Report - old.sermitsiaq.ag/

Report Overview

Visited public
2024-07-30 20:25:34
Tags
URL
old.sermitsiaq.ag/
Finishing URL
old.sermitsiaq.ag/
IP / ASN
85.159.213.158
#63949 Akamai Connected Cloud
Title
Printable Template

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
apis.google.com	105	1997-09-15	2013-05-06 22:20:21	2024-07-29 18:12:14	958 B	81 kB	142.250.74.110
recordedthereby.com	unknown	2024-05-08	2024-05-14 07:24:53	2024-07-29 19:59:01	404 B	86 kB	104.21.91.24
employmentpersons.com	unknown	2024-07-01	2024-07-03 08:26:32	2024-07-28 11:15:07	490 B	467 B	192.243.59.20
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2024-07-29 19:59:02	737 B	471 B	192.243.61.225
old.sermitsiaq.ag	unknown	2009-12-02	2013-09-26 02:03:33	2024-03-04 12:57:49	9.8 kB	123 kB	85.159.213.158
xss.my.id	unknown	2021-08-04	2021-08-04 06:28:38	2024-04-18 13:54:46	2.5 kB	15 kB	167.172.148.114
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-07-29 18:15:41	424 B	104 kB	142.250.74.168
modificationdesignate.com	unknown	unknown	No data	No data	444 B	13 kB	172.240.253.132
speechanchor.com	unknown	2024-07-01	2024-07-01 21:33:34	2024-07-27 19:09:16	2.9 kB	37 kB	192.243.61.227
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2024-07-29 17:51:24	441 B	264 kB	45.133.44.10
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-29 18:12:12	981 B	2.7 kB	23.36.76.226
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-07-29 18:12:26	2.3 kB	4.9 kB	142.250.74.131
ts2.mm.bing.net	309838	1997-09-03	2012-06-27 21:39:32	2024-07-30 12:09:01	4.6 kB	327 kB	150.171.28.10
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2024-07-29 19:59:01	435 B	424 B	52.57.71.154
blogger.googleusercontent.com	16485	2008-11-17	2012-05-25 19:41:01	2024-07-29 19:21:46	1.3 kB	5.0 kB	142.250.74.129

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-30	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (43)

	URL	From	Size	First Seen	Last Seen
	unknown	EventHandler	58 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 42a96945e120e5e6a8ad92cd8be701f8 6a7bf9c671807e281bdc59bf7b9b62f1d9795943 8bcfd3b01caa19804ec8e04fed5eeffeb82c8cd640ade26bb45f385dec6d5b3c Loading...

	unknown	EventHandler	76 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 59b344f6ccd03a0649c600764d617cf8 b83e4ec9c9234b09f61c8d9975da2aa09ef49f65 2709f40f170c6b620993fb4e8b9acd3ea44dcb9c636ff17ee3433af6190879bd Loading...

	xss.my.id/theme/batman/head.js	ScriptElement	172 B	2024-08-19	2024-11-30
Pretty URL xss.my.id/theme/batman/head.js IP 167.172.148.114 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 3f74bbd5a5f1ff144d73d2c538df14ce 296641eea2541fbb97aacb7d9245da4dcf9bdec4 8b90117611bb8564ff3e14f13c7034a79977a95e6ffd4dedbdf429cedbfdd1f0 Loading...

	xss.my.id/ads/lekinapotencje.js	ScriptElement	1.7 kB	2024-06-11	2024-08-19
Pretty URL xss.my.id/ads/lekinapotencje.js IP 167.172.148.114 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-11 16:19 Last Seen2024-08-19 20:17 Times Seen4 Hash 2ee0559648b8df728e6f192b55c65e68 17bb3bd368e33e348e0236d2525d7ef41328e8fa a81dbf53c56ae1f6ec66d2d7d6f153c09003a3f3459d84e166ec0b3482ce6f86 Loading...

	unknown	EventHandler	72 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash cd361273e82244ee8ec3bf4000acb18e f608b492637984f9e24eca29ae4b22a085fbc0b0 a9af17f6ab8410e7b64617297da941b291709d77ab4b18ab259e2c705a398247 Loading...

	unknown	EventHandler	71 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash e1fa30266c0b72952757e6b553caff6f 56f19bec41ffa02fa1795d6c04c4918585205f6c 9c1e496acdfcfee6c651c32d22c37404f91d39c8296e6efbdb1404429cb23a5a Loading...

	unknown	ScriptElement	145 B	2024-05-24	2025-06-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen22 Hash 6bb23a7d1cfd43fbd321bf370e7b16c4 bd6bf3179c23a0ff50429fd35a70e996516881fa 0bf9fb0cd27895dd929f5038edd1ea460e2b229abda170c3b0195b301cf48999 Loading...

	xss.my.id/theme/batman/headcode.js?v=82398	ScriptElement	1.6 kB	2024-08-19	2024-11-30
Pretty URL xss.my.id/theme/batman/headcode.js?v=82398 IP 167.172.148.114 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash aa15af8158f7c690502a25562fdf7f2c 7705fb97ef730bad6cd40e3e325b0a212b9dfa61 565eba1700ab049849db10a39e811abe83ae04d754c259df6ffaebd093b43f6b Loading...

	unknown	EventHandler	60 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 9e49af01376e18bf43d4819054590c18 8f40ab889f41f779fd03d1565811daa6c4c98823 7f8a3cbf4e4f9d204da59cf830684335741cb6b8dab3e3e607f46baa8f3de646 Loading...

	unknown	EventHandler	66 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash db8de0509f9c893fb6c6099cc9b66717 2bb7a034074f9a072003edb7804f43ef30dc3491 ae566f4bcb165871d9c9fe06906d9dc5aad5fe34841e741d9bf247b007a93b2c Loading...

	xss.my.id/ads/banner-loading.js	ScriptElement	298 B	2024-07-17	2025-05-30
Pretty URL xss.my.id/ads/banner-loading.js IP 167.172.148.114 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-17 00:49 Last Seen2025-05-30 17:29 Times Seen21 Hash 6410776ef550d8d26846782fd73ab99d 50cb95ec1890e9d9bb13b6d2b1c3cafd268a0e0f 17d896de76e12861acf4136e208e6015ceaf9ad2a0db8216073137e78440ca9e Loading...

	speechanchor.com/84/93/2d/84932d40653827795625f2179d43ab52.js	ScriptElement	84 kB	2024-08-19	2024-08-19
Pretty URL speechanchor.com/84/93/2d/84932d40653827795625f2179d43ab52.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 3dd5d360e96ec422537c8a9947664c2b 1e8ac7670951123eb853b4c1210afd1db85b41d3 8430c9b9786f42ca5bef644ffbe05cd60f3df936bc868fb19fd7fb90b1a810d8 Loading...

	unknown	ScriptElement	3.4 kB	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 04b9fc49aec36db788d215819214e8b0 41b82eb677adf508513ccd581ba6617ec2d6cd93 3c4dce42d86c12a359c0ff9368514037f7183ce51fa565638939bdcdb4649211 Loading...

	unknown	EventHandler	67 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 307f02a94342cf823ce278dc3cf9fbfa a977fcc4e1f61fbb57a84e4ba4240d3efa6690b8 0464d0cc503370741e8e733d577dbd7a9ba311bfea72e548e51337b0eca444c6 Loading...

	old.sermitsiaq.ag/	ScriptElement	57 B	2023-03-07	2025-06-16
Pretty URL old.sermitsiaq.ag/ IP 85.159.213.158 ASN #63949 Akamai Connected Cloud Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-06-16 09:36 Times Seen356 Hash 2ef7d17d521d07b80a206d8119b27b52 7ccb178d143cdb4eacf7aef4f1b9b3bfc7282961 03d6bef1ce2b986d98f9ffaf5b065ed94097d172c369bd826821b2bfef38252d Loading...

	www.googletagmanager.com/gtag/js?id=G-S5MTG642M7	ScriptElement	314 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-S5MTG642M7 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 1d4cbce14993a66630339be197d8e607 df668df16f1a8dd127e97b927a554bfb959ad333 5cff9ad45672475b8c98ded1732b950b8c3e0ff66746c719f32014f28ce026d6 Loading...

	modificationdesignate.com/136d4e249eb5c2ca63d4dd0de8205e70/invoke.js	ScriptElement	31 kB	2024-08-19	2024-08-19
Pretty URL modificationdesignate.com/136d4e249eb5c2ca63d4dd0de8205e70/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 4d57641dbb155ce479dfbd97a1526310 fd47d8e383326cb4f3fd79998bc6fd19b5689323 137faeda6623fc38f755d92b0c43dd2c28c1069e038b5c0c549e466c5b7ce22f Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.pGGAptgAK4s.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo-Cic-4VdRMZ7mFCYOA3wzpF7O-6g/cb=gapi.loaded_0?le=scs	ScriptElement	166 kB	2024-07-17	2024-08-29
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.pGGAptgAK4s.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo-Cic-4VdRMZ7mFCYOA3wzpF7O-6g/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-17 06:07 Last Seen2024-08-29 18:11 Times Seen373 Hash 9d72b6a80324e74b227825ed638959f9 6f3ef32a2cbbb554ec1732a29eee87d005b7b0fe 72888c73c7cbff54c030f2bf084b265196276cbc3bcd96d4bea274fc424322e9 Loading...

	unknown	EventHandler	67 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash c8b75851d8451e6a64c7c63c2e682632 247bee6c90ca64b547b40aaba493ee67a9c9ad6d f433e0a565052796b559fc8607fce51ab937f440a67229cdfe693d1830dc7525 Loading...

	unknown	EventHandler	70 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash 77e9f0e9e65cdd7568cd93708ebf8ead 46bafc12ada64823739277bb5a9e5f09db946dc4 04c10ac738eb55eccba2df5bc62fc5a83ae030459de65abf593ed0029ca61902 Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2024-05-17	2025-01-21
Pretty URL recordedthereby.com/sfp.js IP 104.21.91.24 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17 16:43 Last Seen2025-01-21 11:22 Times Seen13574 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	unknown	EventHandler	69 B	2024-08-19	2024-11-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash b2de8d12e1e04bb9dd3060020e7232d9 1b17af573b1fcc3748ee1075f912650ee0d4e1fb 979d414d8953541cc41bd3095dbac4ddf0cc717810c9264ada48a7a6b9995eab Loading...

	apis.google.com/js/plusone.js	ScriptElement	57 kB	2024-07-17	2024-08-19
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-17 06:07 Last Seen2024-08-19 16:42 Times Seen175 Hash 15a42f20a492648f7c1595ea6bc99244 50f3505e5459985af041ec26a6b412cfc2dc1cb5 03998e7490f0e8f7d8490dc68ee8020101ddb4e8418567dbaa93426d15b721cb Loading...

	xss.my.id/theme/batman/body.js	ScriptElement	662 B	2024-06-11	2024-08-19
Pretty URL xss.my.id/theme/batman/body.js IP 167.172.148.114 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-11 16:19 Last Seen2024-08-19 20:17 Times Seen4 Hash 47d75909b1d2a6fcefa20244c68d0ae5 2dc263bf10600d745ff057ed3e5b94c0ca48ef6f cdabb4930355af23406648d3ae6e0c6f798bb4b521d1aa87aceb0cd284fe8946 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 28b16b966772309afaf914a9b356c6b2	2.1 kB	2024-08-19 15:14	2024-08-19 15:14
Pretty Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 28b16b966772309afaf914a9b356c6b2 78d0318f2ab5ded7b67fd23580d42d69555377c2 4cefdd5c8afef80aa49612e4463ac50ea5c0b33d0be3d20b9b080b4f16abba2f Loading...

		Size	First Seen	Last Seen
	#1 Write - f8ff06093703f3fa273c1384958ca26a	73 B	2023-09-25 08:26	2025-06-16 09:36
Pretty Observations First Seen2023-09-25 08:26 Last Seen2025-06-16 09:36 Times Seen45 Hash f8ff06093703f3fa273c1384958ca26a 9a276c4d8ba45cb9bee515f962d5ec32bf1396b9 aa8589d8d0811c5665a17c795c1c6ae526c6c451a6a675e946fd80be8f1ab02b Loading...

	#2 Write - cfb0b5f8ccae71824d6eaeed9d5efb2c	4 B	2023-03-07 01:06	2025-06-20 01:41
Pretty Observations First Seen2023-03-07 01:06 Last Seen2025-06-20 01:41 Times Seen1827 Hash cfb0b5f8ccae71824d6eaeed9d5efb2c f26a5fc2d93401fd0a0fb60d5b8ba770e74ca387 ecd5b806462c7dfdf078ac76c549060a06660422d00e55bd5823be6747361085 Loading...

	#3 Write - 928a6b1b4fff9dbe2ff011a2b613c80c	97 B	2024-08-19 15:14	2024-08-19 15:14
Pretty Observations First Seen2024-08-19 15:14 Last Seen2024-08-19 15:14 Times Seen1 Hash 928a6b1b4fff9dbe2ff011a2b613c80c 0af73397057f94db5268d36af14a122c9feab6ae 127e1a07033f558dabf558516ef653253701f62fbcfbad609f09307f14bd6daf Loading...

	#4 Write - 44a68e54cdd64b817bb896955029e85d	86 B	2024-05-24 23:22	2025-06-16 09:36
Pretty Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen26 Hash 44a68e54cdd64b817bb896955029e85d 0d941cc0b1894da48306c87ee362eacbd57450d6 34d70ab68b4a10a632ed668dd3f96ebe066a2e5250d58050d6ed58d3d031ef41 Loading...

	#5 Write - 0a3a0b592b9c285e050805307cee87c2	6 B	2023-03-07 01:02	2025-06-20 04:00
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-20 04:00 Times Seen81275 Hash 0a3a0b592b9c285e050805307cee87c2 125a168e24b2bd38aadb84cbb5f87f316b073c41 aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23 Loading...

	#6 Write - 31a9aff1cd093d558dca207abbd21722	86 B	2024-05-24 23:22	2025-06-16 09:36
Pretty Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen25 Hash 31a9aff1cd093d558dca207abbd21722 431e207cca84621735ffa40eb73a17c70ec78a04 fdbc23415b13e6b3e7ccc34616eb354b62d0695c9ed4c80c3defd815a55986df Loading...

	#7 Write - 4ca5d00357d04771236decd7ab57af71	99 B	2023-03-08 13:03	2025-06-16 09:36
Pretty Observations First Seen2023-03-08 13:03 Last Seen2025-06-16 09:36 Times Seen44 Hash 4ca5d00357d04771236decd7ab57af71 cd08b22c8429ce38fd19989bfc33753a25650b6a 3d2830046b40ea7540d4d1b4111969f73cbc1182a4ec6d5e6e23e5f7d852781a Loading...

	#8 Write - ea2c2331fc2a5f7bf2c0614e7eee757e	10 B	2023-03-08 03:46	2025-06-16 09:36
Pretty Observations First Seen2023-03-08 03:46 Last Seen2025-06-16 09:36 Times Seen48 Hash ea2c2331fc2a5f7bf2c0614e7eee757e 040a5adadf233c74b3332c22a4ef9bc71441ec74 afa80f60acb1123da22dea397a1192ae042672696f1e0226fe24b35d6cebfaa4 Loading...

	#9 Write - cbf24e1ca7c732f8ed5031b26cb5d907	144 B	2024-05-24 23:22	2025-06-16 09:36
Pretty Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen25 Hash cbf24e1ca7c732f8ed5031b26cb5d907 3bf194d35f90d561b10b4010fbb6537ff3733187 acb4ebc9997326d3d11bdac1612f210b5e3abd234de6d3c43a39d43a62f06f04 Loading...

	#10 Write - d5e3f662637ca22d62f6313bfc9465b1	11 B	2023-03-08 03:46	2025-06-16 09:36
Pretty Observations First Seen2023-03-08 03:46 Last Seen2025-06-16 09:36 Times Seen48 Hash d5e3f662637ca22d62f6313bfc9465b1 0561478bdbc18e9f3c18f1e2a7de9c84cb6da0ad 87b340b3d41d02d8504556ecab12f77dc9ae9c6b92b794f23de2aa5faa91c30b Loading...

	#11 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11 11:15	2025-05-15 07:59
Pretty Observations First Seen2023-03-11 11:15 Last Seen2025-05-15 07:59 Times Seen7837 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

	#12 Write - f9bf3e939049f22cea2211fbba28afe6	147 B	2024-05-24 23:22	2025-06-16 09:36
Pretty Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen34 Hash f9bf3e939049f22cea2211fbba28afe6 2384c3cba3a8d4f066f2a89f052cc234b3ece9ba 1b926cd014ca9b6654b1e70f98d73376e31246c35403c6b2acd792f2ccf9807e Loading...

	#13 Write - ee8c0a1bd0eb372343a3a7c2feb95195	65 B	2024-05-24 23:22	2025-06-16 09:36
Pretty Observations First Seen2024-05-24 23:22 Last Seen2025-06-16 09:36 Times Seen24 Hash ee8c0a1bd0eb372343a3a7c2feb95195 df24a90e0d8386f1df6f97cdc1d86e5968b1ef4f 0d377d408f5fce301438bb5202163bb5df7936a09d53743cad232d52f7ff9cd9 Loading...

	#14 Write - fe2875aef3c96782c9adf10627e9d5e1	101 B	2023-03-12 20:13	2025-06-16 09:36
Pretty Observations First Seen2023-03-12 20:13 Last Seen2025-06-16 09:36 Times Seen34 Hash fe2875aef3c96782c9adf10627e9d5e1 ddcbb3354146c3c47d2eb6b58e5b64ee789cb757 6356df9f70866e66245501933da509d2fe9afdf95347044adc1dc18d8459da13 Loading...

	#15 Write - a042402462fc9ef5d57e0d133706d500	85 B	2024-08-19 15:14	2024-11-30 21:19
Pretty Observations First Seen2024-08-19 15:14 Last Seen2024-11-30 21:19 Times Seen2 Hash a042402462fc9ef5d57e0d133706d500 32f0f900c678c0e9d4fd15995cba1f5799a02520 6499f53a5150433259c4e878d65bf024e8db390dfeb4165f282de114d69a5498 Loading...

	#16 Write - b72b9ee407fb3779ceb46237858dfebe	86 B	2024-06-11 16:19	2024-08-19 20:17
Pretty Observations First Seen2024-06-11 16:19 Last Seen2024-08-19 20:17 Times Seen4 Hash b72b9ee407fb3779ceb46237858dfebe c377b62c00f468868ae6f500a790fbb0adf9a80a 90c213434369c5e9eeea944888dff64110e2714771c089cbe1102b4a4a26a3eb Loading...

	#17 Write - eb953cce9a6ebf5d8ebf4d33d5c4d385	117 B	2024-07-17 00:49	2025-05-30 17:29
Pretty Observations First Seen2024-07-17 00:49 Last Seen2025-05-30 17:29 Times Seen21 Hash eb953cce9a6ebf5d8ebf4d33d5c4d385 7e01fd31ff86d066d03eeb02c5f46e29e3ede8f0 cfd00278d20e105b0925a44201f5525eee0c5d2f1b0d0d81269698249811cd7b Loading...

	#18 Write - caea457e8c0f9ab942b833e68b4890e7	25 B	2023-09-25 08:26	2025-06-16 09:36
Pretty Observations First Seen2023-09-25 08:26 Last Seen2025-06-16 09:36 Times Seen45 Hash caea457e8c0f9ab942b833e68b4890e7 53eae8b48c540d746dac4bd9168db76521844fbc 9f1977d6975b623753724fe570da540560dd7bbcad060e28308ae2cca469a89c Loading...

HTTP Transactions (61)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7335e53b6e780bcc46feb27b6421e625
d5405503dbb1d5d734473133fdd449be49ef8ef0
3fe77d2e06518aee992b779c45a0b57d1353d7e9232e57d99d79bfdfaa488e34

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3FE77D2E06518AEE992B779C45A0B57D1353D7E9232E57D99D79BFDFAA488E34"
Last-Modified: Mon, 29 Jul 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4384
Expires: Tue, 30 Jul 2024 21:38:10 GMT
Date: Tue, 30 Jul 2024 20:25:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
82b2663199053445571dc9d67e7e50bf
8b3bcfd732c9742dbccdc0469b6291fda621054e
3a1f6dcd614b189fea9d453e4a6101aed280eae92c612c243c4f01a6cccb151c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3A1F6DCD614B189FEA9D453E4A6101AED280EAE92C612C243C4F01A6CCCB151C"
Last-Modified: Mon, 29 Jul 2024 19:06:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2837
Expires: Tue, 30 Jul 2024 21:12:23 GMT
Date: Tue, 30 Jul 2024 20:25:06 GMT
Connection: keep-alive

GET old.sermitsiaq.ag/

85.159.213.158

200 OK

4.3 kB

URL User Request GET HTTP/2
old.sermitsiaq.ag/
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (399)
Size
4.3 kB (4336 bytes)
Hash
ae976a2695583a8a3c5b1e227677ba79
e4044bae3177ea559b0d678ceb4c6577ab7cd41e
b2da44c93fb0ac76fe22c5c1c6a5e2e910f019d6b6288b75ae021ec5151ade9c

HTTP Headers

GET / HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 18:18:12 GMT
etag: "6344-6061edd5df9e8-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4336
content-type: text/html
date: Tue, 30 Jul 2024 20:25:06 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/detailed-oc-template.html

85.159.213.158

200 OK

6.1 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/detailed-oc-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1763), with CRLF, LF line terminators
Size
6.1 kB (6105 bytes)
Hash
e91d2f1d048ae71d499ff4d195a5f5bc
d543414d7ee662e7ddca0705062720a414d83881
349ff2fbfc281f7aa4e70fb701cc0e8dfea73d629a8970923a1303dac53f80f0

HTTP Headers

GET /en/detailed-oc-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 06:09:57 GMT
etag: "80fa-60614b0e25740-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6105
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/project-discovery-template.html

85.159.213.158

200 OK

5.7 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/project-discovery-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1402), with CRLF, LF line terminators
Size
5.7 kB (5680 bytes)
Hash
fa1934b212616ddc4b936cae211216c5
54841628d4aa1ae962132acdc9c98a7b4f3a2726
193e99803bf7f9be1986260edb40be4b1dff591d8a12e0dd7f0ba08a07f5acf5

HTTP Headers

GET /en/project-discovery-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:44:18 GMT
etag: "7a63-606137e936c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5680
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-puff-htv.html

85.159.213.158

200 OK

5.2 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-puff-htv.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1410), with CRLF, LF line terminators
Size
5.2 kB (5158 bytes)
Hash
090dee7fa5790af334f66c99f6ce609f
04efe75d30bc5fabdaf6affdc176fee2781bff76
790e5af657693ee77ad67b236e4a06a7ed0d44f0000ca7a382ff3914dc130d27

HTTP Headers

GET /en/printable-puff-htv.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 03:33:34 GMT
etag: "77a1-60612819d1f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5158
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/org-chart-ppt-template-free-download.html

85.159.213.158

200 OK

5.6 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/org-chart-ppt-template-free-download.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1658), with CRLF, LF line terminators
Size
5.6 kB (5631 bytes)
Hash
c6861546d39e43c7cc492e973876e4a9
8a580882c7083387a643d2369c69d027070698c1
8698ece35aed15339d93662c922b52420ba93b26080be330364ddc6cbc212bb9

HTTP Headers

GET /en/org-chart-ppt-template-free-download.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 05:19:57 GMT
etag: "7e7b-60613fe11f940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5631
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-fabric-slipper-pattern.html

85.159.213.158

200 OK

6.4 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-fabric-slipper-pattern.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1748), with CRLF, LF line terminators
Size
6.4 kB (6429 bytes)
Hash
eff5bb7b845c8e3536cfb94fe33b9099
9602ea9aa6cb94a3bf14ccf006d7f5280ffa20a8
2254846c6a9ca89b6393f6f26fc8d20cfb0bc8ad678e3da8a9749d9ed7a71e3a

HTTP Headers

GET /en/printable-fabric-slipper-pattern.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:58:37 GMT
etag: "7b9d-60613b1c6b940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6429
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/clickup-dashboard-templates.html

85.159.213.158

200 OK

5.9 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/clickup-dashboard-templates.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1436), with CRLF, LF line terminators
Size
5.9 kB (5896 bytes)
Hash
31cb99b49a0bf38678bc4dfb4b2bf0ca
a47d1c96f428e746119a3b6e6aef84580dea4ac6
85f620242581b2b4b0ffb0d7d8069b20b2103c72111bc7fa7e7591755d324e61

HTTP Headers

GET /en/clickup-dashboard-templates.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:21:17 GMT
etag: "74af-606132c430940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5896
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/buy-sell-agreement-template.html

85.159.213.158

200 OK

5.1 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/buy-sell-agreement-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1401), with CRLF, LF line terminators
Size
5.1 kB (5133 bytes)
Hash
ac360179bc39baf6783a1a8f477168fd
2eca9f340f41ddd3b735b6692f48b812e748c214
d164f85b8099eb7bbe3090bf1a03e82f7ac89832b50db951036a48f1a6193c59

HTTP Headers

GET /en/buy-sell-agreement-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:47:40 GMT
etag: "78eb-606138a9db300-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5133
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/hypnotherapy-website-templates.html

85.159.213.158

200 OK

4.9 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/hypnotherapy-website-templates.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Size
4.9 kB (4882 bytes)
Hash
d6680a6147290a29e5287013ba330c5d
9ab24bcabe4bfd56e003c8b221e7b0e92aaaa52f
8e93552022ac86629de4fbcf472e583cef125cf14961b95791d3a1071c5644e5

HTTP Headers

GET /en/hypnotherapy-website-templates.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 06:07:01 GMT
etag: "770a-60614a664cb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4882
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-activities-for-autism.html

85.159.213.158

200 OK

6.3 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-activities-for-autism.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1735), with CRLF, LF line terminators
Size
6.3 kB (6345 bytes)
Hash
4ac2ffd4461e1ab8f2d290843df98a7e
2b2c482561dfa61e8840d69b770e5f2fa6950976
3ae6f0047d8ab93947ccfa46dd0459cf2fae841543cef14c7ff31e8227a8e248

HTTP Headers

GET /en/printable-activities-for-autism.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:27:40 GMT
etag: "7ea4-6061343172700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6345
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/duck-coloring-pages-printable.html

85.159.213.158

200 OK

5.3 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/duck-coloring-pages-printable.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1625), with CRLF, LF line terminators
Size
5.3 kB (5275 bytes)
Hash
90617bc2f4b75d76421546cf8bd45f39
b9f11c23aaffeb8af6e99c54ca157aae259a71a9
9866957fa7453b39e64c6c8c41a235b8e4b1a25b8cd1454007d7c615d9a6ace0

HTTP Headers

GET /en/duck-coloring-pages-printable.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 03:38:51 GMT
etag: "7ad7-60612948228c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5275
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
52b438cbba4e310fcb6205fda94af2c7
c0dec35ef01ecc6d86f1a5e86e0e937d4ef669d6
a95699f3839f72f21768347aa108f8a1444aee5d5227c04921f69a05beb74406

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET apis.google.com/js/plusone.js

142.250.74.110

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subject*.apis.google.com
Fingerprint9E:C8:F3:EF:58:21:E5:16:5C:FD:85:C9:52:53:EE:3A:96:11:3F:BF
ValidityTue, 30 Jul 2024 12:52:29 GMT - Tue, 22 Oct 2024 12:52:28 GMT

File type
JavaScript source, ASCII text, with very long lines (2767)
Size
22 kB (21629 bytes)
Hash
15a42f20a492648f7c1595ea6bc99244
50f3505e5459985af041ec26a6b412cfc2dc1cb5
03998e7490f0e8f7d8490dc68ee8020101ddb4e8418567dbaa93426d15b721cb

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21629
date: Tue, 30 Jul 2024 20:25:07 GMT
expires: Tue, 30 Jul 2024 20:25:07 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9ba74e3c29037567"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1c70ec8c9f44884f03f5e8c102041279
6e430d499b9be5c8eea974dae2eb9f34c101d390
3014f55cca7621f59f82faa4db5d2871f0516020da43ebb5552415b6aa266654

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET xss.my.id/theme/batman/body.js

167.172.148.114

200 OK

332 B

URL GET HTTP/2
xss.my.id/theme/batman/body.js
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
HTML document, ASCII text
Size
332 B (332 bytes)
Hash
47d75909b1d2a6fcefa20244c68d0ae5
2dc263bf10600d745ff057ed3e5b94c0ca48ef6f
cdabb4930355af23406648d3ae6e0c6f798bb4b521d1aa87aceb0cd284fe8946

HTTP Headers

GET /theme/batman/body.js HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 26 Apr 2024 20:36:35 GMT
etag: "296-61705dc167ac0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 332
content-type: text/javascript
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET xss.my.id/theme/batman/head.js

167.172.148.114

200 OK

158 B

URL GET HTTP/2
xss.my.id/theme/batman/head.js
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
HTML document, ASCII text
Size
158 B (158 bytes)
Hash
3f74bbd5a5f1ff144d73d2c538df14ce
296641eea2541fbb97aacb7d9245da4dcf9bdec4
8b90117611bb8564ff3e14f13c7034a79977a95e6ffd4dedbdf429cedbfdd1f0

HTTP Headers

GET /theme/batman/head.js HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 15 Sep 2023 18:46:24 GMT
etag: "ac-6056a3596a000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 158
content-type: text/javascript
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET xss.my.id/theme/batman/headcode.js?v=82398

167.172.148.114

200 OK

754 B

URL GET HTTP/2
xss.my.id/theme/batman/headcode.js?v=82398
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
HTML document, ASCII text, with very long lines (395)
Size
754 B (754 bytes)
Hash
aa15af8158f7c690502a25562fdf7f2c
7705fb97ef730bad6cd40e3e325b0a212b9dfa61
565eba1700ab049849db10a39e811abe83ae04d754c259df6ffaebd093b43f6b

HTTP Headers

GET /theme/batman/headcode.js?v=82398 HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Apr 2024 22:42:41 GMT
etag: "63a-615754a3afa40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 754
content-type: text/javascript
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/detailed-oc-template.html

85.159.213.158

200 OK

6.1 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/detailed-oc-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1763), with CRLF, LF line terminators
Size
6.1 kB (6105 bytes)
Hash
e91d2f1d048ae71d499ff4d195a5f5bc
d543414d7ee662e7ddca0705062720a414d83881
349ff2fbfc281f7aa4e70fb701cc0e8dfea73d629a8970923a1303dac53f80f0

HTTP Headers

GET /en/detailed-oc-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 06:09:57 GMT
etag: "80fa-60614b0e25740-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6105
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/project-discovery-template.html

85.159.213.158

200 OK

5.7 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/project-discovery-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1402), with CRLF, LF line terminators
Size
5.7 kB (5680 bytes)
Hash
fa1934b212616ddc4b936cae211216c5
54841628d4aa1ae962132acdc9c98a7b4f3a2726
193e99803bf7f9be1986260edb40be4b1dff591d8a12e0dd7f0ba08a07f5acf5

HTTP Headers

GET /en/project-discovery-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:44:18 GMT
etag: "7a63-606137e936c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5680
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-puff-htv.html

85.159.213.158

200 OK

5.2 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-puff-htv.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1410), with CRLF, LF line terminators
Size
5.2 kB (5158 bytes)
Hash
090dee7fa5790af334f66c99f6ce609f
04efe75d30bc5fabdaf6affdc176fee2781bff76
790e5af657693ee77ad67b236e4a06a7ed0d44f0000ca7a382ff3914dc130d27

HTTP Headers

GET /en/printable-puff-htv.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 03:33:34 GMT
etag: "77a1-60612819d1f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5158
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/org-chart-ppt-template-free-download.html

85.159.213.158

200 OK

5.6 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/org-chart-ppt-template-free-download.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1658), with CRLF, LF line terminators
Size
5.6 kB (5631 bytes)
Hash
c6861546d39e43c7cc492e973876e4a9
8a580882c7083387a643d2369c69d027070698c1
8698ece35aed15339d93662c922b52420ba93b26080be330364ddc6cbc212bb9

HTTP Headers

GET /en/org-chart-ppt-template-free-download.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 05:19:57 GMT
etag: "7e7b-60613fe11f940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5631
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-fabric-slipper-pattern.html

85.159.213.158

200 OK

6.4 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-fabric-slipper-pattern.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1748), with CRLF, LF line terminators
Size
6.4 kB (6429 bytes)
Hash
eff5bb7b845c8e3536cfb94fe33b9099
9602ea9aa6cb94a3bf14ccf006d7f5280ffa20a8
2254846c6a9ca89b6393f6f26fc8d20cfb0bc8ad678e3da8a9749d9ed7a71e3a

HTTP Headers

GET /en/printable-fabric-slipper-pattern.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:58:37 GMT
etag: "7b9d-60613b1c6b940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6429
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/clickup-dashboard-templates.html

85.159.213.158

200 OK

5.9 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/clickup-dashboard-templates.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1436), with CRLF, LF line terminators
Size
5.9 kB (5896 bytes)
Hash
31cb99b49a0bf38678bc4dfb4b2bf0ca
a47d1c96f428e746119a3b6e6aef84580dea4ac6
85f620242581b2b4b0ffb0d7d8069b20b2103c72111bc7fa7e7591755d324e61

HTTP Headers

GET /en/clickup-dashboard-templates.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:21:17 GMT
etag: "74af-606132c430940-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5896
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/buy-sell-agreement-template.html

85.159.213.158

200 OK

5.1 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/buy-sell-agreement-template.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1401), with CRLF, LF line terminators
Size
5.1 kB (5133 bytes)
Hash
ac360179bc39baf6783a1a8f477168fd
2eca9f340f41ddd3b735b6692f48b812e748c214
d164f85b8099eb7bbe3090bf1a03e82f7ac89832b50db951036a48f1a6193c59

HTTP Headers

GET /en/buy-sell-agreement-template.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:47:40 GMT
etag: "78eb-606138a9db300-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5133
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/hypnotherapy-website-templates.html

85.159.213.158

200 OK

4.9 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/hypnotherapy-website-templates.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Size
4.9 kB (4882 bytes)
Hash
d6680a6147290a29e5287013ba330c5d
9ab24bcabe4bfd56e003c8b221e7b0e92aaaa52f
8e93552022ac86629de4fbcf472e583cef125cf14961b95791d3a1071c5644e5

HTTP Headers

GET /en/hypnotherapy-website-templates.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 06:07:01 GMT
etag: "770a-60614a664cb40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4882
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/printable-activities-for-autism.html

85.159.213.158

200 OK

6.3 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/printable-activities-for-autism.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1735), with CRLF, LF line terminators
Size
6.3 kB (6345 bytes)
Hash
4ac2ffd4461e1ab8f2d290843df98a7e
2b2c482561dfa61e8840d69b770e5f2fa6950976
3ae6f0047d8ab93947ccfa46dd0459cf2fae841543cef14c7ff31e8227a8e248

HTTP Headers

GET /en/printable-activities-for-autism.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 04:27:40 GMT
etag: "7ea4-6061343172700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6345
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET old.sermitsiaq.ag/en/duck-coloring-pages-printable.html

85.159.213.158

200 OK

5.3 kB

URL GET HTTP/2
old.sermitsiaq.ag/en/duck-coloring-pages-printable.html
IP
85.159.213.158:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectold.sermitsiaq.ag
Fingerprint9A:1E:08:6F:51:5A:ED:71:4B:70:70:2A:91:24:38:91:DB:68:AC:CC
ValiditySat, 13 Jul 2024 17:46:17 GMT - Fri, 11 Oct 2024 17:46:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1625), with CRLF, LF line terminators
Size
5.3 kB (5275 bytes)
Hash
90617bc2f4b75d76421546cf8bd45f39
b9f11c23aaffeb8af6e99c54ca157aae259a71a9
9866957fa7453b39e64c6c8c41a235b8e4b1a25b8cd1454007d7c615d9a6ace0

HTTP Headers

GET /en/duck-coloring-pages-printable.html HTTP/1.1
Host: old.sermitsiaq.ag
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 24 Sep 2023 03:38:51 GMT
etag: "7ad7-60612948228c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5275
content-type: text/html
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET xss.my.id/theme/batman/style.css

167.172.148.114

200 OK

11 kB

URL GET HTTP/2
xss.my.id/theme/batman/style.css
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
exported SGML document, ASCII text
Size
11 kB (11058 bytes)
Hash
861246b4b2880bb26801a59f14b6c474
8118f8d5da2b0eb89613de5108eb13a3bdb622dd
0e88d273060f60e43f87739e8c7ea3fea2bbb58addee6efc8217863ea88e2c49

HTTP Headers

GET /theme/batman/style.css HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 15 Sep 2023 18:47:55 GMT
etag: "135fe-6056a3b032cc0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11058
content-type: text/css
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1ec7ab860dfb6496ec31f330c6b69c0e
075dba06422ea7fc72e00c5bfe373729a7f47101
bb32c6685e6e4cd294b73375291bdb6947e947579387bc65357f3e3622404b5a

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET ts2.mm.bing.net/th?q=Detailed%20Oc%20Template

150.171.28.10

200 OK

40 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Detailed%20Oc%20Template
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x474, components 3
Size
40 kB (40529 bytes)
Hash
15b4a96906f126e3984df90002059bf6
f04181d786081c7adcf4bb9598c369fe90737f50
bbcbe7f8e7df817514025db477554b0bf27dbd6ada0e4c7a9442fac132a059fc

HTTP Headers

GET /th?q=Detailed%20Oc%20Template HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 40529
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9747474DD5DF4F688E84CABB49CF0AFA Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Hypnotherapy%20Website%20Templates

150.171.28.10

200 OK

17 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Hypnotherapy%20Website%20Templates
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x316, components 3
Size
17 kB (16647 bytes)
Hash
0e80d4d005297209cb8e567a7f98695f
b0c079dd48a7aa0d6b50a029a670f5ccd5196753
2375d4d18efd95196cc4218be8a8606f9770043d7864c134510178f30980bf62

HTTP Headers

GET /th?q=Hypnotherapy%20Website%20Templates HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 16647
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E90DA5D5EDFC45AF9583F44049C1DFEF Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Printable%20Activities%20For%20Autism

150.171.28.10

200 OK

33 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Printable%20Activities%20For%20Autism
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x552, components 3
Size
33 kB (33412 bytes)
Hash
4de62c2fc0324b5ea95a20684945b488
843c867eb44f384f5e1732cfeb7ff1e9002c3a53
e30befe4407914b13bc5c430624a29aad2597ba292048b41116df01d30665ef4

HTTP Headers

GET /th?q=Printable%20Activities%20For%20Autism HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 33412
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E23913B816B04AC2AC2C5A21B5BA49EA Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Duck%20Coloring%20Pages%20Printable

150.171.28.10

200 OK

31 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Duck%20Coloring%20Pages%20Printable
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x670, components 3
Size
31 kB (30819 bytes)
Hash
b162787703c66d2491e39dc0d4378f75
3a88aeacbf23f60e89ad883bdc5593558a61f79f
4135db2ea1e80a18751c4b42ead669a540bc170e12dda5abfdf7ad71756320e7

HTTP Headers

GET /th?q=Duck%20Coloring%20Pages%20Printable HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 30819
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F585BA7E6FC345FC9418620B8A83D574 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-S5MTG642M7

142.250.74.168

200 OK

104 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-S5MTG642M7
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
104 kB (103906 bytes)
Hash
1d4cbce14993a66630339be197d8e607
df668df16f1a8dd127e97b927a554bfb959ad333
5cff9ad45672475b8c98ded1732b950b8c3e0ff66746c719f32014f28ce026d6

HTTP Headers

GET /gtag/js?id=G-S5MTG642M7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 30 Jul 2024 20:25:07 GMT
expires: Tue, 30 Jul 2024 20:25:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103906
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Buy%20Sell%20Agreement%20Template

150.171.28.10

200 OK

41 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Buy%20Sell%20Agreement%20Template
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x613, components 3
Size
41 kB (41153 bytes)
Hash
e1053814f421988374632da417904549
cf047be69622f6714f7f851aa6207273303ff3d1
7ceb91e7697330f11da0d08086edd7c1433a80c15adbe91812c24765ca49abd9

HTTP Headers

GET /th?q=Buy%20Sell%20Agreement%20Template HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 41153
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5E92E25A3E424F3E9D583DE9DE6EFDB6 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET xss.my.id/ads/banner-loading.js

167.172.148.114

200 OK

233 B

URL GET HTTP/2
xss.my.id/ads/banner-loading.js
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
ASCII text
Size
233 B (233 bytes)
Hash
6410776ef550d8d26846782fd73ab99d
50cb95ec1890e9d9bb13b6d2b1c3cafd268a0e0f
17d896de76e12861acf4136e208e6015ceaf9ad2a0db8216073137e78440ca9e

HTTP Headers

GET /ads/banner-loading.js HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 05 Jul 2024 10:54:57 GMT
etag: "12a-61c7de4eb1a35-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 233
content-type: text/javascript
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Printable%20Puff%20Htv

150.171.28.10

200 OK

40 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Printable%20Puff%20Htv
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x474, components 3
Size
40 kB (39905 bytes)
Hash
0d9192c8a1dbd67075d900280721794b
2403676d15ddf2a4f9431dd72623934f6001e79d
d5006c24eb6d2bb7c539ec4fc5f4aadaef8abee0ed7d2e514eb6c51f87b16c18

HTTP Headers

GET /th?q=Printable%20Puff%20Htv HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 39905
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BFE0AE6DA62A4451A316C8614EE2BE00 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET xss.my.id/ads/lekinapotencje.js

167.172.148.114

200 OK

717 B

URL GET HTTP/2
xss.my.id/ads/lekinapotencje.js
IP
167.172.148.114:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectxss.my.id
Fingerprint6B:C5:E7:D6:BE:34:9D:AA:28:AD:7D:2E:B0:7F:40:59:2A:42:8E:38
ValidityTue, 25 Jun 2024 12:09:33 GMT - Mon, 23 Sep 2024 12:09:32 GMT

File type
ASCII text, with very long lines (343)
Size
717 B (717 bytes)
Hash
2ee0559648b8df728e6f192b55c65e68
17bb3bd368e33e348e0236d2525d7ef41328e8fa
a81dbf53c56ae1f6ec66d2d7d6f153c09003a3f3459d84e166ec0b3482ce6f86

HTTP Headers

GET /ads/lekinapotencje.js HTTP/1.1
Host: xss.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 28 Apr 2024 18:34:54 GMT
etag: "690-6172c6498cf80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 717
content-type: text/javascript
date: Tue, 30 Jul 2024 20:25:07 GMT
server: Apache
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Org%20Chart%20Ppt%20Template%20Free%20Download

150.171.28.10

200 OK

26 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Org%20Chart%20Ppt%20Template%20Free%20Download
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x355, components 3
Size
26 kB (26159 bytes)
Hash
e878cf2df74163ff449a86ce0fd5802c
2617d18241878fb7d1cbe8ea0dd6e6f21f55ce81
6e1e2e66a4fef64d585ac383cbb156d8aa00b7e41abf5fd8a0eff3d21ade3af0

HTTP Headers

GET /th?q=Org%20Chart%20Ppt%20Template%20Free%20Download HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 26159
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FE6931764B63422FA86530064FCEA0F9 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Printable%20Fabric%20Slipper%20Pattern

150.171.28.10

200 OK

29 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Printable%20Fabric%20Slipper%20Pattern
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x652, components 3
Size
29 kB (29182 bytes)
Hash
5a5fabd556d33905636dcd2b8c91a7d6
8d54230fa22565dccaeb71d5c4a11265eda74ecd
f07ac416f49ee8e9781f4eb20f967a6891e28b6117d94fa7b43ec99a1672a55f

HTTP Headers

GET /th?q=Printable%20Fabric%20Slipper%20Pattern HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 29182
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7A5C3E5BBC8C461F87AB4B70459EA71E Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Clickup%20Dashboard%20Templates

150.171.28.10

200 OK

22 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Clickup%20Dashboard%20Templates
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 474x322, components 3
Size
22 kB (21718 bytes)
Hash
4bccc32f3254eead782b658a2e5be2cb
1181b811dc400199dbdf012a0adf1fa12521899a
498fbe00d00144fd717292b9af1910f1eb19edb948d47ec41e91d44c98f52470

HTTP Headers

GET /th?q=Clickup%20Dashboard%20Templates HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 21718
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 50BE5DC1846B4F0C8959B76B8C9689F5 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

GET ts2.mm.bing.net/th?q=Project%20Discovery%20Template

150.171.28.10

200 OK

39 kB

URL GET HTTP/2
ts2.mm.bing.net/th?q=Project%20Discovery%20Template
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerMicrosoft Corporation
Subject*.mm.bing.net
FingerprintBC:F0:A5:F2:FC:A2:E1:5B:3A:D4:A6:21:36:E6:E6:75:FD:87:19:46
ValidityTue, 30 Jul 2024 04:43:23 GMT - Sun, 26 Jan 2025 04:43:23 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 390x505, components 3
Size
39 kB (38703 bytes)
Hash
765f2dd381958ae832ea88347da46313
35868dafe86f0c6e812ee849048ccfca12cc59f3
ba259c8c82c54a384ab0b2678890586c3ecb3dd2127bd7e2a16d109362a87cfa

HTTP Headers

GET /th?q=Project%20Discovery%20Template HTTP/1.1
Host: ts2.mm.bing.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=5184000
content-length: 38703
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A86545EC26774F38B429EB64686965A8 Ref B: OSL30EDGE0309 Ref C: 2024-07-30T20:25:07Z
date: Tue, 30 Jul 2024 20:25:07 GMT
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
1ec7ab860dfb6496ec31f330c6b69c0e
075dba06422ea7fc72e00c5bfe373729a7f47101
bb32c6685e6e4cd294b73375291bdb6947e947579387bc65357f3e3622404b5a

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4e65f865b00bcb08c52dfe77a48c1c03
26cbc733e53341bd2aab8c860546de10e9839e84
00250d516d26ead1f376d80fef0c83c59df998d20c72ed5b96262e40ae3b96a8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "00250D516D26EAD1F376D80FEF0C83C59DF998D20C72ED5B96262E40AE3B96A8"
Last-Modified: Mon, 29 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5523
Expires: Tue, 30 Jul 2024 21:57:11 GMT
Date: Tue, 30 Jul 2024 20:25:08 GMT
Connection: keep-alive

GET modificationdesignate.com/136d4e249eb5c2ca63d4dd0de8205e70/invoke.js

172.240.253.132

200 OK

12 kB

URL GET HTTP/1.1
modificationdesignate.com/136d4e249eb5c2ca63d4dd0de8205e70/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectmodificationdesignate.com
FingerprintCE:CA:60:43:4D:F0:A3:B2:16:A4:FE:A8:FD:00:CF:83:2B:8B:3A:11
ValidityWed, 03 Jul 2024 12:26:46 GMT - Tue, 01 Oct 2024 12:26:45 GMT

File type
JavaScript source, ASCII text, with very long lines (31281), with no line terminators
Size
12 kB (11833 bytes)
Hash
4d57641dbb155ce479dfbd97a1526310
fd47d8e383326cb4f3fd79998bc6fd19b5689323
137faeda6623fc38f755d92b0c43dd2c28c1069e038b5c0c549e466c5b7ce22f

HTTP Headers

GET /136d4e249eb5c2ca63d4dd0de8205e70/invoke.js HTTP/1.1
Host: modificationdesignate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 20:25:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 7e10e4dc9a90679b275c559d17b4264e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET proftrafficcounter.com/stats

52.57.71.154

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.57.71.154:443
ASN
#16509 AMAZON-02

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6b67f71b62f02ee6d1a532583a44dd2f
c406bab14513728610529784f79ffe9f7702f8dc
72c85fd16712ddee406fd01c27a9b914f626d65e7988f9bf15da94decd708daa

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://old.sermitsiaq.ag
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 20:25:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://old.sermitsiaq.ag
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=9b95bf8b-ffde-4c90-a71e-d5131e8e8693:3:1; expires=Fri, 28 Jul 2034 20:25:08 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.pGGAptgAK4s.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo-Cic-4VdRMZ7mFCYOA3wzpF7O-6g/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

57 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.pGGAptgAK4s.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo-Cic-4VdRMZ7mFCYOA3wzpF7O-6g/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintA9:52:08:E0:FC:37:B4:6B:5F:CF:C5:AB:C4:10:C7:D6:00:4D:DC:69
ValidityTue, 30 Jul 2024 12:32:53 GMT - Tue, 22 Oct 2024 12:32:52 GMT

File type
JavaScript source, ASCII text, with very long lines (2141)
Size
57 kB (57428 bytes)
Hash
9d72b6a80324e74b227825ed638959f9
6f3ef32a2cbbb554ec1732a29eee87d005b7b0fe
72888c73c7cbff54c030f2bf084b265196276cbc3bcd96d4bea274fc424322e9

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.pGGAptgAK4s.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo-Cic-4VdRMZ7mFCYOA3wzpF7O-6g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Jul 2024 17:57:05 GMT
expires: Tue, 29 Jul 2025 17:57:05 GMT
cache-control: public, max-age=31536000
age: 95284
last-modified: Thu, 11 Jul 2024 18:55:26 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
81f352c0db715285a62fbf29b2216d25
91ca3dbf15752b132dbfe4fbf22c8dc047dc969c
3e7f3918e9d68a81aa57bcec632dad60d1c3b32a69e4a39860b58ff646b9ac70

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
81f352c0db715285a62fbf29b2216d25
91ca3dbf15752b132dbfe4fbf22c8dc047dc969c
3e7f3918e9d68a81aa57bcec632dad60d1c3b32a69e4a39860b58ff646b9ac70

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET speechanchor.com/84/93/2d/84932d40653827795625f2179d43ab52.js

192.243.61.227

200 OK

31 kB

URL GET HTTP/1.1
speechanchor.com/84/93/2d/84932d40653827795625f2179d43ab52.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectspeechanchor.com
Fingerprint41:C1:E6:E0:E7:08:64:0F:0F:A7:6B:0D:28:20:4D:36:F3:D8:66:24
ValidityMon, 01 Jul 2024 13:44:52 GMT - Sun, 29 Sep 2024 13:44:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30684 bytes)
Hash
3dd5d360e96ec422537c8a9947664c2b
1e8ac7670951123eb853b4c1210afd1db85b41d3
8430c9b9786f42ca5bef644ffbe05cd60f3df936bc868fb19fd7fb90b1a810d8

HTTP Headers

GET /84/93/2d/84932d40653827795625f2179d43ab52.js HTTP/1.1
Host: speechanchor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 20:25:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 87e1add1a1a50671979d637b7f4f87a2
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET speechanchor.com/watch.291664066790.js?key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&tz=0&dev=e&res=14.2071&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1

192.243.61.227

307 Temporary Redirect

0 B

URL GET HTTP/1.1
speechanchor.com/watch.291664066790.js?key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&tz=0&dev=e&res=14.2071&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectspeechanchor.com
Fingerprint41:C1:E6:E0:E7:08:64:0F:0F:A7:6B:0D:28:20:4D:36:F3:D8:66:24
ValidityMon, 01 Jul 2024 13:44:52 GMT - Sun, 29 Sep 2024 13:44:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.291664066790.js?key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&tz=0&dev=e&res=14.2071&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1 HTTP/1.1
Host: speechanchor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://old.sermitsiaq.ag
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 20:25:09 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://old.sermitsiaq.ag
Access-Control-Allow-Origin: https://old.sermitsiaq.ag
Access-Control-Allow-Credentials: true
Location: https://speechanchor.com/watch.291664066790.js?dev=e&key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&pst=1722371169&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&res=14.2071&rmtc=t&shu=ce7f8fcae5a4c23a32202d325ee59220c60d2dc6d8dcbc203e089d40442ec73988c6848e16aa458db98fe3ba3ea66dcdb7b2638b9014ec80fb2308324a52884e8023802f445ae46f501b40c0b56a5e671d21e3e08b7e76c423dfd0293a1a50&tz=0&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1
Set-Cookie: u_pl=16248985; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.pIm_iIijhk-jAIh4ToUg6z94r_JQUP6FLbh9nMHkIrQ; expires=Tue, 30 Jul 2024 20:26:09 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: d78b1b65df7dc0d1e551fd35e564c73f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhFbkYjl-5OYaIpJyH62IHhR68fdlMZ5mBGah4xD5MEzHDqaSUorXmRqkEZ0JcOkuvxyByhS5WyOvMZWNuIwdzVSCDztcezx3v3FMzOSxBY6ujiqUAyNrUKy-iPj0uwyM9JRFkhCxpuOsUWgzQ0IensxtgZxNmRlP3ut_qUBJZ0D7sM7DcQG6_nWqtM2Sgy/s1600/logo.png

142.250.74.129

200 OK

2.4 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhFbkYjl-5OYaIpJyH62IHhR68fdlMZ5mBGah4xD5MEzHDqaSUorXmRqkEZ0JcOkuvxyByhS5WyOvMZWNuIwdzVSCDztcezx3v3FMzOSxBY6ujiqUAyNrUKy-iPj0uwyM9JRFkhCxpuOsUWgzQ0IensxtgZxNmRlP3ut_qUBJZ0D7sM7DcQG6_nWqtM2Sgy/s1600/logo.png
IP
142.250.74.129:443
ASN
#15169 GOOGLE

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subject*.googleusercontent.com
FingerprintA6:0A:39:C6:7C:75:70:95:1C:CC:6E:1F:5D:AF:3C:FD:47:BB:4D:A0
ValidityTue, 30 Jul 2024 12:49:08 GMT - Tue, 22 Oct 2024 12:49:07 GMT

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced
Size
2.4 kB (2416 bytes)
Hash
5bcbe28bf5b3b1069ee429bb70ae2074
67193c23f13908d49fefb3d2c60b89bbd8e9cc1f
ce53fdd708d3236116f1cea88adee6a0ce58511132369a01320936a08dedcb45

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhFbkYjl-5OYaIpJyH62IHhR68fdlMZ5mBGah4xD5MEzHDqaSUorXmRqkEZ0JcOkuvxyByhS5WyOvMZWNuIwdzVSCDztcezx3v3FMzOSxBY6ujiqUAyNrUKy-iPj0uwyM9JRFkhCxpuOsUWgzQ0IensxtgZxNmRlP3ut_qUBJZ0D7sM7DcQG6_nWqtM2Sgy/s1600/logo.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v625"
expires: Wed, 31 Jul 2024 20:25:09 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="logo.png"
x-content-type-options: nosniff
date: Tue, 30 Jul 2024 20:25:09 GMT
server: fife
content-length: 2416
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiuHdvkbqBty16ErkcQdGN2qkRNOmibs6faXyMXK1ahEgEcVDIllRM3x532RbYCkREV9Z4w6_E7kjasobINkBLCVxzBBVfo56CpKcqu5AyCDApgJ1CLht0lIEYvs4j-W4lFHhwqsbqePmdT-gJ4IBZkkN21Hp2K8Eqy3Kq6g21APDkKEsW0qWwoBysgNmcf/s1600/icon.png

142.250.74.129

200 OK

1.7 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiuHdvkbqBty16ErkcQdGN2qkRNOmibs6faXyMXK1ahEgEcVDIllRM3x532RbYCkREV9Z4w6_E7kjasobINkBLCVxzBBVfo56CpKcqu5AyCDApgJ1CLht0lIEYvs4j-W4lFHhwqsbqePmdT-gJ4IBZkkN21Hp2K8Eqy3Kq6g21APDkKEsW0qWwoBysgNmcf/s1600/icon.png
IP
142.250.74.129:443
ASN
#15169 GOOGLE

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subject*.googleusercontent.com
FingerprintA6:0A:39:C6:7C:75:70:95:1C:CC:6E:1F:5D:AF:3C:FD:47:BB:4D:A0
ValidityTue, 30 Jul 2024 12:49:08 GMT - Tue, 22 Oct 2024 12:49:07 GMT

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced
Size
1.7 kB (1650 bytes)
Hash
00d74b8f936bc0ced39677e51d5730f9
000944a012d4692bd00c289920b19147a4e228e5
916a0f75e61251e4a453dc7a4680b36b93c37686096679404fe573fde8a1d3eb

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEiuHdvkbqBty16ErkcQdGN2qkRNOmibs6faXyMXK1ahEgEcVDIllRM3x532RbYCkREV9Z4w6_E7kjasobINkBLCVxzBBVfo56CpKcqu5AyCDApgJ1CLht0lIEYvs4j-W4lFHhwqsbqePmdT-gJ4IBZkkN21Hp2K8Eqy3Kq6g21APDkKEsW0qWwoBysgNmcf/s1600/icon.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v623"
expires: Wed, 31 Jul 2024 20:25:09 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="icon.png"
x-content-type-options: nosniff
date: Tue, 30 Jul 2024 20:25:09 GMT
server: fife
content-length: 1650
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET speechanchor.com/watch.291664066790.js?dev=e&key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&pst=1722371169&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&res=14.2071&rmtc=t&shu=ce7f8fcae5a4c23a32202d325ee59220c60d2dc6d8dcbc203e089d40442ec73988c6848e16aa458db98fe3ba3ea66dcdb7b2638b9014ec80fb2308324a52884e8023802f445ae46f501b40c0b56a5e671d21e3e08b7e76c423dfd0293a1a50&tz=0&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1

192.243.61.227

200 OK

2.0 kB

URL GET HTTP/1.1
speechanchor.com/watch.291664066790.js?dev=e&key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&pst=1722371169&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&res=14.2071&rmtc=t&shu=ce7f8fcae5a4c23a32202d325ee59220c60d2dc6d8dcbc203e089d40442ec73988c6848e16aa458db98fe3ba3ea66dcdb7b2638b9014ec80fb2308324a52884e8023802f445ae46f501b40c0b56a5e671d21e3e08b7e76c423dfd0293a1a50&tz=0&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectspeechanchor.com
Fingerprint41:C1:E6:E0:E7:08:64:0F:0F:A7:6B:0D:28:20:4D:36:F3:D8:66:24
ValidityMon, 01 Jul 2024 13:44:52 GMT - Sun, 29 Sep 2024 13:44:51 GMT

File type
JavaScript source, ASCII text, with very long lines (2527)
Size
2.0 kB (2034 bytes)
Hash
bd5961fb610df0daa7d3b61ff70fd95f
171090ea5442c2d813e330d66c36f44444d9e733
d4b82613b11ea9c2b6963868a398d69bbbdd76e10593bdccbc40db0802ea0132

HTTP Headers

GET /watch.291664066790.js?dev=e&key=136d4e249eb5c2ca63d4dd0de8205e70&kw=%5B%22printable%22%2C%22template%22%5D&pst=1722371169&refer=https%3A%2F%2Fold.sermitsiaq.ag%2F&res=14.2071&rmtc=t&shu=ce7f8fcae5a4c23a32202d325ee59220c60d2dc6d8dcbc203e089d40442ec73988c6848e16aa458db98fe3ba3ea66dcdb7b2638b9014ec80fb2308324a52884e8023802f445ae46f501b40c0b56a5e671d21e3e08b7e76c423dfd0293a1a50&tz=0&uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693%3A3%3A1 HTTP/1.1
Host: speechanchor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://old.sermitsiaq.ag
Referer: https://old.sermitsiaq.ag/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16248985; ain=eyJhbGciOiJIUzI1NiJ9.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.pIm_iIijhk-jAIh4ToUg6z94r_JQUP6FLbh9nMHkIrQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 20:25:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://old.sermitsiaq.ag
Access-Control-Allow-Origin: https://old.sermitsiaq.ag
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=9b95bf8b-ffde-4c90-a71e-d5131e8e8693:3:1; expires=Tue, 06 Aug 2024 20:25:09 GMT; path=/; secure; SameSite=None
iprc04622adb500b69cb775c306736f61c37=5260138; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Wed, 31 Jul 2024 20:25:09 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 912194b58986ad81233d8bfe77535aff
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
81f352c0db715285a62fbf29b2216d25
91ca3dbf15752b132dbfe4fbf22c8dc047dc969c
3e7f3918e9d68a81aa57bcec632dad60d1c3b32a69e4a39860b58ff646b9ac70

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Jul 2024 20:25:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET employmentpersons.com/pixel/purst?dl=0&th=0&sc=0&rs=2575&rd=2575&fd=595&bv=24.5.8221&tmpl=136

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
employmentpersons.com/pixel/purst?dl=0&th=0&sc=0&rs=2575&rd=2575&fd=595&bv=24.5.8221&tmpl=136
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectemploymentpersons.com
FingerprintA8:88:C9:4C:AC:01:E7:00:9F:E9:49:9A:F8:7A:D5:D2:0A:88:79:4E
ValidityMon, 01 Jul 2024 15:33:43 GMT - Sun, 29 Sep 2024 15:33:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2575&rd=2575&fd=595&bv=24.5.8221&tmpl=136 HTTP/1.1
Host: employmentpersons.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 30 Jul 2024 20:25:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET cdn.cloudimagesb.com/cti/d8/e6/0c/d8e60ca3941a06eb21874c213b2cd8e6/1716313389.gif

45.133.44.10

200 OK

263 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/d8/e6/0c/d8e60ca3941a06eb21874c213b2cd8e6/1716313389.gif
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC4:E5:6E:E8:15:37:9B:58:9E:AA:84:E9:B0:65:53:C9:88:43:C1:59
ValiditySat, 20 Jul 2024 04:00:43 GMT - Fri, 18 Oct 2024 04:00:42 GMT

File type
GIF image data, version 89a, 728 x 90
Size
263 kB (263110 bytes)
Hash
6ce4a4203b237535758ba6f50035e6fc
13c649f7721244ca0d9c544135732d07bb333f4c
7eb366c052562a431a9db71e7239348fbca887586223a3fe2cae0644727e263a

HTTP Headers

GET /cti/d8/e6/0c/d8e60ca3941a06eb21874c213b2cd8e6/1716313389.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 20:25:09 GMT
content-type: image/gif
content-length: 263110
server: nginx/1.21.6
last-modified: Tue, 21 May 2024 17:43:18 GMT
etag: "664cdd36-403c6"
expires: Thu, 01 Aug 2024 20:25:09 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ds5859
accept-ranges: bytes
X-Firefox-Spdy: h2

GET unseenreport.com/pxf.gif?uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84932d40653827795625f2179d43ab52&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20

192.243.61.225

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84932d40653827795625f2179d43ab52&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintD9:3D:28:C1:14:1B:2B:53:0E:E4:3E:FC:88:7A:FF:9C:45:4B:63:C7
ValiditySat, 20 Jul 2024 14:59:20 GMT - Fri, 18 Oct 2024 14:59:19 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=9b95bf8b-ffde-4c90-a71e-d5131e8e8693&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=84932d40653827795625f2179d43ab52&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 30 Jul 2024 20:25:10 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 245981f829221f1665cd017994cd3ec3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET recordedthereby.com/sfp.js

104.21.91.24

200 OK

85 kB

URL GET HTTP/2
recordedthereby.com/sfp.js
IP
104.21.91.24:443
ASN
#13335 CLOUDFLARENET

Requested by
https://old.sermitsiaq.ag/
Certificate
IssuerGoogle Trust Services
Subjectrecordedthereby.com
FingerprintA1:CB:3E:AF:CE:F5:E9:D2:26:FB:E2:D4:FE:4B:29:D2:B3:C9:AD:3B
ValiditySat, 06 Jul 2024 15:25:15 GMT - Fri, 04 Oct 2024 15:25:14 GMT

File type

Size
85 kB (85378 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://old.sermitsiaq.ag/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 30 Jul 2024 20:25:09 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache, max-age=0, private, no-cache
x-request-id: 2a32d33d0273c6e3a8f75409f4834bf6
pragma: no-cache
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m1dfjQoZKvGZsAg37gJ9mEXBJE7LebKPBa6%2BKCLXD0OUaazlJDKEb%2FeWAw5OxNMt94uMD1lqFaz74LGHlR%2BZ2ESXxE373DOegF7QBq2nz7x0hn23aluTX4IKqYO5pHgVEWqYnzkl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ab813897ad2b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (43)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash