ee236647ee2d21

HTTP Headers

GET /th?q=Cavalier%20King%20Charles%20Calendar%202024 HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 40701
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CBA5005379FF401CA8C31463DE74582A Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=Printable%20One%20Year%20Calendar%202024

150.171.27.10

200 OK

39 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Printable%20One%20Year%20Calendar%202024
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x366, components 3
Size
39 kB (38731 bytes)
Hash
ea381f3aa04b4d7f210cb98195162fa0
319fff42a6b432bc431690f894b4605522bb9ce8
65dade1861a6af99a8b28ca516f7b1fc61eb6da925eb1fcf60fa8fe4d4083fa0

HTTP Headers

GET /th?q=Printable%20One%20Year%20Calendar%202024 HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 38731
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 75EA82A2BC4846B6BE320E272160BD1B Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=Image%20Of%20June%202024%20Calendar

150.171.27.10

200 OK

25 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Image%20Of%20June%202024%20Calendar
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x359, components 3
Size
25 kB (24671 bytes)
Hash
fc1d338dbe9cdc79cf44808ebfc08b9f
61ca72c3ea1c016a901b2449dff4634581ab9767
4124b059f77531f3380e219012ad280a861400f182d7a36443fbd0792531cc12

HTTP Headers

GET /th?q=Image%20Of%20June%202024%20Calendar HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 24671
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BE3F35714072476D846114C0A4379CF8 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6608b75d5b626414acdc091e5e60adec
39c9ce31a7ba2b0746174159c1083cc3d23c4c9a
397872dcca6a5fef000bdee957923be8bef74067d1ce4c0baa7f46bc20b6ecf6

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "397872DCCA6A5FEF000BDEE957923BE8BEF74067D1CE4C0BAA7F46BC20B6ECF6"
Last-Modified: Mon, 29 Jul 2024 19:01:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10978
Expires: Tue, 30 Jul 2024 21:42:10 GMT
Date: Tue, 30 Jul 2024 18:39:12 GMT
Connection: keep-alive

tse1.mm.bing.net/th?q=Bu%202024%20Calendar

150.171.27.10

200 OK

52 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Bu%202024%20Calendar
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x353, components 3
Size
52 kB (51734 bytes)
Hash
1c71c1ff4b1d3210786a743b2067ced0
ca3228796a37b91a4c40b10b7a50a7ff2456dab6
352482e8a43d4888cadb76f1322442e99cc735c893da1f11f577d5f636e500d6

HTTP Headers

GET /th?q=Bu%202024%20Calendar HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 51734
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F521A265A65C4651B628CF37665588F5 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=Custom%20Pocket%20Calendar%202024

150.171.27.10

200 OK

40 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Custom%20Pocket%20Calendar%202024
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x474, components 3
Size
40 kB (40247 bytes)
Hash
a078a69890ac7cf49beb774ede03ac4e
0dd2d906a247b2c8ff5870c61f32ac1b41e4f29f
f5f2c51dc30097427b2a89d1b603f57b7689d19848d363c64ee4d2060680efc1

HTTP Headers

GET /th?q=Custom%20Pocket%20Calendar%202024 HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 40247
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E382C265096147AF97B3084B0240DFD6 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:12Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=Fnaf%202024%20Calendar

150.171.27.10

200 OK

62 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=Fnaf%202024%20Calendar
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x474, components 3
Size
62 kB (62346 bytes)
Hash
765138d30e9177e34b0b7f5791cfeae0
8ad1b75c95e80bf8ed39c2040a66009e492816d9
ccf4c34e6881cc54938c5bc6e0f497bfe6faa6d36497234ba99fb86ec3782a43

HTTP Headers

GET /th?q=Fnaf%202024%20Calendar HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 62346
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 840475D79A3F47AFACDF01A3C3C30C27 Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:12Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=January%20Calendar%202024%20Telugu%20Download%20Pdf

150.171.27.10

200 OK

70 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=January%20Calendar%202024%20Telugu%20Download%20Pdf
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x737, components 3
Size
70 kB (70169 bytes)
Hash
541b5f9fddd68d7f598e3ecd0dc2208a
497960c1c028d5ed850644a70ae84f6ea503305b
bbdbf4bb9a8b190f73f803345fdad94ebade4d45541bc51f1ec033dffa3955a9

HTTP Headers

GET /th?q=January%20Calendar%202024%20Telugu%20Download%20Pdf HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 70169
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A59FC2C5A1094EF7A574DF08C2E4199B Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

manureinforms.com/pixel/purst?dl=0&th=0&sc=0&rs=1432&rd=1432&fd=977&bv=24.5.8230&tmpl=70

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
manureinforms.com/pixel/purst?dl=0&th=0&sc=0&rs=1432&rd=1432&fd=977&bv=24.5.8230&tmpl=70
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectmanureinforms.com
FingerprintF4:4A:AD:84:31:A8:7B:DB:9F:DD:73:5B:A0:22:96:56:AB:02:62:05
ValidityMon, 01 Jul 2024 13:53:58 GMT - Sun, 29 Sep 2024 13:53:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1432&rd=1432&fd=977&bv=24.5.8230&tmpl=70 HTTP/1.1
Host: manureinforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 18:39:12 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7ac526dd98837730a3b433f561c7f9f0
5baa7bc70ed0e71c05118ecafb7e145e7c62c048
ccf53d07b9a19900d0a8d091d7e9b838723edc800ad3ccf58c839d6414d0ea4a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "CCF53D07B9A19900D0A8D091D7E9B838723EDC800AD3CCF58C839D6414D0EA4A"
Last-Modified: Mon, 29 Jul 2024 19:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5104
Expires: Tue, 30 Jul 2024 20:04:16 GMT
Date: Tue, 30 Jul 2024 18:39:12 GMT
Connection: keep-alive

capaciousdrewreligion.com/advertisers.js

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint4F:7A:98:8B:B8:01:70:75:3B:62:EF:6C:AD:DF:DE:E7:07:37:5E:83
ValidityFri, 05 Jul 2024 07:55:21 GMT - Thu, 03 Oct 2024 07:55:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 44a5dab62f398c94a4b1c4ec505b3c4e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4e65f865b00bcb08c52dfe77a48c1c03
26cbc733e53341bd2aab8c860546de10e9839e84
00250d516d26ead1f376d80fef0c83c59df998d20c72ed5b96262e40ae3b96a8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "00250D516D26EAD1F376D80FEF0C83C59DF998D20C72ED5B96262E40AE3B96A8"
Last-Modified: Mon, 29 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4325
Expires: Tue, 30 Jul 2024 19:51:17 GMT
Date: Tue, 30 Jul 2024 18:39:12 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4e65f865b00bcb08c52dfe77a48c1c03
26cbc733e53341bd2aab8c860546de10e9839e84
00250d516d26ead1f376d80fef0c83c59df998d20c72ed5b96262e40ae3b96a8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "00250D516D26EAD1F376D80FEF0C83C59DF998D20C72ED5B96262E40AE3B96A8"
Last-Modified: Mon, 29 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4325
Expires: Tue, 30 Jul 2024 19:51:17 GMT
Date: Tue, 30 Jul 2024 18:39:12 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
621db1b83905315fd8744b8b1b4e9833
1e07c35bc069603d7bc19c2acbb7df230edddc89
5cd53b9b199ce90f1292801948af208d87019e2c62de0bef6ff9e1d2b6586822

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5CD53B9B199CE90F1292801948AF208D87019E2C62DE0BEF6FF9E1D2B6586822"
Last-Modified: Mon, 29 Jul 2024 19:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16767
Expires: Tue, 30 Jul 2024 23:18:39 GMT
Date: Tue, 30 Jul 2024 18:39:12 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
390c485000fb9a23a6fc2d77ea55c220
ae2ba8ac399d5576a138c137cdd947014d9198f4
f1eca495ccb9c2f4f7213ba44d163334ffeaec54830d3decdbc2ffe44fc93439

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F1ECA495CCB9C2F4F7213BA44D163334FFEAEC54830D3DECDBC2FFE44FC93439"
Last-Modified: Mon, 29 Jul 2024 18:30:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3899
Expires: Tue, 30 Jul 2024 19:44:12 GMT
Date: Tue, 30 Jul 2024 18:39:13 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
390c485000fb9a23a6fc2d77ea55c220
ae2ba8ac399d5576a138c137cdd947014d9198f4
f1eca495ccb9c2f4f7213ba44d163334ffeaec54830d3decdbc2ffe44fc93439

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F1ECA495CCB9C2F4F7213BA44D163334FFEAEC54830D3DECDBC2FFE44FC93439"
Last-Modified: Mon, 29 Jul 2024 18:30:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3899
Expires: Tue, 30 Jul 2024 19:44:12 GMT
Date: Tue, 30 Jul 2024 18:39:13 GMT
Connection: keep-alive

unseenreport.com/pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=70fcc49edd080ac52f417ceb88fa752a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=70fcc49edd080ac52f417ceb88fa752a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintD9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
ValiditySat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=70fcc49edd080ac52f417ceb88fa752a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6c9e6c52ba4bc90fdac0a7f444def8c7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

jordanzraven.pages.dev/favicon.ico

172.66.44.194

200 OK

9.7 kB

URL GET HTTP/3
jordanzraven.pages.dev/favicon.ico
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9515)
Size
9.7 kB (9672 bytes)
Hash
7891beecd54fd6e399ff3bee8be39949
90b724fd3f28676964413ff2a2fe7da0dfe5b579
219a4a035569c6fae849f5278bf09678d97a968e534103b27a6102ffd3b3d57b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=f1a8ba5e-8890-4622-b5d8-bbf07b252c60%3A2%3A1; pp_main_70fcc49edd080ac52f417ceb88fa752a=1; sb_main_c830e61dc7b13dddffbcf2286546b8d3=1; sb_count_c830e61dc7b13dddffbcf2286546b8d3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:12 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T6kDxH1A0UZs%2BIc9DNOmUx5fggoLjyqReBzwDkYp5n03XQwIw7vpzBx7VU%2Fdteinkpj2n%2FhmYTmFihMWNbzc4aJGq%2BKDDSHZxyHvNk10wMGI1ALxd2aQKDzGHJOvMi0SkxiGJ1HY5pHJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab77858da1956a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bellowframing.com/sbar.json?key=c830e61dc7b13dddffbcf2286546b8d3&psid=CF-3278_sb_1&uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60%3A2%3A1

172.240.253.132

200 OK

7.8 kB

URL GET HTTP/1.1
bellowframing.com/sbar.json?key=c830e61dc7b13dddffbcf2286546b8d3&psid=CF-3278_sb_1&uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60%3A2%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type
JSON text data
Size
7.8 kB (7768 bytes)
Hash
90354e49de18728224ad999416be7b13
d72c671a41cba38c01e5badd1b8a385e9e6f3d0e
deda5cc116f07c95147165590d0dd4f4978eae0b4149d31eb4085ad9b1b708fe

HTTP Headers

GET /sbar.json?key=c830e61dc7b13dddffbcf2286546b8d3&psid=CF-3278_sb_1&uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60%3A2%3A1 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://jordanzraven.pages.dev
Access-Control-Allow-Origin: https://jordanzraven.pages.dev
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17500620; expires=Wed, 31 Jul 2024 18:39:13 GMT; path=/; secure; SameSite=None
uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; expires=Tue, 06 Aug 2024 18:39:13 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 31 Jul 2024 18:39:13 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 31 Jul 2024 18:39:13 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Wed, 31 Jul 2024 18:39:13 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Wed, 31 Jul 2024 18:39:13 GMT; path=/; secure; SameSite=None
slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]; expires=Tue, 30 Jul 2024 18:39:18 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 74a4f4c20dc74842fd16d4ef40e37f74
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

bellowframing.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7pnpmTWHxfysBmMSE0VRIdRfz5ZT3dVU9c9k8RAMSI6jF6%2B93%2BaHmCDqSRATmQ14WAnsiIc5uBfBgyAIgl5lJouL71Dvvfq%2Bgq%2B%2B9z7eKHZJiIJOT75u1pXW9Gin6TdeeCcIjjXOqLQYNoa96FLUPtaw5UvLUdN%2FsfGK5ANzNPQD3w%2F8oLGqrIzN8OgMhMruLgfNZb%2FZDptBp42h%2FX%2FvCg%2BOehDlLnkaSkwWH3iHoPgYafLlSekGucmOnEoKTXNjUYpbb6WD1FQpkv0yth7i9NYeG8btrN6DSW%2FM5cKU%2FxGZmhDvh3tg6a09kWDl9blOpiFTMHEQVTmG1GMoOgY3V6HEDgG4wNlzSJObZ42t6OVHKJ2hE7L4919Q1YQs%2FnIIafLFca2GjYtGF7kyqcMwrqGGY6j%2BGFmxhXx9AaraAs8%2FghIPiX%2F4INLkzqtb35Rq0CilHUCJ6fNxQHuMduRSr7fsL7WjMFxiHdFbYiz2uyzshDzy5z4pNYaKx9ByBOoWUDgPhfJQxB6KzEMipg0eBEHXF5z6vWXOW6IrWST8gHbjgAZ%2B1EPBZ18ZIc9G4HoEbq8gs1cwUCPY4nu4tRpOeHA5QSlqVJKgcgQVJagUQZUTVGV9Q2gXuvqm0K5gwV4O93Kr3jR5f4PeMHlfpgTUjmBFvZHtkqdmPnoHH%2F8RAzlt8F7Ll1EgeJcFLSFEHDMeh2Ev6rQj1hMtOHX3xOpSK%2Bz2Ljl2KYByC6DOw7qakGfe%2FRaZmpDHnvgajG7B6S1wdQC0eA60qkHXaqyn9xxfk6LQ0sXG5Ixq3WTa9F1m8iY3CYSpkeWLyC97G3qXPDuf87mrOSTfXvm9s%2FLhH5%2Bsgdsama3xgXpA0NfXNi%2BYily%2FYCpHvjqX5SpR63S2AxdzmsvFz1%2BTlytjxemTbnT7ZT4DZuXdN6XLz9BUqLTvyJ3jSghpV43lknx32r0t2fnCrR0vbFpkZ86fWD2dZFY6p0w6BlU7pz4DVxPy5P3358t95L3foOwYtqiRFNtkL6DMFnh2BS7bXvn514v%2FPJwehjMEVu9zWOahKupNG7L9S60ItNzvKavh5L4FTG7f%2F%2FMRtmnp7DVV9Ya7hr5dAM2vIk1qlLZGqWtQPYIrDmzmmd1e%2Bak1DzC9sMm0XbjOtNWfzk2eHQ5OTRvdVsun0XIn6Hap7LJ22IujQFAatqMwimgLuZvEt1tv%2FAsAAP%2F%2FAQAA%2F%2F8I0xHGtgQAAA%3D%3D

172.240.253.132

200 OK

7 B

URL GET HTTP/1.1
bellowframing.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7pnpmTWHxfysBmMSE0VRIdRfz5ZT3dVU9c9k8RAMSI6jF6%2B93%2BaHmCDqSRATmQ14WAnsiIc5uBfBgyAIgl5lJouL71Dvvfq%2Bgq%2B%2B9z7eKHZJiIJOT75u1pXW9Gin6TdeeCcIjjXOqLQYNoa96FLUPtaw5UvLUdN%2FsfGK5ANzNPQD3w%2F8oLGqrIzN8OgMhMruLgfNZb%2FZDptBp42h%2FX%2FvCg%2BOehDlLnkaSkwWH3iHoPgYafLlSekGucmOnEoKTXNjUYpbb6WD1FQpkv0yth7i9NYeG8btrN6DSW%2FM5cKU%2FxGZmhDvh3tg6a09kWDl9blOpiFTMHEQVTmG1GMoOgY3V6HEDgG4wNlzSJObZ42t6OVHKJ2hE7L4919Q1YQs%2FnIIafLFca2GjYtGF7kyqcMwrqGGY6j%2BGFmxhXx9AaraAs8%2FghIPiX%2F4INLkzqtb35Rq0CilHUCJ6fNxQHuMduRSr7fsL7WjMFxiHdFbYiz2uyzshDzy5z4pNYaKx9ByBOoWUDgPhfJQxB6KzEMipg0eBEHXF5z6vWXOW6IrWST8gHbjgAZ%2B1EPBZ18ZIc9G4HoEbq8gs1cwUCPY4nu4tRpOeHA5QSlqVJKgcgQVJagUQZUTVGV9Q2gXuvqm0K5gwV4O93Kr3jR5f4PeMHlfpgTUjmBFvZHtkqdmPnoHH%2F8RAzlt8F7Ll1EgeJcFLSFEHDMeh2Ev6rQj1hMtOHX3xOpSK%2Bz2Ljl2KYByC6DOw7qakGfe%2FRaZmpDHnvgajG7B6S1wdQC0eA60qkHXaqyn9xxfk6LQ0sXG5Ixq3WTa9F1m8iY3CYSpkeWLyC97G3qXPDuf87mrOSTfXvm9s%2FLhH5%2Bsgdsama3xgXpA0NfXNi%2BYily%2FYCpHvjqX5SpR63S2AxdzmsvFz1%2BTlytjxemTbnT7ZT4DZuXdN6XLz9BUqLTvyJ3jSghpV43lknx32r0t2fnCrR0vbFpkZ86fWD2dZFY6p0w6BlU7pz4DVxPy5P3358t95L3foOwYtqiRFNtkL6DMFnh2BS7bXvn514v%2FPJwehjMEVu9zWOahKupNG7L9S60ItNzvKavh5L4FTG7f%2F%2FMRtmnp7DVV9Ya7hr5dAM2vIk1qlLZGqWtQPYIrDmzmmd1e%2Bak1DzC9sMm0XbjOtNWfzk2eHQ5OTRvdVsun0XIn6Hap7LJ22IujQFAatqMwimgLuZvEt1tv%2FAsAAP%2F%2FAQAA%2F%2F8I0xHGtgQAAA%3D%3D
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7pnpmTWHxfysBmMSE0VRIdRfz5ZT3dVU9c9k8RAMSI6jF6%2B93%2BaHmCDqSRATmQ14WAnsiIc5uBfBgyAIgl5lJouL71Dvvfq%2Bgq%2B%2B9z7eKHZJiIJOT75u1pXW9Gin6TdeeCcIjjXOqLQYNoa96FLUPtaw5UvLUdN%2FsfGK5ANzNPQD3w%2F8oLGqrIzN8OgMhMruLgfNZb%2FZDptBp42h%2FX%2FvCg%2BOehDlLnkaSkwWH3iHoPgYafLlSekGucmOnEoKTXNjUYpbb6WD1FQpkv0yth7i9NYeG8btrN6DSW%2FM5cKU%2FxGZmhDvh3tg6a09kWDl9blOpiFTMHEQVTmG1GMoOgY3V6HEDgG4wNlzSJObZ42t6OVHKJ2hE7L4919Q1YQs%2FnIIafLFca2GjYtGF7kyqcMwrqGGY6j%2BGFmxhXx9AaraAs8%2FghIPiX%2F4INLkzqtb35Rq0CilHUCJ6fNxQHuMduRSr7fsL7WjMFxiHdFbYiz2uyzshDzy5z4pNYaKx9ByBOoWUDgPhfJQxB6KzEMipg0eBEHXF5z6vWXOW6IrWST8gHbjgAZ%2B1EPBZ18ZIc9G4HoEbq8gs1cwUCPY4nu4tRpOeHA5QSlqVJKgcgQVJagUQZUTVGV9Q2gXuvqm0K5gwV4O93Kr3jR5f4PeMHlfpgTUjmBFvZHtkqdmPnoHH%2F8RAzlt8F7Ll1EgeJcFLSFEHDMeh2Ev6rQj1hMtOHX3xOpSK%2Bz2Ljl2KYByC6DOw7qakGfe%2FRaZmpDHnvgajG7B6S1wdQC0eA60qkHXaqyn9xxfk6LQ0sXG5Ixq3WTa9F1m8iY3CYSpkeWLyC97G3qXPDuf87mrOSTfXvm9s%2FLhH5%2Bsgdsama3xgXpA0NfXNi%2BYily%2FYCpHvjqX5SpR63S2AxdzmsvFz1%2BTlytjxemTbnT7ZT4DZuXdN6XLz9BUqLTvyJ3jSghpV43lknx32r0t2fnCrR0vbFpkZ86fWD2dZFY6p0w6BlU7pz4DVxPy5P3358t95L3foOwYtqiRFNtkL6DMFnh2BS7bXvn514v%2FPJwehjMEVu9zWOahKupNG7L9S60ItNzvKavh5L4FTG7f%2F%2FMRtmnp7DVV9Ya7hr5dAM2vIk1qlLZGqWtQPYIrDmzmmd1e%2Bak1DzC9sMm0XbjOtNWfzk2eHQ5OTRvdVsun0XIn6Hap7LJ22IujQFAatqMwimgLuZvEt1tv%2FAsAAP%2F%2FAQAA%2F%2F8I0xHGtgQAAA%3D%3D HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:13 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 87d9d30fd2f25b229bafc0b75b6b82f9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Findex.html&l=1421&fd=506

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Findex.html&l=1421&fd=506
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Findex.html&l=1421&fd=506 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/confetti.gif

188.114.97.1

200 OK

206 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/confetti.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
GIF image data, version 89a, 480 x 360
Size
206 kB (206291 bytes)
Hash
0b33face774f2203446507ce5f075538
1dd3522529bce7739df0687f47f5bc84356698a0
ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 02 Feb 2024 15:33:57 GMT
etag: "65bd0b65-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4088409
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2FJQuOOljLq8AjZ726RSanDlXUC9DrFesNBOB%2FtUlVA3UwE%2B3lcOUqp2atU4Jerpz5hz3Ht4ACHtG529U9dv1EfWLiVkHArnsxTYf5Wf05acmV5EjYKq7GoW2d1vg51z7R3cxFCvvAmE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778635ca4b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-content/themes/acumen/style.css?ver=20230905-140245

172.66.44.194

200 OK

63 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/style.css?ver=20230905-140245
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (1320)
Size
63 kB (63277 bytes)
Hash
8d9a415311a54b2886c4ddfc4b0f92e0
dfaec7d54eb43ec90a8630a821ec0bc2b914249f
9c10dda796913f83989baae4da597b48781427c5cb6ace4ca108026480865ead

HTTP Headers

GET /wp-content/themes/acumen/style.css?ver=20230905-140245 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cc995c75f0aa17f745566e6a5bf6a4b4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9reZm5a6CC0Gbt2z9FhKZ731nx7HR56Rp6gScbwwmx1ElDh2z%2BANmtv0q26KkQQrPPYlasP6jxrW4OozQ3XAxbveV2Q0X%2BwgB%2BUvcxur9erTEYTb7p7sRAS7j6hGrz%2BgxHz%2FxGNjynC%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b5156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.yourwebbars.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/index.html

104.26.6.19

200 OK

1.6 kB

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/index.html
IP
104.26.6.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectyourwebbars.com
Fingerprint96:06:14:26:3B:99:C7:B5:1E:33:06:43:6F:60:E1:91:9E:64:B4:A1
ValiditySat, 22 Jun 2024 01:29:09 GMT - Fri, 20 Sep 2024 01:29:08 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
1.6 kB (1637 bytes)
Hash
cf1a8fca3908d54a23e90ecff0495a94
5ea9f042a953c2c73d6f822ecc1a362b579b6b45
ba1c5918f0ad2a1bf7852b8dd9403b17be4c069cf862768cb05812a97ce0a6c2

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: text/html
last-modified: Thu, 02 May 2024 09:30:16 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Urg9JnbQQ8%2B8aIQoNelVe14gEM5LY5z4noJS7qI94vOXk7C4T31TCH%2Bg1NjGru4C5feDElBX3nAOOi53QVHSbcFEP1loZOtXX0jsNvjaCsXM57MwkrN07JaQuLnQaON%2F%2BTJt9fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7785f0f8756b1-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/logo.svg

188.114.97.1

200 OK

998 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/logo.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
SVG Scalable Vector Graphics image
Size
998 B (998 bytes)
Hash
730e6377072b77d80bca30d96fb63b27
64bf5fa49e24ff2f79ad9152f3ef7bd7baab5ad0
bb461ad12e6f931815042b57a447b64e8d3a06d1576c1f7c79b9c7e5a42a8b34

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/logo.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: image/svg+xml
last-modified: Thu, 02 May 2024 09:24:12 GMT
etag: W/"66335bbc-c87"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4088409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d%2FWebcqNK1kIWx0lKLIuDR%2FjTDSQsocEt0Drj4SQqFuUEB4HDVsx%2BuAlQAYIZCWl2NFnKKB0uCIt2RBIn98OruLA%2BbcOZqsKbZ3hK30oU%2Ffvjc%2BX2Fl9hMaUXLp3EPKdS4oQ0Z2bdDrg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778635cadb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fstyle.css&l=3821&fd=392

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fstyle.css&l=3821&fd=392
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fstyle.css&l=3821&fd=392 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db60e898750bb8c126af4abf1f17ba0d
fccd307aa5ddc643251b836905591a574580afdb
8c24dffad3b28a4545187b5561b26ee0129a3547a7e99454983e8fd49135ad1d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db60e898750bb8c126af4abf1f17ba0d
fccd307aa5ddc643251b836905591a574580afdb
8c24dffad3b28a4545187b5561b26ee0129a3547a7e99454983e8fd49135ad1d

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint7C:32:9F:9C:78:5C:00:05:2B:B3:0F:CD:46:FF:78:83:BC:E3:DE:79
ValidityMon, 01 Jul 2024 07:30:56 GMT - Mon, 23 Sep 2024 07:30:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Jul 2024 00:29:51 GMT
expires: Wed, 30 Jul 2025 00:29:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 65363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.67

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint7C:32:9F:9C:78:5C:00:05:2B:B3:0F:CD:46:FF:78:83:BC:E3:DE:79
ValidityMon, 01 Jul 2024 07:30:56 GMT - Mon, 23 Sep 2024 07:30:55 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Jul 2024 07:22:56 GMT
expires: Wed, 30 Jul 2025 07:22:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 40578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bellowframing.com/pixel/sbs?c=1

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/pixel/sbs?c=1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e38ed782f2a0e1dcc6ab5bb8aa787dfe
2b03f333331edd074b1b6f736125722142c2efd3
6f6e58669bdd74c59b5ae6f135fe7eb7637c396163fe4dd6803e72ab6ea48868

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fanimate.css&l=78693&fd=396

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fanimate.css&l=78693&fd=396
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fcss%2Fanimate.css&l=78693&fd=396 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 18:39:15 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/js/script.js

188.114.97.1

200 OK

782 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/js/script.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
Unicode text, UTF-8 text
Size
782 B (782 bytes)
Hash
d3f90b17f04b1932d3a02092ae39d83b
a6b0abaa095813ec30072fe26d7ef1a44c4ba368
54b99e176bb8e4b89e22a963525ea31eb58fdafef9ee5211b189f3a489bfebbb

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 09:29:09 GMT
etag: W/"66335ce5-7bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ibLnogrO21TbQaQ9%2FmP%2FAlwNliKBwqaL6m6SpYFCDKHl6AVECGgOnibjUmqrOFswTHk2EvnqcnXRavZn%2F6UvVFsZxKHkJwicVTwizHDSiB6WRRpUNrKy8%2BgaCoIK9rHJZLCgNJJQxK3g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab77862ef24569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-includes/js/masonry.min.js?ver=4.2.2

172.66.44.194

200 OK

14 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-includes/js/masonry.min.js?ver=4.2.2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JavaScript source, ASCII text, with very long lines (23966)
Size
14 kB (14296 bytes)
Hash
3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e7d2aabff7325223c43a19463e7e61fd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BEM7PvfJXI6zLQUo0829F98%2F4sAGTdqQwHaKiTRewxUodLSEO51Awi6lQezpvWEw9wAiiuYKHbSFPSZfmsQpecG4YurXEOIMIy%2F%2F6unfeAM%2BZ%2FlSge7WV1cjJu%2FwYx268aZ7JKRmNEdb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d3b9d56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/themes/acumen/css/font-awesome/webfonts/fa-solid-900.woff2

172.66.44.194

200 OK

78 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/css/font-awesome/webfonts/fa-solid-900.woff2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

HTTP Headers

GET /wp-content/themes/acumen/css/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jordanzraven.pages.dev/wp-content/themes/acumen/css/font-awesome/css/all.min.css?ver=5.15.3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: font/woff2
content-length: 78196
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8859b1cdd774acf8c4a05b579d5c3c6a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bh9smr5J1N36I49Iu7K3rBmkRboXN6AwYqt4eV3SBKdOePNloUblwVJ%2FB3Cks9QA20jlHll%2B97GJTpUi9%2B5PtYQbdMVqgQPQlXmrjuDx59cf%2Bdgy%2Fidu5vRiy%2BnPFWoykvHuyhLfxdYH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778534ba156a5-OSL
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/page/2/

0.0.0.0

0 B

URL GET
jordanzraven.pages.dev/page/2/
IP
0.0.0.0:0
ASN
#0

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /page/2/ HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=f1a8ba5e-8890-4622-b5d8-bbf07b252c60%3A2%3A1; pp_main_70fcc49edd080ac52f417ceb88fa752a=1; sb_main_c830e61dc7b13dddffbcf2286546b8d3=1; sb_count_c830e61dc7b13dddffbcf2286546b8d3=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/animate.css

188.114.97.1

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/animate.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
ASCII text
Size
79 kB (78693 bytes)
Hash
5982c5377696d20476871062646b253f
8bf2c93fa9ccc908f7df0fb7abb911bbac3e4242
4e23a6449e6ef4614f0107cecf5c9eda75d2041c7c71f4a55d45f2a7e75450f4

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: text/css
last-modified: Fri, 02 Feb 2024 15:33:52 GMT
etag: W/"65bd0b60-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=spMcVMsjz5OlQ2fSilXlEjKNX%2F4t7yFXfD39mHwtQOa5HbxP%2BtKpkJ7TaLkTJ84C3eoMCWxlPxjFAmBD8mZ%2BaQGIazhBHiHhAY0abXYvRppOna03hLElOgD0MeyJzxvIF6nbzPhxN%2Btc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab77862ef23569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-includes/js/imagesloaded.min.js?ver=4.1.4

172.66.44.194

200 OK

5.6 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JavaScript source, ASCII text, with very long lines (5734), with no line terminators
Size
5.6 kB (5629 bytes)
Hash
1dda7be32d909ff3dd78ba7420c70ad9
25b565675b390118e460d5841a18dc8bfca9f1da
196458b44851dc116932b65c48ab21694fcdba403d3ba3d76ba4b7eba747b0cd

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b121a039b85fbb679aceab72d4890ca6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnoYjx64j3BpgZ3%2Bb%2B5WQ12l5j42stJ7d7IhsxrVbCFud6WU8frvf8zhz%2BieCL98s2h8hmkO0xpkMC9I31whMfMoqJ12A9CX5QEzYccnxsBBjNSi86ecp1%2FuRyWF77nScFitUWek3Imr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d3b9a56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

recordedthereby.com/sfp.js

188.114.96.1

200 OK

85 kB

URL GET HTTP/2
recordedthereby.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectrecordedthereby.com
FingerprintA1:CB:3E:AF:CE:F5:E9:D2:26:FB:E2:D4:FE:4B:29:D2:B3:C9:AD:3B
ValiditySat, 06 Jul 2024 15:25:15 GMT - Fri, 04 Oct 2024 15:25:14 GMT

File type

Size
85 kB (85378 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: da1f3925b2179892dad9f7d491dbe4bf
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f6UqTLafVYlml5R4tl6O0xCXThVO0PkVK1j4mWp7dy8Cc5BIlQWBDn%2BLkfOcWS01Lq9x%2FcMLhgs7j0l%2FCVH3SD8ok6picQwJeXF3zNGOKNxClJodru1CTShyMsXvhPLbk0f78ex4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778537de45694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fjs%2Fscript.js&l=1974&fd=373

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fjs%2Fscript.js&l=1974&fd=373
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Funibet%2Fandroid_bigsystem-confetti%2F1%2Fjs%2Fscript.js&l=1974&fd=373 HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

jordanzraven.pages.dev/

172.66.44.194

200 OK

47 kB

URL User Request GET HTTP/2
jordanzraven.pages.dev/
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type

Size
47 kB (46685 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FL613jBgHcS6z2OC%2BXob8hUHjxrg%2B%2BsB5LTWZOitz23l9SPA7KwhB%2BNIIJuWbGKYAVQXmFQGLHLlwWtJO7vXl%2F%2B6LXz%2FZFqXo0y7adMl1GMpkusPyi%2BE3uuQmu6gVBcmpFLT9KN2TzAh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784a9ab9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

recordedthereby.com/sfp.js

188.114.96.1

200 OK

85 kB

URL GET HTTP/2
recordedthereby.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectrecordedthereby.com
FingerprintA1:CB:3E:AF:CE:F5:E9:D2:26:FB:E2:D4:FE:4B:29:D2:B3:C9:AD:3B
ValiditySat, 06 Jul 2024 15:25:15 GMT - Fri, 04 Oct 2024 15:25:14 GMT

File type

Size
85 kB (85378 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: 3cc0a6e27d5e716b73970f214503134d
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y%2FuQYct7b9XZh2WlsvwK39LUtQQ%2FcGwoT0NRQY1NAPIgPOtc6hfm0IKVHIWJwk%2Fy0z1Dx4VLAe3L81y%2BYE2I0JABT5UtSmJP4rHZA5Vw%2BDTFiLmDTh9P8Vrl9r%2FgQD93ZBsHZR2e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778537dec5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

7.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint05:EB:36:6C:36:86:24:74:94:BB:40:A9:5B:70:D4:0B:D6:3D:9E:39
ValidityMon, 01 Jul 2024 07:31:02 GMT - Mon, 23 Sep 2024 07:31:01 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 30 Jul 2024 18:39:14 GMT
date: Tue, 30 Jul 2024 18:39:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tse1.mm.bing.net/th?q=1%20Page%20Calendar%202024

150.171.27.10

200 OK

52 kB

URL GET HTTP/2
tse1.mm.bing.net/th?q=1%20Page%20Calendar%202024
IP
150.171.27.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x613, components 3
Size
52 kB (52163 bytes)
Hash
117dc3751249066bbadaf9a99ed416a4
d56dba30c59bea6fbfc122ce8f22849c1d2d500c
8ce35179df396b32164c69bbd996c73e6f2d18df2c2ea788b8b8865efcc62af9

HTTP Headers

GET /th?q=1%20Page%20Calendar%202024 HTTP/1.1
Host: tse1.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 52163
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 486FB5B646FA49F89C74E882D9C65DFF Ref B: OSL30EDGE0505 Ref C: 2024-07-30T18:39:11Z
date: Tue, 30 Jul 2024 18:39:11 GMT
X-Firefox-Spdy: h2

jordanzraven.pages.dev/wp-content/themes/acumen/css/font-awesome/css/all.min.css?ver=5.15.3

172.66.44.194

200 OK

60 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/css/font-awesome/css/all.min.css?ver=5.15.3
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (59875)
Size
60 kB (60061 bytes)
Hash
fb0f7cb7172e04653c3782a7129a3f93
9b9b04fb615350a66438787afb2c201e411f095f
12f977dd9e950d2282613dfac5e09ba874139a8d7cbf09fdb95e0b85793f29b1

HTTP Headers

GET /wp-content/themes/acumen/css/font-awesome/css/all.min.css?ver=5.15.3 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0952ca67200984f5598756a81da790b2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zKLtm7d0dwmbtdEb1y6YfSqpeZG9wEjRikhFKMQN08cSm08Bc9ag9NId%2FZM1M8jYTlI4CIkS82qXJXcvCH7nDcOPOM4vPPni37%2BVsXivlQv2fYTKRtOxO0AauBqP7Dpl3E2fc%2BfiK27i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784cfb4e56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c830e61dc7b13dddffbcf2286546b8d3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c830e61dc7b13dddffbcf2286546b8d3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintD9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
ValiditySat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=f1a8ba5e-8890-4622-b5d8-bbf07b252c60&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c830e61dc7b13dddffbcf2286546b8d3&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=18 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 18:39:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f550090f5f86e102547054211729238d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

jordanzraven.pages.dev/wp-content/themes/acumen/js/functions.min.js?ver=20230905-140245

172.66.44.194

200 OK

4.8 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/js/functions.min.js?ver=20230905-140245
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JavaScript source, ASCII text, with very long lines (5034), with no line terminators
Size
4.8 kB (4762 bytes)
Hash
20e2bb9fd1d40996d335bdd039e7db37
aa5a070583bbcf3796d22557af17a3e6c0f8b033
1f8aebfd0fe0e7c80664d17a26b2c066806180eacd1b2da62b273d63042f593d

HTTP Headers

GET /wp-content/themes/acumen/js/functions.min.js?ver=20230905-140245 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4b9840034426b11099c20a356f758322"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uAdBjTpWNWSc2G%2FHYNRhPQorto7X4WXY9Ec4trp8W8RwQMSwngmlfNPRTWjUp3aQigWA1w0YFjXyj7I%2FMe2pxAytAWnZRhepA1lN9%2B0PlKBac0w%2BlzQUyXWi0GcxT3jSCj3NK2WgdpRw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d3b9f56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1

172.66.44.194

200 OK

1.1 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (1091), with no line terminators
Size
1.1 kB (1084 bytes)
Hash
4e863021a046f9f9e11f85635f9631ff
ce367ab15ea12b1d89fbc56c1c6b860312b3335f
f8916c899826e2473da1c3bc0b2f4244a2e24b2d8bbcc719af893a4eb6d1058c

HTTP Headers

GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4a089c96af7de954f1661bb954d36681"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ikoO26r3DKBPQG%2FYOZdmyZ0SdE4YvrCP7ukc2sbysdNuqAy3r7aJSmv%2B%2FsMIl1BZ5J%2FNFzDQbjt3SU5igYTCifm8yEPs1hg9qq0fVOE1QgzDY2B%2B7R0uaWwhl4KMAk%2B4icr8K1F4E2%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b5c56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.0

172.66.44.194

200 OK

88 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87482 bytes)
Hash
ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"130b4ba2dd351c4ccfd435a97b37d4f3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=COPgykeXrdFpVtouPAhbrG7qIZ9T9eYErorbV7eLP2HwiOT8AARvBq1Z9SqF%2BRvG0IsyIza%2Fq6FU5AUr%2FtYODBYXlST%2FLzfoEAI%2BtALdzC0z4pOYghqV19Vjot2Ir1UTyqY5OoSRwTyV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b6056a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/themes/acumen/js/skip-link-focus-fix.min.js?ver=20230905-140245

172.66.44.194

200 OK

325 B

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/themes/acumen/js/skip-link-focus-fix.min.js?ver=20230905-140245
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text, with very long lines (327), with no line terminators
Size
325 B (325 bytes)
Hash
ac244ac176a72abaec2dfc9a66320424
e409b5bcd1f42b03c5dd30d00d06ae0765797ee4
fec8f4dcc5a0c55e0ab2abcc0b9a70c2c49d510304be8d761e98719fab3c179f

HTTP Headers

GET /wp-content/themes/acumen/js/skip-link-focus-fix.min.js?ver=20230905-140245 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2c47e03111e3bdbabfb4f6d65005c7fc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ERXLwmo4y9B2%2B1MfryfatOgsOAqH6RfdekjW%2BrFO%2F6i4RakbiOguDPxsweozOut%2FbAqovNZWzjOsde0dTXTkDqJylgQtt2MSyOhortLkmW5eoyM8bimSgtyszd3HRxv7RPKGhSp5boeR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d1b7f56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

172.66.44.194

200 OK

7.8 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:11 GMT
content-type: font/woff2
content-length: 7816
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "91ec2edb63365377f289207a97941dea"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2lK23st7fNUITG74kjNfkscJfBoJCQ086%2BA4ZnjDFkcwn8VpRUFqG9b%2BxyEOVjuSSoBfbyvg%2BzZf5bGpOJGiaCN1AviaNZk37ZPQFUq9aWo8MZbCeJ0Mzu0vzxGdEqZE6m9OQULTnyQr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778535baf56a5-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/close.svg

188.114.97.1

200 OK

1.3 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/close.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1279 bytes)
Hash
24937fd159a21f2e91207d5788e86c70
1b07e0334cc16c5cd659de56314bd2188e3a82f9
b38a482faa1471a520d231f954412ee0293b0401610af1392038be206dc51b8a

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: image/svg+xml
last-modified: Fri, 02 Feb 2024 15:33:55 GMT
etag: W/"65bd0b63-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4088409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jLUFV%2F6ewHK8vK1g%2FkXzr4YaV06M1YgPlBhmZcU%2B3%2BapWypYDWlC4GfCn3eX92dxFz3X5uNEaexMcUQLyOMX4ZcFgglJzyNHdnZCfdu7E1N6PVod97OK0eoAdwYZJPoVCOVlNddHBwBB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab778635ca1b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/style.css

188.114.97.1

200 OK

3.8 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcreative-bars1.com
FingerprintD1:9B:13:19:76:51:03:81:CE:A7:79:69:01:B6:C9:CF:FF:78:92:61
ValidityThu, 13 Jun 2024 14:42:47 GMT - Wed, 11 Sep 2024 14:42:46 GMT

File type
ASCII text, with very long lines (4044), with no line terminators
Size
3.8 kB (3821 bytes)
Hash
56323b184b25c2b57812aa5b912181f9
afb759e4336deb21dfbb748697d2c822016f9a46
27a79b182eea9d8c755427f7529af66162dd9dc5c9fa7151ec99a1990bca2c97

HTTP Headers

GET /sb/notifications/gambling/unibet/android_bigsystem-confetti/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
Origin: https://jordanzraven.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 18:39:14 GMT
content-type: text/css
last-modified: Thu, 02 May 2024 09:25:09 GMT
etag: W/"66335bf5-eed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mPUVfinehE4CIgkAMoLLILO6sxDUs29sNhONTgMSNjmzSbyne7TQQuYjjcLDvfSBjUoqG8GeS2inYT%2FSJzegE1h5LQtXLb5jT8NYDVfoxUAmbWjWkygH%2F4DA%2BBRJubNEe7V3Us008oDX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab77862ef27569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bellowframing.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7vnrNYfF%2FKwGYxITRVEh1F%2FPllPd1VT1z2TxEAxIjqMXr73f5oeYIOpJEBOZDXhYCeyIhzm4F8GDIAiCXmUmi4vvUO%2B9%2Br6Cr773Pt4odkmIgk5Pvm7Wldb0aKfpN154JwiONc6otBg2hlH3Urd9rGHLl5a7Tf%2FFxiuSD8zR0A98P%2FCDxqqyMjbDozMQKru7HDSX%2FWY7bAadNob2%2F70rPDjqQZS75GkoMVl84B2C4mOkyZcnpRvkJjtyKik0zY1FKW69lQ5SU6VI9svYeojTW3tsGLezeg8mvTGXC1P%2BR2RqQrwf7oGlt%2FZEgpXX5zqZhkzBxEFU5RhSj6HoGNxchRI7BOACZ88hTW6eNbailx%2BhdIZOyOLff0FVE7L4yyGkyRfHtRo2Lhpd5MqkDsO4hhqOofpjZMUW8vUFqGoLPP8ISjwk%2FuGDSJM7r259U6pBo5R2ACWmz8cBjRjtyKUoWvaX2t0wXGIdES0xFvs9FnZC3vXnPik1horH0HIE6hZQOA%2BF8lDEHorMQyKmDR4EQc8XnPrRMuct0ZOsK%2FyA9uKABn43QsFnXxkhz0bgegRuryCzVzBQI9jie7i1Gk54cDlBKWpUkqByBBUlqBRBlRNUZX1DaBe6%2BqbQrmDBXg73cqveNHl%2Fg94weV%2BmBNSOYEW9ke2Sp2Y%2Begcf%2FxEDOW3wqOXLbiB4jwUtIUQcMx6HYdTttLssEi04dffE6lIr7EWXHLsUQLkFUOdhXU3IM%2B9%2Bi0xNyGNPfA1Gt%2BD0Frg6AFo8B1rVoGs11tN7jq9JUWjpYmNyRrVuMm36LjN5k5sEwtTI8kXkl70NvUuenc%2F53NUckm%2Bv%2FN5Z%2BfCPT9bAbY3M1vhAPSDo62ubF0xFrl8wlSNfnctylah1OtuBiznN5eLnr8nLlbHi9Ek3uv0ynwGz8u6b0uVnaCpU2nfkznElhLSrxnJJvjvt3pbsfOHWjhc2LbIz50%2Bsnk4yK51TJh2Dqp1Tn4GrCXny%2Fvvz5T7y3m9Qdgxb1EiKbbIXUGYLPLsCl22v%2FPzrxX8eTg%2FDGQKr9zks81AV9aYN2f6lVgRa7veU1XBy3wImt%2B%2F%2F%2BQjbtHT2mqp6w11D3y6A5leRJjVKW6PUNagewRUHNvPMbq%2F81JoHmF7YZNouXGfa6k%2FnJs8OB6emjZYvekzGssdku9OOJRes02E%2BjzlriSjiyN0kvt16418AAAD%2F%2FwEAAP%2F%2FiAfELrYEAAA%3D

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
bellowframing.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7vnrNYfF%2FKwGYxITRVEh1F%2FPllPd1VT1z2TxEAxIjqMXr73f5oeYIOpJEBOZDXhYCeyIhzm4F8GDIAiCXmUmi4vvUO%2B9%2Br6Cr773Pt4odkmIgk5Pvm7Wldb0aKfpN154JwiONc6otBg2hlH3Urd9rGHLl5a7Tf%2FFxiuSD8zR0A98P%2FCDxqqyMjbDozMQKru7HDSX%2FWY7bAadNob2%2F70rPDjqQZS75GkoMVl84B2C4mOkyZcnpRvkJjtyKik0zY1FKW69lQ5SU6VI9svYeojTW3tsGLezeg8mvTGXC1P%2BR2RqQrwf7oGlt%2FZEgpXX5zqZhkzBxEFU5RhSj6HoGNxchRI7BOACZ88hTW6eNbailx%2BhdIZOyOLff0FVE7L4yyGkyRfHtRo2Lhpd5MqkDsO4hhqOofpjZMUW8vUFqGoLPP8ISjwk%2FuGDSJM7r259U6pBo5R2ACWmz8cBjRjtyKUoWvaX2t0wXGIdES0xFvs9FnZC3vXnPik1horH0HIE6hZQOA%2BF8lDEHorMQyKmDR4EQc8XnPrRMuct0ZOsK%2FyA9uKABn43QsFnXxkhz0bgegRuryCzVzBQI9jie7i1Gk54cDlBKWpUkqByBBUlqBRBlRNUZX1DaBe6%2BqbQrmDBXg73cqveNHl%2Fg94weV%2BmBNSOYEW9ke2Sp2Y%2Begcf%2FxEDOW3wqOXLbiB4jwUtIUQcMx6HYdTttLssEi04dffE6lIr7EWXHLsUQLkFUOdhXU3IM%2B9%2Bi0xNyGNPfA1Gt%2BD0Frg6AFo8B1rVoGs11tN7jq9JUWjpYmNyRrVuMm36LjN5k5sEwtTI8kXkl70NvUuenc%2F53NUckm%2Bv%2FN5Z%2BfCPT9bAbY3M1vhAPSDo62ubF0xFrl8wlSNfnctylah1OtuBiznN5eLnr8nLlbHi9Ek3uv0ynwGz8u6b0uVnaCpU2nfkznElhLSrxnJJvjvt3pbsfOHWjhc2LbIz50%2Bsnk4yK51TJh2Dqp1Tn4GrCXny%2Fvvz5T7y3m9Qdgxb1EiKbbIXUGYLPLsCl22v%2FPzrxX8eTg%2FDGQKr9zks81AV9aYN2f6lVgRa7veU1XBy3wImt%2B%2F%2F%2BQjbtHT2mqp6w11D3y6A5leRJjVKW6PUNagewRUHNvPMbq%2F81JoHmF7YZNouXGfa6k%2FnJs8OB6emjZYvekzGssdku9OOJRes02E%2BjzlriSjiyN0kvt16418AAAD%2F%2FwEAAP%2F%2FiAfELrYEAAA%3D
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectbellowframing.com
Fingerprint32:FD:E3:99:7C:F3:DC:8E:1F:E7:ED:94:55:9A:7F:23:1F:EF:26:2C
ValiditySun, 30 Jun 2024 14:02:44 GMT - Sat, 28 Sep 2024 14:02:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3qwHzUGUQEAR5uBBITvp7vnrNYfF%2FKwGYxITRVEh1F%2FPllPd1VT1z2TxEAxIjqMXr73f5oeYIOpJEBOZDXhYCeyIhzm4F8GDIAiCXmUmi4vvUO%2B9%2Br6Cr773Pt4odkmIgk5Pvm7Wldb0aKfpN154JwiONc6otBg2hlH3Urd9rGHLl5a7Tf%2FFxiuSD8zR0A98P%2FCDxqqyMjbDozMQKru7HDSX%2FWY7bAadNob2%2F70rPDjqQZS75GkoMVl84B2C4mOkyZcnpRvkJjtyKik0zY1FKW69lQ5SU6VI9svYeojTW3tsGLezeg8mvTGXC1P%2BR2RqQrwf7oGlt%2FZEgpXX5zqZhkzBxEFU5RhSj6HoGNxchRI7BOACZ88hTW6eNbailx%2BhdIZOyOLff0FVE7L4yyGkyRfHtRo2Lhpd5MqkDsO4hhqOofpjZMUW8vUFqGoLPP8ISjwk%2FuGDSJM7r259U6pBo5R2ACWmz8cBjRjtyKUoWvaX2t0wXGIdES0xFvs9FnZC3vXnPik1horH0HIE6hZQOA%2BF8lDEHorMQyKmDR4EQc8XnPrRMuct0ZOsK%2FyA9uKABn43QsFnXxkhz0bgegRuryCzVzBQI9jie7i1Gk54cDlBKWpUkqByBBUlqBRBlRNUZX1DaBe6%2BqbQrmDBXg73cqveNHl%2Fg94weV%2BmBNSOYEW9ke2Sp2Y%2Begcf%2FxEDOW3wqOXLbiB4jwUtIUQcMx6HYdTttLssEi04dffE6lIr7EWXHLsUQLkFUOdhXU3IM%2B9%2Bi0xNyGNPfA1Gt%2BD0Frg6AFo8B1rVoGs11tN7jq9JUWjpYmNyRrVuMm36LjN5k5sEwtTI8kXkl70NvUuenc%2F53NUckm%2Bv%2FN5Z%2BfCPT9bAbY3M1vhAPSDo62ubF0xFrl8wlSNfnctylah1OtuBiznN5eLnr8nLlbHi9Ek3uv0ynwGz8u6b0uVnaCpU2nfkznElhLSrxnJJvjvt3pbsfOHWjhc2LbIz50%2Bsnk4yK51TJh2Dqp1Tn4GrCXny%2Fvvz5T7y3m9Qdgxb1EiKbbIXUGYLPLsCl22v%2FPzrxX8eTg%2FDGQKr9zks81AV9aYN2f6lVgRa7veU1XBy3wImt%2B%2F%2F%2BQjbtHT2mqp6w11D3y6A5leRJjVKW6PUNagewRUHNvPMbq%2F81JoHmF7YZNouXGfa6k%2FnJs8OB6emjZYvekzGssdku9OOJRes02E%2BjzlriSjiyN0kvt16418AAAD%2F%2FwEAAP%2F%2FiAfELrYEAAA%3D HTTP/1.1
Host: bellowframing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17500620; uid_id2=f1a8ba5e-8890-4622-b5d8-bbf07b252c60:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc830e61dc7b13dddffbcf2286546b8d3=[5210996,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 18:39:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 60818646ad634b39bdee505dbff1d90e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css

172.66.44.194

200 OK

22 kB

URL GET HTTP/3
jordanzraven.pages.dev/wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css
IP
172.66.44.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jordanzraven.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectjordanzraven.pages.dev
Fingerprint91:25:82:F7:46:7B:A5:E4:56:BE:87:39:DC:0C:3B:36:FE:D3:3F:6D
ValidityFri, 28 Jun 2024 01:01:12 GMT - Thu, 26 Sep 2024 01:01:11 GMT

File type
ASCII text
Size
22 kB (21940 bytes)
Hash
d1bc88d59d7a059631a92bc8d8dca729
5fc532952c35993ef0f378e3f77a6f313161b165
4a245b5d2a192e695a109bbf675e391207b754f1e2050b5c6312bd76f67e2e76

HTTP Headers

GET /wp-content/fonts/33864edabd25fd1b9d5c9310425d3ec9.css HTTP/1.1
Host: jordanzraven.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jordanzraven.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 30 Jul 2024 18:39:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cf1ec4f037ad88c075fa8a82f242633b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BD1F8SrMbGPuZv5p6je9fKmYJsYGjXd2L%2Fzl%2BXzSvo%2BYSvFKzeOAjR%2FQwwEv8hqrmqferljBm7GJ%2BCF9dn5vrmTg%2BcIpqQCROoIWlT3BkRw0dyyCRjGxmZSB3%2BMY%2BPK9rSbrF3i41i3r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab7784d0b5756a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash