Report - www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f

Report Overview

Submitted URL
www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
IP
54.230.111.127
ASN
#16509 AMAZON-02
Submitted
2024-05-04 15:09:22
Access
public
Website Title
Esto no es un sitio de citas!
Final URL
www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	448 B	17 kB	142.250.74.106
www.cogermaduras.com	unknown	2022-03-16	2022-11-22	2024-02-16	8.1 kB	1.1 MB	54.230.111.88
notix.io	14765	2020-08-20	2020-08-20	2024-05-03	1.4 kB	147 kB	139.45.197.227
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.1 kB	98 kB	216.58.207.227
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	425 B	66 kB	142.250.74.168
tsyndicate.com	13042	2017-03-08	2017-03-16	2024-05-03	474 B	617 B	142.132.207.176

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	notix.io/ent/current/enot.min.js	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	646 B	2023-06-30	2024-05-14
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 19:31:45 Last Seen2024-05-14 01:21:30 Times Seen76 Hash d137ca37401f6148d067e2b01ce6cf05 0c4b51ba0ce42864d146757b13f5fa01bda66959 01f0a094d2c98f350aeec422955a516673e6649eafb85a41464995bf91a6c785 Loading...

	notix.io/ent/current/enot.min.js	145 kB	2024-03-06	2024-05-18
Pretty URL notix.io/ent/current/enot.min.js IP 139.45.197.227 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-06 08:52:05 Last Seen2024-05-18 13:08:25 Times Seen186 Hash 9a3ae56c31a58c28e606e1e069a21059 ea3cdfcda002044373d2090e1745f83a15b82d17 6ccf4be26c7c79133eaf94c9c64a2ace27574e72d4c40c3c2011479cadca1f55 Loading...

	www.cogermaduras.com/1281685612863891/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-05-18
Pretty URL www.cogermaduras.com/1281685612863891/jquery-3.3.1.min.js IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-18 14:09:05 Times Seen114040 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	296 B	2023-11-01	2024-05-07
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-01 14:05:29 Last Seen2024-05-07 01:04:30 Times Seen7 Hash 8889186680e45311b44980d7fb27973d 0c7e654fd71615e3820071bed089cf3f5205675a 9aaed6aacadf14bbef0a7e1b543e6dc0b900b77ff9a312487aa337442fc325e9 Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	9 B	2023-05-08	2024-05-15
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-08 13:26:30 Last Seen2024-05-15 16:39:08 Times Seen242 Hash be6785e59c77a61aab69e5b739bed670 6decef9a08c4f0485df0b1ab9632a1a59381758f 41061c462a27d78278f8565bbc8dde884bb0e9423a902b8f20a0e1a4ab074cac Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	42 B	2023-05-08	2024-05-15
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-08 13:26:30 Last Seen2024-05-15 16:39:08 Times Seen109 Hash 6ce903af6fe0ccb6e2455ec47ce31415 5d2b50755db6bad258c4beca13c1bba899d77c0d 83ecabbc3d56d95350bf767b0e29618594bd8ae46fc566c202f4473588af1638 Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	284 B	2024-01-01	2024-05-04
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-01 13:54:06 Last Seen2024-05-04 17:09:23 Times Seen4 Hash 975551f4ff29dc1b79d0e54cd017d274 3833311e8f5019c6ecdf1d88008d404e5894fcff f2902df0421fa552a77cb50e29b4b2bea98ba371301c75be4e7a1be50e02dd50 Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	285 B	2023-11-01	2024-05-07
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-01 14:05:29 Last Seen2024-05-07 01:04:30 Times Seen7 Hash e6dd7c673d324325b136a7e5c920bf12 edc7ec40950b9ed443e19efcab27d848a91c9fd1 b13d841073b113c5f24c6b02559a245b69c9cae850d41141410cd4b90335550f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82	180 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 17:09:23 Last Seen2024-05-04 17:09:24 Times Seen2 Hash 42de4768b223ef91ca329a24bd8863e1 a1556332f0fdfad252fabde0b77e25cd18ef5f52 23c08f123c2fee08ac8f6ed504584b1ab07c1d00948265ae482dd9747c2d98e7 Loading...

	www.cogermaduras.com/1281685612863891/script.min.js	410 B	2023-06-30	2024-05-14
Pretty URL www.cogermaduras.com/1281685612863891/script.min.js IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-30 19:31:45 Last Seen2024-05-14 01:20:58 Times Seen104 Hash 649a8d4d7585935cf473f58fbad85b63 7fd73d56cb9f890c4bdd3d825bc1d1ed8594338a 61bd99907423cb0d090313c6194f4f7171955303710994a22b204dd111d4cf98 Loading...

	www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f	1.2 kB	2024-01-01	2024-05-04
Pretty URL www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f IP 54.230.111.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-01 13:54:06 Last Seen2024-05-04 17:09:24 Times Seen4 Hash bb717db1c6d016bb39062b5825421338 6827d51f5baa278834a2cae1d9c3fe812652b326 4c29b2a777a31207df577530f8c2c2faded163ba96e0bbbfddcd32bf5ac88808 Loading...

HTTP Transactions (22)

URL IP Response Size

www.cogermaduras.com/1281685612863891/es4-1685612910858.jpg

54.230.111.88

200 OK

20 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/es4-1685612910858.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
20 kB (19583 bytes)
Hash
14a4ce047eb8ac4c78f61939e9f4c7ec
371935817d72aea692a06126c3c1c081dc8be160
121b7a72bb8eb0d80df4684c69abdbdd942f113f378422fd2698b126bec671a4

HTTP Headers

GET /1281685612863891/es4-1685612910858.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 19583
date: Thu, 02 May 2024 10:53:03 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "14a4ce047eb8ac4c78f61939e9f4c7ec"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yx-XzVS5Of2Ieipql3AWG-xYt2Ia-3FVQBP9Xg9-tIOALexclAd7yA==
age: 188154
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/f2324234321684943298963-1685612910861.jpg

54.230.111.88

200 OK

20 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/f2324234321684943298963-1685612910861.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
20 kB (19939 bytes)
Hash
5b90490ffddcaffa86218089352cd4e1
d6d155081dcdd5c4129983bc853acad61f85dde3
7840bf817c34f4df88d320b686b74c5daec56253421312007af5f213293ff5bf

HTTP Headers

GET /1281685612863891/f2324234321684943298963-1685612910861.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 19939
date: Thu, 02 May 2024 10:53:03 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "5b90490ffddcaffa86218089352cd4e1"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KVqPSddcjbj-5GgZ3BJhKpI_GklvlOqYwpMUNWbF5oA3kXIdzWvPWA==
age: 188154
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/es_whatsappcachar-1685612910849.png

54.230.111.88

200 OK

43 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/es_whatsappcachar-1685612910849.png
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
PNG image data, 600 x 300, 8-bit/color RGBA, non-interlaced
Size
43 kB (43289 bytes)
Hash
0c520f39f070e9f582b81afa265d8af0
e6c892046f60ea6f2acf90894b7efb771cfe5186
c32bc4b05c7ac3100b6fede6ce3a8855a151a553ebcd5b75ce577f83ca340c92

HTTP Headers

GET /1281685612863891/es_whatsappcachar-1685612910849.png HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 43289
date: Thu, 02 May 2024 10:53:02 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "0c520f39f070e9f582b81afa265d8af0"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2lXipMAC72_egO9SxlHI8ad0rPZ_3-76USpshy2ZMZWtuzuMAR_D7Q==
age: 188155
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/script.min.js

54.230.111.88

200 OK

410 B

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/script.min.js
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (410), with no line terminators
Size
410 B (410 bytes)
Hash
649a8d4d7585935cf473f58fbad85b63
7fd73d56cb9f890c4bdd3d825bc1d1ed8594338a
61bd99907423cb0d090313c6194f4f7171955303710994a22b204dd111d4cf98

HTTP Headers

GET /1281685612863891/script.min.js HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 410
date: Thu, 02 May 2024 10:53:02 GMT
last-modified: Thu, 01 Jun 2023 09:48:33 GMT
etag: "649a8d4d7585935cf473f58fbad85b63"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2EKFMds2YQN-EtvTlBHBrsXUl3E7E2dW4e0mRB8DEALVpnLbLx5Jmg==
age: 188155
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/66978269231-1685612910851.jpg

54.230.111.88

200 OK

47 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/66978269231-1685612910851.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
47 kB (46693 bytes)
Hash
eed39419ed881ea3bf05178d432b3294
e5be78756c6ab4b0b7447158da3d65967aec8109
0080a265b76e1860f1a0e605233922da52fe01094ae84c5cdcbfbae926c29297

HTTP Headers

GET /1281685612863891/66978269231-1685612910851.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 46693
date: Thu, 02 May 2024 10:53:03 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "eed39419ed881ea3bf05178d432b3294"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wFpBmzoV1RtmaaX9VY5nWSuMUGrZf4XCz0Qr_y-0WKWeuHbPXEjc_g==
age: 188154
X-Firefox-Spdy: h2

notix.io/rtg.gif?px=970cc097-4867-4315-b4ba-36f185de446e

139.45.197.227

200 OK

43 B

URL GET HTTP/2
notix.io/rtg.gif?px=970cc097-4867-4315-b4ba-36f185de446e
IP
139.45.197.227:443
ASN
#9002 RETN Limited

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerLet's Encrypt
Subjectnotix.io
Fingerprint70:E0:2B:45:EC:B5:E5:FB:98:9E:D6:AF:6E:33:7C:FA:97:6C:5A:07
ValiditySat, 27 Apr 2024 20:59:56 GMT - Fri, 26 Jul 2024 20:59:55 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /rtg.gif?px=970cc097-4867-4315-b4ba-36f185de446e HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 15:08:56 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/b3t3451684943298961-1685612910853.jpg

54.230.111.88

200 OK

12 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/b3t3451684943298961-1685612910853.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
12 kB (11909 bytes)
Hash
7afa3dd1818308b8f300aba16de6c970
673389f3bc063779ba76b5a639711e1e64a5a36c
2b3aa3f61baa8d5dbd57d0168b798b549442b3f0b8bca14a515590a24cc2f0a2

HTTP Headers

GET /1281685612863891/b3t3451684943298961-1685612910853.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 11909
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "7afa3dd1818308b8f300aba16de6c970"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LYbpfGluw3BshcyLaOmSjV4_pRvgIvuh2uX5AHijvv5OMLyhi1Lcxg==
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/fds3423-1685612910855.jpg

54.230.111.88

200 OK

24 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/fds3423-1685612910855.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
24 kB (24321 bytes)
Hash
848527e4a6a2b5d2557c9a6d6e546d44
8f6e09f5ecf1972d0a2d85100435945c5146fbd2
d66cfeb2983dc34d3249a710586fcc5bfe555e2fc389ce58bbb3a29079d1cc22

HTTP Headers

GET /1281685612863891/fds3423-1685612910855.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 24321
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "848527e4a6a2b5d2557c9a6d6e546d44"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _7njF9-yNM6pLydQbEIvDcxIoVOJVLjYtfWOSqyZPMmkD-ZW87DIqg==
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/f4541684943298963-1685612910860.jpg

54.230.111.88

200 OK

19 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/f4541684943298963-1685612910860.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
19 kB (19318 bytes)
Hash
26a1dd1cd9d52d67d17135d044b4cb3a
d898289b6180bcb42f449b11c86bc39c94fb01c9
299d0d0646731bd7266acf3c80d7c11812bc0253f444755025da0948c6338866

HTTP Headers

GET /1281685612863891/f4541684943298963-1685612910860.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 19318
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "26a1dd1cd9d52d67d17135d044b4cb3a"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CmDLYM8ii0XSr4mKFoDnbGezmSVWF0FcafS6Kr0-7ptHGSx5_gTmlg==
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/54vfd23167032884969116704116189271684943298961-1685612910856.jpg

54.230.111.88

200 OK

213 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/54vfd23167032884969116704116189271684943298961-1685612910856.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x450, components 3
Size
213 kB (213243 bytes)
Hash
4addb0e8c7d90da2075789cc9c3d8c4e
929d93ab6da8e7f088c791ac9d9bb3ac16e455b3
7bb8ab53a9a379b963b580d3c2446c925c88b49c9222b57c7f8841fc38580a67

HTTP Headers

GET /1281685612863891/54vfd23167032884969116704116189271684943298961-1685612910856.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 213243
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "4addb0e8c7d90da2075789cc9c3d8c4e"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7k3ltyGL4uk1sQPhyMvjfh4e0Qpe6PeLRK4vvQKVGRQn-IyTYvBQ5w==
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cogermaduras.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 218036
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cogermaduras.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 218036
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82

142.250.74.168

200 OK

66 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PKBDJ82
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
66 kB (65506 bytes)
Hash
42de4768b223ef91ca329a24bd8863e1
a1556332f0fdfad252fabde0b77e25cd18ef5f52
23c08f123c2fee08ac8f6ed504584b1ab07c1d00948265ae482dd9747c2d98e7

HTTP Headers

GET /gtm.js?id=GTM-PKBDJ82 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 15:08:56 GMT
expires: Sat, 04 May 2024 15:08:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65506
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

notix.io/settings?appId=10050796962e16b6e1dd91d69c8ac80&ver=0.16.4

139.45.197.227

200 OK

318 B

URL GET HTTP/2
notix.io/settings?appId=10050796962e16b6e1dd91d69c8ac80&ver=0.16.4
IP
139.45.197.227:443
ASN
#9002 RETN Limited

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerLet's Encrypt
Subjectnotix.io
Fingerprint70:E0:2B:45:EC:B5:E5:FB:98:9E:D6:AF:6E:33:7C:FA:97:6C:5A:07
ValiditySat, 27 Apr 2024 20:59:56 GMT - Fri, 26 Jul 2024 20:59:55 GMT

File type
JSON text data
Size
318 B (318 bytes)
Hash
82b0c0f76512e60ea030da09ee18febf
2c4b11e5713c2f7e6a3da2ef87a1c0c78c3da195
a8ca49249ca90a131bba14405671cb243da2849145a3d8074b0b5c232c2b57d1

HTTP Headers

GET /settings?appId=10050796962e16b6e1dd91d69c8ac80&ver=0.16.4 HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cogermaduras.com/
Origin: https://www.cogermaduras.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 15:08:56 GMT
content-type: application/json; charset=utf-8
content-length: 318
access-control-allow-origin: https://www.cogermaduras.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

tsyndicate.com/api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3

142.132.207.176

200 OK

43 B

URL GET HTTP/2
tsyndicate.com/api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3
IP
142.132.207.176:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerLet's Encrypt
Subjecttsyndicate.com
FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31
ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ba036c43037cfe89320d1ef7b64cd43f
88c72d3e26047eb1e45e5564a76427734f120efe
42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb

HTTP Headers

GET /api/v1/retargeting/set/31274e87-1118-4d7c-bc72-9007731936c3 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 15:08:57 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 13f8dc05cde34126
set-cookie: ts_rt_31274e87-1118-4d7c-bc72-9007731936c3=AAMC; expires=Sun, 04 May 2025 15:08:57 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/background1684943298957-1685612910864.jpg

54.230.111.88

200 OK

569 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/background1684943298957-1685612910864.jpg
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 1280x1280, components 3
Size
569 kB (568969 bytes)
Hash
35d44e2ce080fe8fa45f1fafcc56cd17
16d55651cb801c38f46e3e7180e7d0fdd8380d17
c56868789a4b322cfacdc087cd1b5c64c326284bbfe31e5d280db361d45c21fd

HTTP Headers

GET /1281685612863891/background1684943298957-1685612910864.jpg HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 568969
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:32 GMT
etag: "35d44e2ce080fe8fa45f1fafcc56cd17"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BsP5H37GrMGVTPFYoNfohIQ6IlqSkBpbMmdeJxRl_CleiGjDnLLv1g==
X-Firefox-Spdy: h2

www.cogermaduras.com/favicon.ico

54.230.111.88

404 Not Found

346 B

URL GET HTTP/2
www.cogermaduras.com/favicon.ico
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
346 B (346 bytes)
Hash
9dc24cb7ff9151a81c7b42de7710e878
33e32de324e5e5a39acc5b31f68867c1c3afbe7b
ec2aaa654922887e5ea7cf0a67369213148ec17984a19fa34d4fd865858b082b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
content-length: 346
date: Sat, 04 May 2024 15:08:56 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hohF7zZFPMrPL5-KFv1WG462yMASG1oh3qKMbY0mkAcLF8o83PmeJw==
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:400,700,800

142.250.74.106

200 OK

17 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,700,800
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
17 kB (16791 bytes)
Hash
b6cb243e275c255a8094caa11233bf7d
2170e8da0135f600bb0154618ab71db2442e4664
df70fd21f51441a78eaacd60359ba11bc94d68074b2f9921e20f92db6f6e9b6b

HTTP Headers

GET /css?family=Open+Sans:400,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 15:08:56 GMT
date: Sat, 04 May 2024 15:08:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

notix.io/ent/current/enot.min.js

139.45.197.227

200 OK

145 kB

URL GET HTTP/2
notix.io/ent/current/enot.min.js
IP
139.45.197.227:443
ASN
#9002 RETN Limited

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerLet's Encrypt
Subjectnotix.io
Fingerprint70:E0:2B:45:EC:B5:E5:FB:98:9E:D6:AF:6E:33:7C:FA:97:6C:5A:07
ValiditySat, 27 Apr 2024 20:59:56 GMT - Fri, 26 Jul 2024 20:59:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
145 kB (145421 bytes)
Hash
9a3ae56c31a58c28e606e1e069a21059
ea3cdfcda002044373d2090e1745f83a15b82d17
6ccf4be26c7c79133eaf94c9c64a2ace27574e72d4c40c3c2011479cadca1f55

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

HTTP Headers

GET /ent/current/enot.min.js HTTP/1.1
Host: notix.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 15:08:56 GMT
content-type: application/javascript
last-modified: Wed, 13 Mar 2024 11:17:39 GMT
etag: W/"65f18b53-2380d"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f

54.230.111.88

200 OK

11 kB

URL User Request GET HTTP/2
www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type

Size
11 kB (11142 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
date: Thu, 02 May 2024 17:33:09 GMT
last-modified: Thu, 01 Jun 2023 09:48:33 GMT
etag: W/"c0c1f1ae4c28b84cb2540d2a8bdc4e51"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s-K34rxIhcJT5dmAEOapKl-pgN1Ds9bPSCDNu5AE3BcBbITQ3PuLrw==
age: 164147
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/css.css

54.230.111.88

200 OK

51 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/css.css
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
51 kB (51269 bytes)
Hash
f608369269f5368fe447b940148b6a26
eda57d809d8ff54faec8405af7b85a0e04e6612e
7f86cdafc961747d00b8ae7c33ede42d694a1140efabc13dd3990e0a80f67c21

HTTP Headers

GET /1281685612863891/css.css HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:33 GMT
etag: W/"f608369269f5368fe447b940148b6a26"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _bht4oHQK8sFXiJxTG-aPVyPBuyg7GTtkiwINppt4S7skHDM7TfHpw==
X-Firefox-Spdy: h2

www.cogermaduras.com/1281685612863891/jquery-3.3.1.min.js

54.230.111.88

200 OK

87 kB

URL GET HTTP/2
www.cogermaduras.com/1281685612863891/jquery-3.3.1.min.js
IP
54.230.111.88:443
ASN
#16509 AMAZON-02

Requested by
https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Certificate
IssuerAmazon
Subjectcogermaduras.com
Fingerprint7E:82:19:75:97:F1:B3:57:DE:66:99:72:00:46:6C:3E:C7:56:CB:89
ValidityThu, 26 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /1281685612863891/jquery-3.3.1.min.js HTTP/1.1
Host: www.cogermaduras.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.cogermaduras.com/1281685612863891/?subid=91&uclick=uoktbza7&uclickhash=uoktbza7-uoktbza7-j2-2ti4-g58n-164p-16wh-71dd0f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript
date: Sat, 04 May 2024 15:08:57 GMT
last-modified: Thu, 01 Jun 2023 09:48:33 GMT
etag: W/"a09e13ee94d51c524b7e2a728c7d4039"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f97BqoVElsjx-3d6whTxc177RP3D8kSkS-fIINdTVX0pCTiwan5FuA==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML