Report - nesa-by-baker.jimdosite.com/

Report Overview

Visited public
2025-02-04 21:25:41
Tags
URL
nesa-by-baker.jimdosite.com/
Finishing URL
nesa-by-baker.jimdosite.com/
IP / ASN
162.159.128.70
#13335 CLOUDFLARENET
Title
Home | NESA by Baker

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
at.prod.jimdo.systems	unknown	2021-03-10	2022-07-24	2025-02-04	4.4 kB	1.9 kB	54.73.104.6
fonts.jimstatic.com	66316	2012-01-23	2018-04-18	2025-02-04	2.1 kB	63 kB	172.64.146.218
jimdo-storage.freetls.fastly.net	209703	2011-04-18	2018-03-05	2025-01-29	580 B	3.5 kB	151.101.66.79
static-assets.jimstatic.com	unknown	2012-01-23	2025-01-28	2025-02-04	1.5 kB	956 kB	104.18.41.38
nesa-by-baker.jimdosite.com	unknown	2017-06-06	2025-02-04	2025-02-04	2.5 kB	31 kB	162.159.129.70

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	static-assets.jimstatic.com/renderer/static/29e9f6d6c4ce5af170fe.js	ScriptElement	3.2 MB	2025-02-04	2025-02-04
Pretty URL static-assets.jimstatic.com/renderer/static/29e9f6d6c4ce5af170fe.js IP 104.18.41.38 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-04 19:10 Last Seen2025-02-04 21:25 Times Seen3 Hash d67b7b2ccfd898ecd89bdaf2785f4444 b2903b5b27afb17bc8f3ce8b95c2be4bb951570f b82d054626b8e1f7a5d0a8bb3c9151c30ad8b330771e60bf554ef7196b68eed9 Loading...

	nesa-by-baker.jimdosite.com/	ScriptElement	54 B	2023-03-07	2025-05-06
Pretty URL nesa-by-baker.jimdosite.com/ IP 162.159.129.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:06 Last Seen2025-05-06 13:45 Times Seen143 Hash d79a4d34b3b3ce4f5a9fa1c1448651d8 8971313e28b53606438b02521a60cb4af5f27c88 990961cf6c9884d30a079d3eec5e72df51a85bd1ccc02b2095b67af2e15ad8fc Loading...

	unknown	ScriptElement	236 B	2025-02-04	2025-02-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-04 21:25 Last Seen2025-02-04 21:25 Times Seen1 Hash 59c5617cea22d14636dd51b591a84573 175531ab859e6f307002550280e02361e9f3ac2a 85e9e562e43a298f736da943845ea216d5277ef842195a3e8039efde8142a8f3 Loading...

	nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.5 kB	2025-02-04	2025-02-04
Pretty URL nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.129.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-04 21:25 Last Seen2025-02-04 21:25 Times Seen1 Hash 968d415350be5c33c6a6fe82ebf0f8c6 b125ea0803f96faedeca923721d88be37d230fd7 6c7664eb217c05d491b3c1479429017c1b2accc93b26e27b673505c44c7ca732 Loading...

	nesa-by-baker.jimdosite.com/	ScriptElement	7.9 kB	2025-02-04	2025-02-04
Pretty URL nesa-by-baker.jimdosite.com/ IP 162.159.129.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-04 21:25 Last Seen2025-02-04 21:25 Times Seen1 Hash 53905170a970e5e19e65f9e460c7ff7c e1579a17f19c9e0fdb2007dd60753767df4bbb29 68305c2b871e76e60c78c3d780e631ac4e64e4af158ad0d40a7d294e62083e32 Loading...

	nesa-by-baker.jimdosite.com/	ScriptElement	921 B	2025-02-04	2025-02-04
Pretty URL nesa-by-baker.jimdosite.com/ IP 162.159.129.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-04 21:25 Last Seen2025-02-04 21:25 Times Seen1 Hash 04792c923207fe633209d003a121529e 8b5bc96feb2e3566eeccee41bbc71d3347938045 e39a5b4abcffb046f5f26e993d400517440925806bee8d14df46191d0c5ba3c0 Loading...

HTTP Transactions (21)

	URL	IP	Response	Size
	fonts.jimstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2	172.64.146.218	200 OK	40 kB
URL GET HTTP/3 fonts.jimstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 IP 172.64.146.218:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerLet's Encrypt Subjectfonts.jimstatic.com Fingerprint87:B7:88:58:8F:ED:9C:2A:01:0A:50:94:BB:96:F8:1A:F9:B4:00:3E ValidityWed, 15 Jan 2025 07:19:10 GMT - Tue, 15 Apr 2025 07:19:09 GMT File type Web Open Font Format (Version 2), TrueType, length 40128, version 1.0 Size 40 kB (40128 bytes) Hash 9a01b69183a9604ab3a439e388b30501 8ed1d59003d0dbe6360481017b44665153665fbe 20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2 HTTP Headers GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1 Host: fonts.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://fonts.jimstatic.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 04 Feb 2025 21:25:17 GMT content-type: font/woff2 content-length: 40128 access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * x-content-type-options: nosniff x-xss-protection: 0 expires: Wed, 04 Feb 2026 08:56:50 GMT cache-control: public, max-age=31536000 last-modified: Wed, 08 Jan 2025 18:23:10 GMT alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=0 server: cloudflare cf-ray: 90cdbb7d6f6a569f-OSL server-timing: cfExtPri

	jimdo-storage.freetls.fastly.net/image/501358909/bad5e7a9-b04b-4913-a48f-09577cb499c8.jpg?format=pjpg&quality=80,90&auto=webp&disable=upscale&width=160&height=90	151.101.66.79	200 OK	2.6 kB
URL GET HTTP/2 jimdo-storage.freetls.fastly.net/image/501358909/bad5e7a9-b04b-4913-a48f-09577cb499c8.jpg?format=pjpg&quality=80,90&auto=webp&disable=upscale&width=160&height=90 IP 151.101.66.79:443 ASN #54113 FASTLY Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGlobalSign nv-sa Subject.freetls.fastly.net FingerprintB1:00:5F:51:78:48:F4:EE:B7:17:5C:BE:F2:09:0F:64:55:1B:0B:FA ValidityWed, 11 Sep 2024 23:14:24 GMT - Mon, 13 Oct 2025 23:14:23 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 160x90, Scaling: [none]x[none], YUV color, decoders should clamp Size 2.6 kB (2630 bytes) Hash 2c793e543430d40457c96ce31c7c97b2 1c641f44e1c65fa7232a3bf989a10ab0842a3936 89c3d43e76bc40e753b78ed589b397d88fe77933d1cee900ee7f1d3b16d9980d HTTP Headers GET /image/501358909/bad5e7a9-b04b-4913-a48f-09577cb499c8.jpg?format=pjpg&quality=80,90&auto=webp&disable=upscale&width=160&height=90 HTTP/1.1 Host: jimdo-storage.freetls.fastly.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK cache-control: max-age=31536000,public cache-tag: bad5e7a9-b04b-4913-a48f-09577cb499c8 content-language: en content-type: image/webp etag: "7/kypJgO8DbmRpEH5gch8fiGuIFX1o8xXzDi53rKqiU" fastly-io-info: ifsz=5593 idim=218x122 ifmt=jpeg ofsz=2630 odim=160x90 ofmt=webp fastly-io-served-by: vpop-etou8240195 fastly-stats: io=1 referrer-policy: same-origin strict-transport-security: max-age=15724800; includeSubDomains x-content-type-options: nosniff x-frame-options: DENY via: 1.1 varnish, 1.1 varnish access-control-allow-origin: * accept-ranges: bytes age: 7724 date: Tue, 04 Feb 2025 21:25:17 GMT x-served-by: cache-fra-eddf8230046-FRA, cache-hel1410027-HEL x-cache: HIT, MISS x-cache-hits: 24, 0 x-timer: S1738704317.082250,VS0,VE28 vary: Accept content-length: 2630 X-Firefox-Spdy: h2

	fonts.jimstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2	172.64.146.218	200 OK	8.0 kB
URL GET HTTP/3 fonts.jimstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP 172.64.146.218:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerLet's Encrypt Subjectfonts.jimstatic.com Fingerprint87:B7:88:58:8F:ED:9C:2A:01:0A:50:94:BB:96:F8:1A:F9:B4:00:3E ValidityWed, 15 Jan 2025 07:19:10 GMT - Tue, 15 Apr 2025 07:19:09 GMT File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0 Size 8.0 kB (8000 bytes) Hash 72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149 HTTP Headers GET /s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1 Host: fonts.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://fonts.jimstatic.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 04 Feb 2025 21:25:17 GMT content-type: font/woff2 content-length: 8000 access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * x-content-type-options: nosniff x-xss-protection: 0 expires: Sat, 31 Jan 2026 05:15:37 GMT cache-control: public, max-age=31536000 last-modified: Wed, 04 Dec 2024 06:53:31 GMT alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=0 server: cloudflare cf-ray: 90cdbb7d6f6b569f-OSL server-timing: cfExtPri

	static-assets.jimstatic.com/renderer/static/29e9f6d6c4ce5af170fe.js	104.18.41.38	200 OK	827 kB
URL GET HTTP/2 static-assets.jimstatic.com/renderer/static/29e9f6d6c4ce5af170fe.js IP 104.18.41.38:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectstatic-assets.jimstatic.com Fingerprint24:E7:76:4D:86:44:50:0E:BB:77:6A:1C:B0:D0:A6:AC:3A:A9:0F:FD ValidityMon, 13 Jan 2025 14:42:38 GMT - Sun, 13 Apr 2025 15:42:37 GMT File type JavaScript source, ASCII text, with very long lines (65458) Size 827 kB (827368 bytes) Hash d67b7b2ccfd898ecd89bdaf2785f4444 b2903b5b27afb17bc8f3ce8b95c2be4bb951570f b82d054626b8e1f7a5d0a8bb3c9151c30ad8b330771e60bf554ef7196b68eed9 HTTP Headers `GET /renderer/static/29e9f6d6c4ce5af170fe.js HTTP/1.1 Host: static-assets.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 04 Feb 2025 21:25:16 GMT content-type: text/javascript x-amz-id-2: oaotmKYWp9wbjUrH+Yf/u7IUHeDbfWlu9EN2yMJA7YbevbtvnVPDXVlKEGBlge4xSTngSXMwQVZ3jRvXB+yPR/VugcwkVj72 x-amz-request-id: XFD7WDJX7K15K05F last-modified: Tue, 04 Feb 2025 07:58:24 GMT etag: W/"d67b7b2ccfd898ecd89bdaf2785f4444" x-amz-server-side-encryption: AES256 x-amz-version-id: IZd6SWPzs7dLK7.sRZUcRxnB2MbFkkDK cf-cache-status: HIT vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-origin: * cache-control: public, max-age=31536000 server: cloudflare cf-ray: 90cdbb7bfc2c5691-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	162.159.129.70	302 Found	0 B
URL GET HTTP/3 nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.129.70:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectjimdosite.com Fingerprint08:2D:A9:80:9F:9D:6D:40:EB:11:E1:1B:BB:24:A4:34:0F:02:E4:09 ValiditySun, 12 Jan 2025 07:01:23 GMT - Sat, 12 Apr 2025 08:01:19 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1 Host: nesa-by-baker.jimdosite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: __cfruid=964a5ed8deb77bc959acfd19232bced3e59a9347-1738704316; _cfuvid=mogkIVaZwOvRVZpx9bLMPIZmW7ZvKYeHCkdI1PalA7U-1738704316207-0.0.1.1-604800000 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 302 Found date: Tue, 04 Feb 2025 21:25:17 GMT content-length: 0 location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/8a57887573f2/main.js? cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public access-control-allow-origin: * priority: u=3,i=?0 vary: Accept-Encoding server: cloudflare cf-ray: 90cdbb821abcb4ff-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri`

	static-assets.jimstatic.com/renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png	104.18.41.38	200 OK	549 B
URL GET HTTP/3 static-assets.jimstatic.com/renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png IP 104.18.41.38:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectstatic-assets.jimstatic.com Fingerprint24:E7:76:4D:86:44:50:0E:BB:77:6A:1C:B0:D0:A6:AC:3A:A9:0F:FD ValidityMon, 13 Jan 2025 14:42:38 GMT - Sun, 13 Apr 2025 15:42:37 GMT File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced Size 549 B (549 bytes) Hash fd400ada20e53b4bb4efbbeb0c0e16fd 16c4aefe874e9b5952a1e72528e1011bd38d8772 e29475fe49a5a23d5eca32e07367aa425d4a1f32d75dfe7e6d8d0398c35802ce HTTP Headers GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1 Host: static-assets.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 04 Feb 2025 21:25:17 GMT content-type: image/png content-length: 549 x-amz-id-2: SAQKw/7Vo6zSEGImOETdlHEbl4j67K3BVGDgTbWkHvj2/YV7j51l2nfaJTCbZJK8hC3PkDLsMsPYKBZv8/icFYBcYGvkW1UqYrKmo0CkmQE= x-amz-request-id: DKWPP533KHDF8TCN last-modified: Mon, 27 Jan 2025 09:21:24 GMT etag: "fd400ada20e53b4bb4efbbeb0c0e16fd" x-amz-server-side-encryption: AES256 x-amz-version-id: TYBVjGShyqMp9H67mX6rDL.zxDG6L17c cf-cache-status: HIT accept-ranges: bytes priority: u=6,i=?0 vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-origin: * cache-control: public, max-age=31536000 server: cloudflare cf-ray: 90cdbb8219ed56af-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri

	nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.3448565466336203:1738703528:j1DuxTs1Ex9NhAE8tQbIyxgtXPqfJ40uJSfPqsGSPeo/90cdbb77fa2656a9	162.159.129.70	200 OK	0 B
URL POST HTTP/3 nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.3448565466336203:1738703528:j1DuxTs1Ex9NhAE8tQbIyxgtXPqfJ40uJSfPqsGSPeo/90cdbb77fa2656a9 IP 162.159.129.70:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectjimdosite.com Fingerprint08:2D:A9:80:9F:9D:6D:40:EB:11:E1:1B:BB:24:A4:34:0F:02:E4:09 ValiditySun, 12 Jan 2025 07:01:23 GMT - Sat, 12 Apr 2025 08:01:19 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.3448565466336203:1738703528:j1DuxTs1Ex9NhAE8tQbIyxgtXPqfJ40uJSfPqsGSPeo/90cdbb77fa2656a9 HTTP/1.1 Host: nesa-by-baker.jimdosite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 12107 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Cookie: __cfruid=964a5ed8deb77bc959acfd19232bced3e59a9347-1738704316; _cfuvid=mogkIVaZwOvRVZpx9bLMPIZmW7ZvKYeHCkdI1PalA7U-1738704316207-0.0.1.1-604800000 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 04 Feb 2025 21:25:18 GMT content-type: text/plain; charset=UTF-8 content-length: 0 priority: u=3,i=?0 set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.jimdosite.com; Priority=High; HttpOnly; Secure; SameSite=None cf_clearance=pZZAPv6DrSgFhVdMF7UuHJbfzcSRSpGDPxMAYGy0LYg-1738704318-1.2.1.1-z5oMyRRXIhHB_0dm5PTmE5dhdWYZM6Mkw1DTf20ssDSbbZPrYnp6tCfczqh0C9gnHsnuYMBjTNhQgITJ9W0GyK9ET9pzIg0AUsQnwoAGvFihmLB6uT7mWbcdZPvSg_0Bap1yG4838esSg1t9tG9i6bBwM7JEtpIB2jfV1fJo4tHcDsXuRgtQl3IVIIyQw2ouJIf_l29ukkHVWmcXJTwZAM18cP7N_9kT5orCNBUAUYArSY4EVgEj4yCOaHuOmHkg7W5KZksvdEYPMXoTZfvoJ0XNE9DJi43gOP20yzUyu7g; Path=/; Expires=Wed, 04-Feb-26 21:25:18 GMT; Domain=.jimdosite.com; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned server: cloudflare cf-ray: 90cdbb85ff4ab4ff-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri

	at.prod.jimdo.systems/cf	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/cf IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cf HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 317 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/anon	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/anon IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /anon HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 317 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/anon	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/anon IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /anon HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 314 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/cf	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/cf IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cf HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 314 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	fonts.jimstatic.com/css?display=swap&family=Poppins:600,700	172.64.146.218	200 OK	402 B
URL GET HTTP/2 fonts.jimstatic.com/css?display=swap&family=Poppins:600,700 IP 172.64.146.218:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerLet's Encrypt Subjectfonts.jimstatic.com Fingerprint87:B7:88:58:8F:ED:9C:2A:01:0A:50:94:BB:96:F8:1A:F9:B4:00:3E ValidityWed, 15 Jan 2025 07:19:10 GMT - Tue, 15 Apr 2025 07:19:09 GMT File type ASCII text Size 402 B (402 bytes) Hash d4d3bf56f6dcf7b0220086286683b0db 3f62226bd5ac9df07a47bace316c7348e27809da 2312d413c757da161b5b3fe8394acc86414cc6888937866918b68ead29222083 HTTP Headers `GET /css?display=swap&family=Poppins:600,700 HTTP/1.1 Host: fonts.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 04 Feb 2025 21:25:16 GMT content-type: text/css; charset=utf-8 cf-ray: 90cdbb7bf9ff5696-OSL cf-cache-status: DYNAMIC access-control-allow-origin: * cache-control: private, max-age=86400 content-encoding: gzip expires: Tue, 04 Feb 2025 21:25:16 GMT link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=0 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site, accept-encoding alt-svc: h3=":443"; ma=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 0 server: cloudflare X-Firefox-Spdy: h2

	at.prod.jimdo.systems/anon	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/anon IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /anon HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 243 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/cf	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/cf IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cf HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 320 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/anon	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/anon IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /anon HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 320 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:18 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/anon	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/anon IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /anon HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 392 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:39 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	at.prod.jimdo.systems/cf	54.73.104.6	204 No Content	0 B
URL POST HTTP/2 at.prod.jimdo.systems/cf IP 54.73.104.6:443 ASN #16509 AMAZON-02 Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerAmazon Subjectprod.jimdo.systems FingerprintAE:35:CA:9F:35:B8:E2:52:BD:9A:94:19:55:8D:32:97:E3:59:62:59 ValidityMon, 25 Nov 2024 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /cf HTTP/1.1 Host: at.prod.jimdo.systems User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 392 Origin: https://nesa-by-baker.jimdosite.com DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content date: Tue, 04 Feb 2025 21:25:39 GMT access-control-allow-origin: https://nesa-by-baker.jimdosite.com strict-transport-security: max-age=15724800; includeSubDomains X-Firefox-Spdy: h2`

	nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/8a57887573f2/main.js?	162.159.129.70	200 OK	8.5 kB
URL GET HTTP/3 nesa-by-baker.jimdosite.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/8a57887573f2/main.js? IP 162.159.129.70:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectjimdosite.com Fingerprint08:2D:A9:80:9F:9D:6D:40:EB:11:E1:1B:BB:24:A4:34:0F:02:E4:09 ValiditySun, 12 Jan 2025 07:01:23 GMT - Sat, 12 Apr 2025 08:01:19 GMT File type JavaScript source, ASCII text, with very long lines (8453), with no line terminators Size 8.5 kB (8453 bytes) Hash 968d415350be5c33c6a6fe82ebf0f8c6 b125ea0803f96faedeca923721d88be37d230fd7 6c7664eb217c05d491b3c1479429017c1b2accc93b26e27b673505c44c7ca732 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/8a57887573f2/main.js? HTTP/1.1 Host: nesa-by-baker.jimdosite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: __cfruid=964a5ed8deb77bc959acfd19232bced3e59a9347-1738704316; _cfuvid=mogkIVaZwOvRVZpx9bLMPIZmW7ZvKYeHCkdI1PalA7U-1738704316207-0.0.1.1-604800000 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 04 Feb 2025 21:25:17 GMT content-type: application/javascript; charset=UTF-8 cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public x-content-type-options: nosniff priority: u=3,i=?0 vary: Accept-Encoding server: cloudflare cf-ray: 90cdbb825b04b4ff-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 server-timing: cfExtPri`

	nesa-by-baker.jimdosite.com/	162.159.129.70	200 OK	18 kB
URL User Request GET HTTP/2 nesa-by-baker.jimdosite.com/ IP 162.159.129.70:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectjimdosite.com Fingerprint08:2D:A9:80:9F:9D:6D:40:EB:11:E1:1B:BB:24:A4:34:0F:02:E4:09 ValiditySun, 12 Jan 2025 07:01:23 GMT - Sat, 12 Apr 2025 08:01:19 GMT File type HTML document, ASCII text, with very long lines (7871) Size 18 kB (17884 bytes) Hash df9b65b11069e0fd23a2f0a406026dba c8571e8751ff602605f37c28b4bf7993c878401b 0007c620beae13410c8a3d2d52e9b9dd78e6e39cda5e2cd5df11f30822a0520d HTTP Headers `GET / HTTP/1.1 Host: nesa-by-baker.jimdosite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 04 Feb 2025 21:25:16 GMT content-type: text/html; charset=utf-8 content-language: en content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' https://challenges.cloudflare.com https://iframe.jimcdn.com https://googleads.g.doubleclick.net https://www.paypal.com https://js.stripe.com https://static-assets.jimstatic.com https://crm-nextjs-frontend.prod.jimdo.systems 'unsafe-inline' https://www.youtube.com https://www.youtube-nocookie.com .googletagmanager.com .google-analytics.com https://www.googleadservices.com https://www.google.com https://connect.facebook.net https://www.facebook.com/signals/iwl.js; connect-src 'self' .jimdo.systems https://api.e.jimdo.com https://fonts.jimstatic.com https://storage.jimdosite.com https://cms-backend.jimdosite.com https://www.paypal.com https://eu-api.friendlycaptcha.eu .google-analytics.com .analytics.google.com .googletagmanager.com https://www.google.com https://adservice.google.com https://www.facebook.com https://graph.facebook.com; frame-src https://challenges.cloudflare.com https://accounts.google.com https://calendar.google.com https://docs.google.com https://www.google.com https://iframe.jimcdn.com https://js.stripe.com https://www.paypal.com https://open.spotify.com https://embed.music.apple.com https://embed-standalone.spotify.com https://embed.podcasts.apple.com https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://vimeo.com https://bandcamp.com https://w.soundcloud.com https://www.dailymotion.com https://assets.pinterest.com .typeform.com https://drive.google.com https://www.facebook.com https://www.canva.com https://giphy.com https://app.resmio.com; img-src https://i.ytimg.com https://www.google.com https://www.google.de https://www.google.fr https://www.google.it https://www.google.es https://www.google.nl https://www.google.be https://www.google.ch https://www.google.at https://www.google.ca https://www.google.co.uk https://www.google.com.au https://www.google.ie https://www.google.co.jp https://www.google.co.nz 'self' data: https://jimdo-storage.freetls.fastly.net https://static-assets.jimstatic.com https://t.paypal.com https://www.paypalobjects.com https://i.vimeocdn.com .mzstatic.com .googletagmanager.com .google-analytics.com https://googleads.g.doubleclick.net https://www.google.com https://www.facebook.com; style-src 'self' https://fonts.jimstatic.com https://static-assets.jimstatic.com https://crm-nextjs-frontend.prod.jimdo.systems 'unsafe-inline'; frame-ancestors 'self' *.jimdo.com jimdo.com; font-src https://fonts.jimstatic.com; object-src 'none'; worker-src 'self' blob: cf-cache-status: HIT vary: Accept-Encoding set-cookie: __cfruid=964a5ed8deb77bc959acfd19232bced3e59a9347-1738704316; path=/; domain=.jimdosite.com; HttpOnly; Secure; SameSite=None _cfuvid=mogkIVaZwOvRVZpx9bLMPIZmW7ZvKYeHCkdI1PalA7U-1738704316207-0.0.1.1-604800000; path=/; domain=.jimdosite.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 90cdbb77fa2656a9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	static-assets.jimstatic.com/renderer/static/1bcd77d5c3b5b9aac279.css	104.18.41.38	200 OK	126 kB
URL GET HTTP/2 static-assets.jimstatic.com/renderer/static/1bcd77d5c3b5b9aac279.css IP 104.18.41.38:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerGoogle Trust Services Subjectstatic-assets.jimstatic.com Fingerprint24:E7:76:4D:86:44:50:0E:BB:77:6A:1C:B0:D0:A6:AC:3A:A9:0F:FD ValidityMon, 13 Jan 2025 14:42:38 GMT - Sun, 13 Apr 2025 15:42:37 GMT File type Size 126 kB (125513 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /renderer/static/1bcd77d5c3b5b9aac279.css HTTP/1.1 Host: static-assets.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 04 Feb 2025 21:25:16 GMT content-type: text/css x-amz-id-2: 5TSyiKkWyYRBt3mIHmMLzP/rzHxxpv09M+vSmnfuW2BxinVf1ISWIv73q1V3XYw4QRh2WREty+I= x-amz-request-id: MG4FNF24TWJAYNK9 last-modified: Mon, 27 Jan 2025 09:21:24 GMT etag: W/"c48a2e226ef3eb90fdf6f95e3458f30a" x-amz-server-side-encryption: AES256 x-amz-version-id: CnBOzGnY8F61TV8YIymiKr3a6QhdmHD0 cf-cache-status: HIT age: 3 vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-origin: * cache-control: public, max-age=31536000 server: cloudflare cf-ray: 90cdbb7bec1a5691-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.jimstatic.com/css?display=swap&family=Roboto:400,700	172.64.146.218	200 OK	11 kB
URL GET HTTP/2 fonts.jimstatic.com/css?display=swap&family=Roboto:400,700 IP 172.64.146.218:443 ASN #13335 CLOUDFLARENET Requested by https://nesa-by-baker.jimdosite.com/ Certificate IssuerLet's Encrypt Subjectfonts.jimstatic.com Fingerprint87:B7:88:58:8F:ED:9C:2A:01:0A:50:94:BB:96:F8:1A:F9:B4:00:3E ValidityWed, 15 Jan 2025 07:19:10 GMT - Tue, 15 Apr 2025 07:19:09 GMT File type ASCII text, with very long lines (1572) Size 11 kB (11206 bytes) Hash cfbcaf5febbf7607fdedadd50d538499 c5bc61f62f9bfe0008f9f07f6bd6a82dcf9b02ec 932b81b4af0506a64bd506b16be1a9172534b12a1f50cca39f3cb5c447b560f4 HTTP Headers `GET /css?display=swap&family=Roboto:400,700 HTTP/1.1 Host: fonts.jimstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://nesa-by-baker.jimdosite.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 04 Feb 2025 21:25:16 GMT content-type: text/css; charset=utf-8 cf-ray: 90cdbb7bf9f25696-OSL cf-cache-status: DYNAMIC access-control-allow-origin: * cache-control: private, max-age=86400 content-encoding: gzip expires: Tue, 04 Feb 2025 21:25:16 GMT link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=0 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site, accept-encoding alt-svc: h3=":443"; ma=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 0 server: cloudflare X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2