LeakIX - Host noewa.com

Domain noewa.com

Germany

Datacamp Limited

Software information

BunnyCDN-DE1-1049

tcp/443

BunnyCDN-DE1-1053

tcp/443 tcp/80

BunnyCDN-DE1-1079

tcp/443 tcp/80

BunnyCDN-DE1-755

tcp/443 tcp/80

BunnyCDN-DE1-756

tcp/443 tcp/80

BunnyCDN-DE1-860

tcp/443

BunnyCDN-DE1-865

tcp/443 tcp/80

Open service 138.199.37.227:443 · ipns.noewa.com

2026-01-30 03:06

HTTP/1.1 200 OK
Date: Fri, 30 Jan 2026 03:06:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
Server: BunnyCDN-DE1-860
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, private, no-transform
Pragma: no-cache
Expires: 0
CDN-Challenge: true
CDN-RequestId: 6dba1841a736749c9199cf7de18fdf60

Page title: Establishing a secure connection ...

<!DOCTYPE html>
<html>
<head>
    <title>Establishing a secure connection ...</title>
    <meta name="viewport" content="width=device-width, initial-scale=0.8">
    <link href="https://fonts.bunny.net/css?family=Inter:300,400,500,700" rel="stylesheet">

    <link href="/.bunny-shield/assets/challenge-styles.css" rel="stylesheet" />

    <script src="/.bunny-shield/assets/shield-challenge.js"></script>
</head>
<body data-pow="edbd7c68b976a3b30e7d0f99b62590bf9ce6a38472647ad3ef47ae8c57a83317#7cabd65da768f47d474acf86ab8360b5#1769743318#79e4fcf19e77cd687054488e7918a455523ebc08e2bff003ef92bc2560234c13">
    <div class="body">
        <div class="container">
            <div class="left">
                <img src="/.bunny-shield/assets/challenge.svg" alt="Challenge Loading" />
            </div>
            <div class="right">
                <h1>Hold tight</h1>
                <h2>
                    <div class="loading"></div>
                    We are establishing a secure
                    connection.
                </h2>
                <p>
                    This website is using a security service to protect
                    itself from online attacks. We are checking your browser
                    to establish a secure connection and keep you safe.
                </p>
                <p>
                    <div class="status">...</div>
                    <div class="error"></div>
                    <noscript>
                        <p style="color: #FF0000;">Please enable JavaScript to continue.</p>
                    </noscript>
                </p>
            </div>
        </div>
    </div>
    <div class="footer">
        <p>Performance & security by <a href="https://bunny.net/" target="_blank">bunny.net</a></p>
    </div>
</body>
</html>

Found 2026-01-30 by HttpPlugin

Create report

Open service 2400:52e0:1e00::1049:1:443 · noewa.com

2026-01-29 20:32

HTTP/1.1 200 OK
Date: Thu, 29 Jan 2026 20:32:57 GMT
Content-Type: text/html
Content-Length: 6474
Connection: close
Vary: Accept-Encoding
Server: BunnyCDN-DE1-1049
CDN-PullZone: 5071379
CDN-RequestCountryCode: GB
Cache-Control: public, max-age=2592000
Last-Modified: Sun, 04 Jan 2026 23:35:22 GMT
x-amz-request-id: HCFF0069005900A8F3
CDN-ProxyVer: 1.43
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 206
CDN-CachedAt: 01/10/2026 17:22:42
CDN-EdgeStorageId: 1076
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Resource-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=()
CDN-RequestId: 8ba525b9671510870eac96f69f500d32
CDN-Cache: HIT
CDN-Status: 200
CDN-RequestTime: 0
Accept-Ranges: bytes


<!doctype html>
<html lang="en">
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
	<base href="/" />
    <style>
        :root {
            --font-stack: 'Inter', 'Noto Sans', sans-serif;
            --bg-color: #050505;
            --text-color: #050505;
        }

        body {
            margin: 0;
            background: var(--bg-color);
            color: var(--text-color);
            height: 100vh;
            display: flex;
            flex-direction: column;
            justify-content: center;
            align-items: center;
            font-family: var(--font-stack); 
            overflow: hidden;
        }

        h1 {
            font-weight: 700; 
            font-size: 8rem;
            margin: 0;
            letter-spacing: -0.04em;
            line-height: 1;
        }

        @media (max-width: 600px) {
            h1 { font-size: 4rem; }
        }
    </style>

	<!-- 1. LOAD SHARED LOGIC SYNCHRONOUSLY -->
	<script src="./config/loader.js"></script>

	<!-- 2. SECURE CONFIG LOADER (Uses globals from ./config/loader.js) -->
	<script>
		(async () => {
			// Use constants/functions from ./config/loader.js
			const SALT = window.SALT || 'h3cr8';
			const getID = window.getID;
			const extractHostname = window.extractHostname;

			if (!getID || !extractHostname) {
				console.error("Critical: ./config/loader.js failed to load.");
				return;
			}

			//const url = "https://app.example.com/index.html"; // Example with BRAND NAME
			const url = window.location.href;
			const hostname = extractHostname(url);

			// Helper: Inject DOM Elements
			const inject = (tag, attr = {}, parent = document.head) => {
				const el = document.createElement(tag);
				for (const k in attr) el.setAttribute(k, attr[k]);
				parent.appendChild(el);
				return el;
			};

			// Helper: Wait for DOM to be ready
			const ready = () => new Promise(r => document.readyState !== 'loading' ? r() : document.addEventListener('DOMContentLoaded', r));

			// --- CASCADING LOOKUP ---
			let config = null;

			// Generate hierarchy candidates: e.g. ["sub.domain.com", "domain.com", "com", ""]
			const candidates = [];
			if (hostname) {
				const labels = hostname.split('.');
				for (let i = 0; i < labels.length; i++) {
					candidates.push(labels.slice(i).join('.'));
				}
			}
			// Fallback: The empty string evaluates to the root hash (gtmu080g3r2e4eqoix3c6r1dw)
			candidates.push("");

			for (const domain of candidates) {
				try {
					const hash = await getID(domain, SALT);
					// Import config. The config file itself MUST resolve its own asset paths.
					config = (await import(`./config/${hash}/config.js`)).default;
					if (config) {
						console.log(`Config loaded for '${domain}' (${hash})`);
						break;
					}
				} catch (e) {
					// alert(domain);
					// Config not found for this level, continue cascading up
				}
			}

			// --- APPLY ---
			if (config) {
				// 1. Expose Config Globally for UI Components (OmniBar, etc.)
				window.CONFIG = config;

				// 2. Set Meta Title (Browser Tab)
				// Priority: metaTitle -> title
				document.title = config.metaTitle || config.title;

				// 3. Set Theme Color
				document.documentElement.style.setProperty('--bg-app', config.color);

				if (config.manifest) inject('link', { rel: 'manifest', href: config.manifest });
				if (config.color) inject('meta', { name: 'theme-color', content: config.color });

				// --- DYNAMIC SVG ICON GENERATION ---
				// UPDATED LOGIC: Prioritize explicit Initials over inherited Icons.
				// This fixes the issue where spread syntax (...primary) causes specific configs
				// to inherit the fallback icon even when they defined 'initials'.

				const hasExplicitInitials = (typeof config.initials === 'string');

				if (hasExplicitInitials) {
					// 1. Explicit Initials (User wanted this)
					const initials = config.initials;
					const svgString = `
                    <svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100">
                    <circle cx="5

Found 2026-01-29 by HttpPlugin

Create report

Open service 2400:52e0:1e00::1053:1:80 · noewa.com

2026-01-26 00:05

HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Jan 2026 00:05:19 GMT
Content-Type: text/html
Content-Length: 166
Connection: close
Server: BunnyCDN-DE1-1053
CDN-PullZone: 5071379
CDN-RequestCountryCode: US
Location: https://noewa.com/
CDN-RequestId: 7d344482ee0d1e4e20bf36f7f6a66cd6
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=()
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Resource-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin
X-Content-Type-Options: nosniff
CDN-RequestTime: 0

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>openresty</center>
</body>
</html>

Found 2026-01-26 by HttpPlugin

Create report

Open service 79.127.216.112:80 · noewa.com

2026-01-26 00:05

HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Jan 2026 00:05:18 GMT
Content-Type: text/html
Content-Length: 166
Connection: close
Server: BunnyCDN-DE1-755
CDN-PullZone: 5071379
CDN-RequestCountryCode: DE
Location: https://noewa.com/
CDN-RequestId: 2b43d447ee90190783847a7f4d5c84a7
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=()
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Resource-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin
X-Content-Type-Options: nosniff
CDN-RequestTime: 0

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>openresty</center>
</body>
</html>

Found 2026-01-26 by HttpPlugin

Create report

Open service 79.127.216.112:443 · noewa.com

2026-01-26 00:05

HTTP/1.1 200 OK
Date: Mon, 26 Jan 2026 00:05:19 GMT
Content-Type: text/html
Content-Length: 6474
Connection: close
Vary: Accept-Encoding
Server: BunnyCDN-DE1-755
CDN-PullZone: 5071379
CDN-RequestCountryCode: US
Cache-Control: public, max-age=2592000
Last-Modified: Sun, 04 Jan 2026 23:35:22 GMT
x-amz-request-id: HCFF0069005900A8F3
CDN-ProxyVer: 1.43
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 206
CDN-CachedAt: 01/10/2026 17:22:42
CDN-EdgeStorageId: 1076
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Resource-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=()
CDN-RequestId: fab1b8335bf5800caa7239bfee9cf0cb
CDN-Cache: HIT
CDN-Status: 200
CDN-RequestTime: 0
Accept-Ranges: bytes


<!doctype html>
<html lang="en">
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
	<base href="/" />
    <style>
        :root {
            --font-stack: 'Inter', 'Noto Sans', sans-serif;
            --bg-color: #050505;
            --text-color: #050505;
        }

        body {
            margin: 0;
            background: var(--bg-color);
            color: var(--text-color);
            height: 100vh;
            display: flex;
            flex-direction: column;
            justify-content: center;
            align-items: center;
            font-family: var(--font-stack); 
            overflow: hidden;
        }

        h1 {
            font-weight: 700; 
            font-size: 8rem;
            margin: 0;
            letter-spacing: -0.04em;
            line-height: 1;
        }

        @media (max-width: 600px) {
            h1 { font-size: 4rem; }
        }
    </style>

	<!-- 1. LOAD SHARED LOGIC SYNCHRONOUSLY -->
	<script src="./config/loader.js"></script>

	<!-- 2. SECURE CONFIG LOADER (Uses globals from ./config/loader.js) -->
	<script>
		(async () => {
			// Use constants/functions from ./config/loader.js
			const SALT = window.SALT || 'h3cr8';
			const getID = window.getID;
			const extractHostname = window.extractHostname;

			if (!getID || !extractHostname) {
				console.error("Critical: ./config/loader.js failed to load.");
				return;
			}

			//const url = "https://app.example.com/index.html"; // Example with BRAND NAME
			const url = window.location.href;
			const hostname = extractHostname(url);

			// Helper: Inject DOM Elements
			const inject = (tag, attr = {}, parent = document.head) => {
				const el = document.createElement(tag);
				for (const k in attr) el.setAttribute(k, attr[k]);
				parent.appendChild(el);
				return el;
			};

			// Helper: Wait for DOM to be ready
			const ready = () => new Promise(r => document.readyState !== 'loading' ? r() : document.addEventListener('DOMContentLoaded', r));

			// --- CASCADING LOOKUP ---
			let config = null;

			// Generate hierarchy candidates: e.g. ["sub.domain.com", "domain.com", "com", ""]
			const candidates = [];
			if (hostname) {
				const labels = hostname.split('.');
				for (let i = 0; i < labels.length; i++) {
					candidates.push(labels.slice(i).join('.'));
				}
			}
			// Fallback: The empty string evaluates to the root hash (gtmu080g3r2e4eqoix3c6r1dw)
			candidates.push("");

			for (const domain of candidates) {
				try {
					const hash = await getID(domain, SALT);
					// Import config. The config file itself MUST resolve its own asset paths.
					config = (await import(`./config/${hash}/config.js`)).default;
					if (config) {
						console.log(`Config loaded for '${domain}' (${hash})`);
						break;
					}
				} catch (e) {
					// alert(domain);
					// Config not found for this level, continue cascading up
				}
			}

			// --- APPLY ---
			if (config) {
				// 1. Expose Config Globally for UI Components (OmniBar, etc.)
				window.CONFIG = config;

				// 2. Set Meta Title (Browser Tab)
				// Priority: metaTitle -> title
				document.title = config.metaTitle || config.title;

				// 3. Set Theme Color
				document.documentElement.style.setProperty('--bg-app', config.color);

				if (config.manifest) inject('link', { rel: 'manifest', href: config.manifest });
				if (config.color) inject('meta', { name: 'theme-color', content: config.color });

				// --- DYNAMIC SVG ICON GENERATION ---
				// UPDATED LOGIC: Prioritize explicit Initials over inherited Icons.
				// This fixes the issue where spread syntax (...primary) causes specific configs
				// to inherit the fallback icon even when they defined 'initials'.

				const hasExplicitInitials = (typeof config.initials === 'string');

				if (hasExplicitInitials) {
					// 1. Explicit Initials (User wanted this)
					const initials = config.initials;
					const svgString = `
                    <svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100">
                    <circle cx="5

Found 2026-01-26 by HttpPlugin

Create report

Open service 2400:52e0:1e00::1053:1:443 · noewa.com

2026-01-26 00:05

HTTP/1.1 200 OK
Date: Mon, 26 Jan 2026 00:05:18 GMT
Content-Type: text/html
Content-Length: 6474
Connection: close
Vary: Accept-Encoding
Server: BunnyCDN-DE1-1053
CDN-PullZone: 5071379
CDN-RequestCountryCode: NL
Cache-Control: public, max-age=2592000
Last-Modified: Sun, 04 Jan 2026 23:35:22 GMT
x-amz-request-id: HCFF0069005900A8F3
CDN-ProxyVer: 1.43
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 206
CDN-CachedAt: 01/10/2026 17:22:42
CDN-EdgeStorageId: 1076
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Resource-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=()
CDN-RequestId: 6c56284bbaa53c4ade8c4007c07e36dd
CDN-Cache: HIT
CDN-Status: 200
CDN-RequestTime: 0
Accept-Ranges: bytes


<!doctype html>
<html lang="en">
<head>
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
	<base href="/" />
    <style>
        :root {
            --font-stack: 'Inter', 'Noto Sans', sans-serif;
            --bg-color: #050505;
            --text-color: #050505;
        }

        body {
            margin: 0;
            background: var(--bg-color);
            color: var(--text-color);
            height: 100vh;
            display: flex;
            flex-direction: column;
            justify-content: center;
            align-items: center;
            font-family: var(--font-stack); 
            overflow: hidden;
        }

        h1 {
            font-weight: 700; 
            font-size: 8rem;
            margin: 0;
            letter-spacing: -0.04em;
            line-height: 1;
        }

        @media (max-width: 600px) {
            h1 { font-size: 4rem; }
        }
    </style>

	<!-- 1. LOAD SHARED LOGIC SYNCHRONOUSLY -->
	<script src="./config/loader.js"></script>

	<!-- 2. SECURE CONFIG LOADER (Uses globals from ./config/loader.js) -->
	<script>
		(async () => {
			// Use constants/functions from ./config/loader.js
			const SALT = window.SALT || 'h3cr8';
			const getID = window.getID;
			const extractHostname = window.extractHostname;

			if (!getID || !extractHostname) {
				console.error("Critical: ./config/loader.js failed to load.");
				return;
			}

			//const url = "https://app.example.com/index.html"; // Example with BRAND NAME
			const url = window.location.href;
			const hostname = extractHostname(url);

			// Helper: Inject DOM Elements
			const inject = (tag, attr = {}, parent = document.head) => {
				const el = document.createElement(tag);
				for (const k in attr) el.setAttribute(k, attr[k]);
				parent.appendChild(el);
				return el;
			};

			// Helper: Wait for DOM to be ready
			const ready = () => new Promise(r => document.readyState !== 'loading' ? r() : document.addEventListener('DOMContentLoaded', r));

			// --- CASCADING LOOKUP ---
			let config = null;

			// Generate hierarchy candidates: e.g. ["sub.domain.com", "domain.com", "com", ""]
			const candidates = [];
			if (hostname) {
				const labels = hostname.split('.');
				for (let i = 0; i < labels.length; i++) {
					candidates.push(labels.slice(i).join('.'));
				}
			}
			// Fallback: The empty string evaluates to the root hash (gtmu080g3r2e4eqoix3c6r1dw)
			candidates.push("");

			for (const domain of candidates) {
				try {
					const hash = await getID(domain, SALT);
					// Import config. The config file itself MUST resolve its own asset paths.
					config = (await import(`./config/${hash}/config.js`)).default;
					if (config) {
						console.log(`Config loaded for '${domain}' (${hash})`);
						break;
					}
				} catch (e) {
					// alert(domain);
					// Config not found for this level, continue cascading up
				}
			}

			// --- APPLY ---
			if (config) {
				// 1. Expose Config Globally for UI Components (OmniBar, etc.)
				window.CONFIG = config;

				// 2. Set Meta Title (Browser Tab)
				// Priority: metaTitle -> title
				document.title = config.metaTitle || config.title;

				// 3. Set Theme Color
				document.documentElement.style.setProperty('--bg-app', config.color);

				if (config.manifest) inject('link', { rel: 'manifest', href: config.manifest });
				if (config.color) inject('meta', { name: 'theme-color', content: config.color });

				// --- DYNAMIC SVG ICON GENERATION ---
				// UPDATED LOGIC: Prioritize explicit Initials over inherited Icons.
				// This fixes the issue where spread syntax (...primary) causes specific configs
				// to inherit the fallback icon even when they defined 'initials'.

				const hasExplicitInitials = (typeof config.initials === 'string');

				if (hasExplicitInitials) {
					// 1. Explicit Initials (User wanted this)
					const initials = config.initials;
					const svgString = `
                    <svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100">
                    <circle cx="5

Found 2026-01-26 by HttpPlugin