Report - 44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY

Report Overview

Submitted URL
44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY
IP
44.193.244.104
ASN
#14618 AMAZON-AES
Submitted
2024-04-24 08:35:14
Access
public
Website Title
Page not found - Florida Hipster
Final URL
44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
keywords.mediavine.com	8343	2002-01-29	2019-10-17	2024-04-23	499 B	372 B	151.101.193.181
faves.grow.me	13063	2020-04-14	2020-07-21	2024-04-23	809 B	58 kB	151.101.2.49
api.grow.me	13124	2020-04-14	2020-07-21	2024-04-23	1.3 kB	3.3 kB	151.101.130.49
44.193.244.104	unknown	unknown	No data	No data	8.1 kB	250 kB	44.193.244.104
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-24	421 B	83 kB	142.250.74.168
scripts.mediavine.com	7572	2002-01-29	2015-01-20	2024-04-23	11 kB	439 kB	151.101.193.181
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	1.7 kB	84 kB	216.58.207.227
exchange.mediavine.com	2109	2002-01-29	2019-07-17	2024-04-23	439 B	14 kB	52.28.186.253
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	495 B	8.2 kB	142.250.74.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed
2024-04-24	medium	44.193.244.104	Sinkholed

ThreatFox

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js	58 kB	2024-02-25	2024-04-30
Pretty URL scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-25 21:50:55 Last Seen2024-04-30 15:54:31 Times Seen33 Hash c201da8aace1c33690f3f1dbd7c580f5 481cf2af5c8874ab6214589a8cfadc59617baa41 ba19beacf91a3a7cb6e7f0238a634d78f77538a1678b929f3dc4e6fc538fd8f6 Loading...

	faves.grow.me/app.7.243.3.js	175 kB	2024-04-24	2024-04-24
Pretty URL faves.grow.me/app.7.243.3.js IP 151.101.2.49 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-24 10:35:23 Times Seen2 Hash 806ff2a3dffa17d678b00d9c64380584 4cff692fba637fb8fe69c00031fb302d8c3bb1d5 140cfe0bfba46c1d00ac622de6596454134b5099d6497f81e9454a6c7060433b Loading...

	44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY	239 B	2024-04-24	2024-04-24
Pretty URL 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-24 10:35:21 Times Seen1 Hash 7a0524008e91d80af5dd54f03d9e2563 773ff983ac6e1a9d5dec4a41487b3647dd019303 99649b8c6f4fbe9d9404028bb9c8716baed35f8afbaa66a69a6fe1adf8ca8d9d Loading...

	44.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0	7.0 kB	2024-02-06	2024-05-05
Pretty URL 44.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-06 20:30:22 Last Seen2024-05-05 20:41:42 Times Seen159 Hash 70bb4fab119eb133cae33105b69f65cb 0c78a77e06be020674ca82d28b02a712615f7b35 395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936 Loading...

	44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY	309 B	2024-04-24	2024-04-24
Pretty URL 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-24 10:35:21 Times Seen1 Hash 17a84f074933dba18ed591a711b89c23 e242bd2459d01e85d1545fde2b6a5c6decaff0d7 c2d06ee501f70049933c8be238aa1018060a0c230790a9bb2282d3e32057a641 Loading...

	scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js	23 kB	2024-02-25	2024-04-30
Pretty URL scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-25 21:50:55 Last Seen2024-04-30 15:54:30 Times Seen33 Hash 62419b721381bec1d9e2e4fcbc9f4754 f8ba6d52cdb91a52c5a28b34886986914a5f46a5 ee390366f52cb58359c2e36e947f3b133c7876aafdc578f66f92ad8b4d3ae741 Loading...

	scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js	9.0 kB	2023-11-21	2024-04-30
Pretty URL scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 22:14:10 Last Seen2024-04-30 15:54:30 Times Seen105 Hash 9e3039b66c897ccde62e44aedfb272d7 fb912de8566b585d3ffc11df8de3378a5299d454 fb41aae2affebd3ba9e7a5c8afcccb63309ea3141bc9e734e8c78cbc42bae57f Loading...

	scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js	155 B	2023-05-21	2024-04-30
Pretty URL scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 00:51:07 Last Seen2024-04-30 15:54:29 Times Seen614 Hash b24f335a88b4c202634b236641c257f0 f7f290d984c551cd6e2a96287b0b5ca2af87aecf fec422cd3d21f8a35e3f7ddc97ca4134226be248e3d308f310771eddbc4b111b Loading...

	scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js	140 kB	2024-04-24	2024-04-30
Pretty URL scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-30 15:54:31 Times Seen6 Hash f39ca26279bce78ccfc6bd9a1963c72d 1a1b07d0145084a8b6ceb3003fa147fc27052bc5 531d1901c3b45913d86a421c6a9cb37025e4947fb7d3c7e1fdfb4868b06de3d8 Loading...

	scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2	167 kB	2024-04-24	2024-04-24
Pretty URL scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2 IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-24 10:35:22 Times Seen2 Hash f6855caa06f18307f0d1a88b4739b830 c24bbc7bdd0a44b19b969fa2a0e37f0067021102 ef7f4c87abb13386c748b6c51b84ed34b99d59ebe4722fb52ecfa146840cbf50 Loading...

	44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY	260 B	2023-03-07	2024-05-05
Pretty URL 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-05 20:41:42 Times Seen2552 Hash 9b78b28b396646badfc6017235ee4be9 18103240bf0cb760cdf7febc628b56b8fca44319 215f517010a20f2f4c55d34dd3c574568bd0fb83662f0b915ddb6561f97c3904 Loading...

	scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204	170 kB	2024-04-24	2024-04-25
Pretty URL scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204 IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:21 Last Seen2024-04-25 06:13:11 Times Seen4 Hash 99655c629cb3a2a1a961e5c5a18492ad 3d85d70ba8fa01b179cd15b59d50f9f861de47ec ed48a9a43c2e6ed54e2795d8c5b0d37cb45a01d2abecb11ad40ba6042a39c95a Loading...

	scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js	1.0 kB	2024-03-18	2024-04-30
Pretty URL scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-18 16:52:45 Last Seen2024-04-30 15:54:30 Times Seen24 Hash 004e9b69c50c6f1631e930ebffb51e6e 6b8816ce02f4a2d30bc7f49e78c70d3be53ba126 a3cfbde18aa8afdd228074ce7a6014aec152e90a412a2ec4a7e3d621c5041560 Loading...

	scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js	20 kB	2024-04-24	2024-04-30
Pretty URL scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-30 15:54:31 Times Seen8 Hash 51aaac94d1b60cba6fdb4dfc68b9aa14 38da8cbbe250ae19b20ce972db03f72df6cecd3f 7db6fec57509168c724f10200c01ee06dfd84b7096857411b231e006f1acff4f Loading...

	scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js	15 kB	2024-04-04	2024-04-30
Pretty URL scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 23:27:41 Last Seen2024-04-30 15:54:31 Times Seen22 Hash 8ef75c4f102f97d3707604854b622af7 5c099a44a813877603bec2930d9fa12c7dc842cb 54d73ad2c6c7f353bbb28d257f8297ebc48560c48e477210465404159e710f4e Loading...

	www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG	224 kB	2024-04-24	2024-04-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-24 10:35:22 Times Seen2 Hash bed9f9fd9e37f5f7033c67759079db58 34452948be75d026c318a9591dab0756a2fdf1c7 865f565ce0d71556d5d48f1900d86c68e19d972d171ba6fc45b17779dd939d86 Loading...

	44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY	33 B	2023-03-07	2024-05-02
Pretty URL 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:08:09 Last Seen2024-05-02 06:25:53 Times Seen121 Hash 5950de99fe01bdffab39022bc95332cb 76fa990bed1e89f8a9fb6502f3c7fbadc001e65d f076576cbe832eeb3786f580377fd79edca592f705cd2782e0080c477e927bbc Loading...

	44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY	127 B	2023-03-07	2024-05-05
Pretty URL 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:19 Last Seen2024-05-05 20:41:42 Times Seen1602 Hash e891393f0be3a6ffaa3923b307180e7e bc0a7332b9846a5762a71b9b9811c1a8b19df194 2d1778345d3607ceb641cc5f21b0a2c045fa70052361ac91a17c39b2c9d96f71 Loading...

	faves.grow.me/main.js	17 kB	2024-04-24	2024-04-24
Pretty URL faves.grow.me/main.js IP 151.101.2.49 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-24 10:35:23 Times Seen2 Hash efceb41411d569c718532b52d561533d 8d0e314552a280cdf40ba4bb09b25373e435c32f 67ff6d6b37c4776675ea622ee7b58571fdb328b816b2308bc6f8b9ad790f4d40 Loading...

	scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js	20 kB	2024-04-24	2024-04-25
Pretty URL scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-25 06:13:12 Times Seen4 Hash 57e428479a67cf8e16597df4433fd511 50a9393c41578d4dfe60bc0f7b2fb79a8370021d 6e54381d04dd55bab23a149ac6b1f67a766c76f69d6c90855d1a9967e80a689e Loading...

	scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js	15 kB	2024-04-15	2024-04-30
Pretty URL scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 10:43:48 Last Seen2024-04-30 15:54:31 Times Seen16 Hash 3e96db4170cf4e432566afd3255a4699 92f726d9cd5f0ae0c9405a5703fae76f4081625a b900a8f2e2808e9e102147f9660d9d84163bad7ef101235bb4e58513799fbbb8 Loading...

	scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js	42 kB	2024-04-17	2024-04-30
Pretty URL scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 05:54:44 Last Seen2024-04-30 15:54:30 Times Seen12 Hash e76eedc914521a11aa4e68c36ff66df8 d50c0bd18278ee05cc678fc2937ad20d05d8c3f7 5adfd4a68b65a9bd3f8fff31737e574a50597d5adb241f15a2ba1377364b8519 Loading...

	scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js	328 kB	2024-04-24	2024-04-30
Pretty URL scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-30 15:54:31 Times Seen8 Hash 09c9f4aa29b9d997b31927d2075fe905 1fd3675295471d70e1e4563d9791409087ba84ed 5ca8db4c3fe23b2135f1c2885c4bd91804a12f36de08ded3fec95110dc5d709b Loading...

	44.193.244.104/sandbox%20eval%20code	136 B	2023-04-11	2024-05-05
Pretty URL 44.193.244.104/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-05-05 20:36:34 Times Seen31741 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js	8.7 kB	2024-03-26	2024-04-30
Pretty URL scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-26 23:02:32 Last Seen2024-04-30 15:54:30 Times Seen22 Hash 1e854cdc5f47eb5c60a0329d023edf27 9fed1deaf69fa1dd65a5d8f52abb6529f956fabe fb8218a504f901abd6e5240c1c634018485743c80901a9af5e17a5d3fe39df65 Loading...

	scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js	13 kB	2024-04-15	2024-04-30
Pretty URL scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-15 10:43:47 Last Seen2024-04-30 15:54:31 Times Seen16 Hash 2ed4e4d44477a8f9a6ea4c990dd79d96 327825e486261ceb32519d02a8e79da9051d262d f7f90b61f4dd55de7311ccc80ada5b8780413dbeffe882c97c71afe6b1cd4ac3 Loading...

	44.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0	3.4 kB	2024-02-09	2024-05-02
Pretty URL 44.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-09 15:13:14 Last Seen2024-05-02 06:25:54 Times Seen11 Hash 240fceffe2d443a2472854ee7d2e53d5 480337cfc727b896df5500d8e4108b09443b6235 91b2dc9cd7ac64ecf6e58b3a6929024bb30b9af8de18de40d63e10ec4fbb35ea Loading...

	scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js	61 kB	2023-10-27	2024-04-30
Pretty URL scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-27 00:06:31 Last Seen2024-04-30 15:54:30 Times Seen138 Hash 3ac36b93e230c09abea8266587e3313b ca2c6609b8bd1711d55dc94b5a98987e68545224 e7dc2d96e7b17036114e965bc4fd20227f0285f0e0a7530015fb57e6ee3a959c Loading...

	exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c	13 kB	2024-04-24	2024-04-24
Pretty URL exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c IP 52.28.186.253 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 10:35:22 Last Seen2024-04-24 10:35:23 Times Seen2 Hash 9315f8a8396756691a4c1e3c607e95df b17f0580cbfe7fc9f2e8aa19f6faf675a2adbcf0 e0156fe12820a1e5f4d01fbe08c6d183020b69ca19ea75fbca1b5ed8b5845e21 Loading...

	44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0	6.8 kB	2023-03-29	2024-05-04
Pretty URL 44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0 IP 44.193.244.104 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:12:02 Last Seen2024-05-04 13:26:36 Times Seen423 Hash 2c8d926d887909904dab4316508bacc6 455db3d80b61fefab3797bacd140f95229fa7518 50fe1014e82dd9acea2f5b26061c8f135cb11ea0aa5d5ad5985e6b265b7f50a8 Loading...

	scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js	38 kB	2023-12-22	2024-04-30
Pretty URL scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js IP 151.101.193.181 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-22 13:41:57 Last Seen2024-04-30 15:54:30 Times Seen95 Hash c573e57126063be3ca04b9d8399d6c0d 32878cbeaa5352d2595a2fc57cd11cec2d06decf 7f7ec3eb5d4b91fd715acd94d0df382855d4e6aea636c41c65804957ec7c839e Loading...

HTTP Transactions (50)

URL IP Response Size

44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY

44.193.244.104

0 B

URL
44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY
IP
44.193.244.104:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /','8Xxa2XQLv9',true,false,'OLp7WwSugqY HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 08:34:46 GMT
Server: Apache
X-Powered-By: PHP/7.4.15
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-UA-Compatible: IE=edge
Content-Security-Policy: block-all-mixed-content
X-Redirect-By: WordPress
Set-Cookie: aawp-country=NO; expires=Fri, 24-May-2024 08:34:46 GMT; Max-Age=2592000; path=/
X-Frame-Options: SAMEORIGIN
Location: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cache-Control: no-cache, must-revalidate, max-age=0, s-maxage=10
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY

44.193.244.104

404 Not Found

81 kB

URL User Request GET HTTP/1.1
44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
HTML document, ASCII text, with very long lines (13878), with CRLF, LF line terminators
Size
81 kB (80994 bytes)
Hash
5d4e72bfe59aaf569cc998a1a747f9a4
c7538efeb3f9de3484d75123bc54d9c3cf1c6b60
db8613a0b7bb13954278b17dc7253d2e1fcb6fe3798155dd3bf5e65f0992f7fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /,8Xxa2XQLv9,true,false,OLp7WwSugqY HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: aawp-country=NO
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 08:34:48 GMT
Server: Apache
X-Powered-By: PHP/7.4.15
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-UA-Compatible: IE=edge
Content-Security-Policy: block-all-mixed-content
Link: <https://44.193.244.104/wp-json/>; rel="https://api.w.org/"
Server-Timing: wp-before-template;dur=55.42
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache, must-revalidate, max-age=0, s-maxage=10
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

44.193.244.104/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2

44.193.244.104

200 OK

8.7 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
8.7 kB (8736 bytes)
Hash
7e183681660ca3e58e928811b0252a44
41bbb8b875205deb5cce80dda50f8c190ccb743d
b5571ce8d84e854051abddd7bdfcfa590c72fa0d4669abc05803e62bfb014bbc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 15 Apr 2024 19:38:54 GMT
ETag: "19bf4-61627c59188c3-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8736
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG

142.250.74.168

200 OK

82 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2165)
Size
82 kB (81988 bytes)
Hash
bed9f9fd9e37f5f7033c67759079db58
34452948be75d026c318a9591dab0756a2fdf1c7
865f565ce0d71556d5d48f1900d86c68e19d972d171ba6fc45b17779dd939d86

HTTP Headers

GET /gtag/js?id=G-66P0QLDEZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 08:34:48 GMT
expires: Wed, 24 Apr 2024 08:34:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81988
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0

44.193.244.104

200 OK

1.4 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (5901), with no line terminators
Size
1.4 kB (1364 bytes)
Hash
620bdc2e262641f4cee95c34de331140
588be9ecfa8899889f324f17b4fe3f0828acd478
ff95720758215ef9f328fda9e5b00e7c64421bcc8c0439e38201492e0fa78616

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "170d-60ead68e3f3bf-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1364
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2

151.101.193.181

200 OK

32 kB

URL GET HTTP/2
scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
Unicode text, UTF-8 text, with very long lines (65302)
Size
32 kB (31974 bytes)
Hash
f6855caa06f18307f0d1a88b4739b830
c24bbc7bdd0a44b19b969fa2a0e37f0067021102
ef7f4c87abb13386c748b6c51b84ed34b99d59ebe4722fb52ecfa146840cbf50

HTTP Headers

GET /tags/florida-hipster.js?ver=6.5.2 HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU; Expires=Wed, 01 May 2024 08:34:49 GMT; Path=/
AWSALBCORS=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU; Expires=Wed, 01 May 2024 08:34:49 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"28e13-wku8e90KRLGblp+ioON/AGcCEQI"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Wed, 24 Apr 2024 08:34:49 GMT
x-served-by: cache-iad-kjyo7100071-IAD, cache-hel1410027-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713947689.018021,VS0,VE148
vary: gdpr=1, country=EU, Accept-Encoding
strict-transport-security: max-age=300
content-length: 31974
X-Firefox-Spdy: h2

44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0

44.193.244.104

200 OK

2.0 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6795), with no line terminators
Size
2.0 kB (2033 bytes)
Hash
2c8d926d887909904dab4316508bacc6
455db3d80b61fefab3797bacd140f95229fa7518
50fe1014e82dd9acea2f5b26061c8f135cb11ea0aa5d5ad5985e6b265b7f50a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "1a8b-60ead68e3f3bf-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

44.193.244.104/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0

44.193.244.104

200 OK

630 B

URL GET HTTP/1.1
44.193.244.104/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (3356), with no line terminators
Size
630 B (630 bytes)
Hash
f9b0b1948dca272b16005165ab098f29
6e6ae044e8392eb26831476b5340808d076ff76f
f67e99114807ecac9bba6fbb9f81eea467c50c9f03b59974fe696bdfab6ba227

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "d1c-61217da3c0c4e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 630
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

44.193.244.104/wp-content/uploads/generatepress/style.min.css?ver=1710096701

44.193.244.104

200 OK

2.0 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/uploads/generatepress/style.min.css?ver=1710096701
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (10730), with no line terminators
Size
2.0 kB (2035 bytes)
Hash
fe9ca4184da622c8ea21a7a3ecadf1d7
73763e81c80f63b35f5a1bf5e9dedc6cae4dc71c
3db209aba96aeb5017b6156aa96f4ae4c93e2a2182d8b805f4fe2f2b307a265a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/generatepress/style.min.css?ver=1710096701 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 10 Mar 2024 18:51:41 GMT
ETag: "29ea-61352ea664523-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2035
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

44.193.244.104/wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0

44.193.244.104

200 OK

491 B

URL GET HTTP/1.1
44.193.244.104/wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (3293), with no line terminators
Size
491 B (491 bytes)
Hash
07e59a4db7995b6ce66bfb90fc7fbd22
6d134cea98609f38cea5011d9f16e2199a5b5730
3cdc8768b77b752d62d488cda4d7917a5df5d334da0f7fa7c9f86aeae573923b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
Content-Length: 491
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "cdd-60ead68e347df-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Expires: Wed, 24 Apr 2024 08:39:42 GMT
X-Original-Content-Length: 3293
Content-Encoding: gzip
Cache-Control: s-maxage=10
X-Content-Type-Options: nosniff
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

44.193.244.104/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0

44.193.244.104

200 OK

4.4 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (19564), with no line terminators
Size
4.4 kB (4418 bytes)
Hash
867585929ee8b21749cdefa675d9aa11
afbd7bc967068d4e804641f4b1df78ab37417144
bc3b2c1e618a27e485095a3c0db20da5ba2fbfaf3b872ccd6ca35cb19eb37b5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "4c6c-61217da3c0c4e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4418
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

44.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0

44.193.244.104

200 OK

1.6 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6957), with no line terminators
Size
1.6 kB (1556 bytes)
Hash
70bb4fab119eb133cae33105b69f65cb
0c78a77e06be020674ca82d28b02a712615f7b35
395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "1b2d-61217da3c6a0e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1556
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

44.193.244.104/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

44.193.244.104

200 OK

14 kB

URL GET HTTP/1.1
44.193.244.104/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
ASCII text, with very long lines (59701)
Size
14 kB (13902 bytes)
Hash
51a8390b47aa0582cf2d9c96c5addee2
b16a640874025d085c38119a1a02a3460f83f2de
98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 03 Apr 2024 01:21:36 GMT
ETag: "1bae5-615270b3be3de-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13902
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

44.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0

44.193.244.104

200 OK

1.3 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
JavaScript source, ASCII text, with very long lines (3429), with no line terminators
Size
1.3 kB (1283 bytes)
Hash
240fceffe2d443a2472854ee7d2e53d5
480337cfc727b896df5500d8e4108b09443b6235
91b2dc9cd7ac64ecf6e58b3a6929024bb30b9af8de18de40d63e10ec4fbb35ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "d65-61217da3c2b8e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1283
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

scripts.mediavine.com/flooring/countryLookup

151.101.193.181

200 OK

77 B

URL GET HTTP/2
scripts.mediavine.com/flooring/countryLookup
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JSON text data
Size
77 B (77 bytes)
Hash
51c74fcf034fb236d191c5b513b68caf
2587fbc75dfb5a6573920e035f5fe746bc523e43
5c4a95df6e41f46eb579154b6d4b4ae7250ddab57a1fad28d1ec0c165adf83a9

HTTP Headers

GET /flooring/countryLookup HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Varnish
retry-after: 0
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=604800
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
via: 1.1 varnish
x-served-by: cache-hel1410028-HEL
x-cache: HIT
x-cache-hits: 0
strict-transport-security: max-age=300
content-length: 77
X-Firefox-Spdy: h2

scripts.mediavine.com/launcher/settings.json?off=mediavine

151.101.193.181

200 OK

1.4 kB

URL GET HTTP/2
scripts.mediavine.com/launcher/settings.json?off=mediavine
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JSON text data
Size
1.4 kB (1374 bytes)
Hash
12ae190ed892e1ab6234ff001adb056c
a6e3eba553a4dcb84409bae06c5482522ded09b1
3ed6e96bbf0fd0b2f9cd2ca1c68a948b57b86cb0147619b97034d4ccaa0246aa

HTTP Headers

GET /launcher/settings.json?off=mediavine HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=TkxrvUY/gZIzJls2MT8YVVlPHx11r6oS4iDqjf9Og/YCx8U3+djtXpotFuaKpvXmo0J4g0qfN7crkx5SerRXmhjnjBxDzu2Rb/mtm3jzqMd6tpozY01J1DgkT1XV; Expires=Wed, 01 May 2024 01:47:24 GMT; Path=/
AWSALBCORS=TkxrvUY/gZIzJls2MT8YVVlPHx11r6oS4iDqjf9Og/YCx8U3+djtXpotFuaKpvXmo0J4g0qfN7crkx5SerRXmhjnjBxDzu2Rb/mtm3jzqMd6tpozY01J1DgkT1XV; Expires=Wed, 01 May 2024 01:47:24 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"1e47-puPrpVOk3LhECbrgbFSCUi3tCbE"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 24445
x-served-by: cache-iad-kjyo7100137-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 95, 2764
x-timer: S1713947689.342170,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 1374
X-Firefox-Spdy: h2

44.193.244.104/wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png

44.193.244.104

200 OK

107 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
PNG image data, 988 x 621, 8-bit/color RGBA, non-interlaced
Size
107 kB (106986 bytes)
Hash
8f9cac696c821d6509c8be39b281c485
760531b284d9a07f0f6a818b8adaa9c8be1f1b32
cd24321ba9c4b803ed9041d19babad31c7a3ada414260fcabcbd3fa9c87b6115

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Mar 2024 22:38:07 GMT
ETag: "1a1ea-61341f65964ed"
Accept-Ranges: bytes
Content-Length: 106986
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Size
31 kB (31052 bytes)
Hash
5c4f357d4926fc197d43abc63b7fca8c
686af7000d038d7479ed36b48a8ebb0ea9b98aea
1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:25:17 GMT
expires: Wed, 23 Apr 2025 08:25:17 GMT
cache-control: public, max-age=31536000
age: 86972
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204

151.101.193.181

200 OK

55 kB

URL GET HTTP/2
scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65463)
Size
55 kB (54736 bytes)
Hash
99655c629cb3a2a1a961e5c5a18492ad
3d85d70ba8fa01b179cd15b59d50f9f861de47ec
ed48a9a43c2e6ed54e2795d8c5b0d37cb45a01d2abecb11ad40ba6042a39c95a

HTTP Headers

GET /tags/3.1.15/wrapper.min.js?bust=1504074204 HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/
AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: zzxbO0wnO4Rq0zQ66jA/7z6PyD4t2BEDn80KqHVAYWl18qLNUHAKnNyr0d1Tpm2n4m/lWjuP9VY=
x-amz-request-id: G9VFZ2XDV45W1HD4
last-modified: Mon, 22 Apr 2024 19:56:58 GMT
etag: "99655c629cb3a2a1a961e5c5a18492ad"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/3.1.15/wrapper.min.js
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 131069
x-served-by: cache-iad-kjyo7100079-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 5040
x-timer: S1713947689.480681,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 54736
X-Firefox-Spdy: h2

fonts.gstatic.com/s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2

216.58.207.227

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19196, version 1.0
Size
19 kB (19196 bytes)
Hash
d7287cfd5dfec2655d89b20d0bfb2205
91d8cf08c3873e87c1d62284ff0c8aeba1f6f565
f78bb4fead90ea6966383155118b67afbc0bdb0f870f4918944de11227d583e7

HTTP Headers

GET /s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:59:57 GMT
expires: Fri, 18 Apr 2025 02:59:57 GMT
cache-control: public, max-age=31536000
age: 538492
last-modified: Thu, 24 Aug 2023 20:58:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Size
31 kB (31052 bytes)
Hash
5c4f357d4926fc197d43abc63b7fca8c
686af7000d038d7479ed36b48a8ebb0ea9b98aea
1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:25:17 GMT
expires: Wed, 23 Apr 2025 08:25:17 GMT
cache-control: public, max-age=31536000
age: 86972
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js

151.101.193.181

200 OK

11 kB

URL GET HTTP/2
scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (37641), with no line terminators
Size
11 kB (10755 bytes)
Hash
c573e57126063be3ca04b9d8399d6c0d
32878cbeaa5352d2595a2fc57cd11cec2d06decf
7f7ec3eb5d4b91fd715acd94d0df382855d4e6aea636c41c65804957ec7c839e

HTTP Headers

GET /tags/1011/d0b73a12f7f19501fbbd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=U3V6Yb/llQvjnYE1jOkzRLlrhaPJvKh8FwajBRBO+JNq9TLn+5tmpJ6H0L3mXWe4CWG1BER58F/S+D4yNq1cXLxZmVYMixrSdchJLLdzsGK7vU4G2Kbj5OY9NX7R; Expires=Wed, 27 Dec 2023 05:44:45 GMT; Path=/
AWSALBCORS=U3V6Yb/llQvjnYE1jOkzRLlrhaPJvKh8FwajBRBO+JNq9TLn+5tmpJ6H0L3mXWe4CWG1BER58F/S+D4yNq1cXLxZmVYMixrSdchJLLdzsGK7vU4G2Kbj5OY9NX7R; Expires=Wed, 27 Dec 2023 05:44:45 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: p+LsJAvR1LrB/SAvEyvsDf/27iwmifQKByUHf4ST/i7JvipDkQL9A2TmHv5NoVsFBA3JRiqVE3w=
x-amz-request-id: 8AVDJXZZWD21KJSF
last-modified: Wed, 20 Dec 2023 05:40:39 GMT
etag: "c573e57126063be3ca04b9d8399d6c0d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/1011/d0b73a12f7f19501fbbd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 9059037
x-served-by: cache-iad-kcgs7200123-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 12, 7685
x-timer: S1713947690.579173,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 10755
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js

151.101.193.181

200 OK

6.8 kB

URL GET HTTP/2
scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (22976), with no line terminators
Size
6.8 kB (6811 bytes)
Hash
62419b721381bec1d9e2e4fcbc9f4754
f8ba6d52cdb91a52c5a28b34886986914a5f46a5
ee390366f52cb58359c2e36e947f3b133c7876aafdc578f66f92ad8b4d3ae741

HTTP Headers

GET /tags/gdpr/a114d0d9dab54adfc1d4.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=jClgZYBawmqdlrt8TfeNB+pcA1VIVsjyln0Kq4wp/apPoaY3VDP+6Aa3sViQ6019YBcU6FszaLV+kikZKvI+Ozavc4gWOMgdFmUO8HERNF8c2fneHpeGgiEQnYTk; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/
AWSALBCORS=jClgZYBawmqdlrt8TfeNB+pcA1VIVsjyln0Kq4wp/apPoaY3VDP+6Aa3sViQ6019YBcU6FszaLV+kikZKvI+Ozavc4gWOMgdFmUO8HERNF8c2fneHpeGgiEQnYTk; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: TwTIxfYJ9kgtiG5rTdUt+OeL73US5F7VFgXnl3Af/CJGqK/pXwY58c7xTcN7wGxFlWX9Q0IqJRc=
x-amz-request-id: Z9R6V3P3JJ4EBFYK
last-modified: Fri, 16 Feb 2024 16:27:41 GMT
etag: "62419b721381bec1d9e2e4fcbc9f4754"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdpr/a114d0d9dab54adfc1d4.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 5368020
x-served-by: cache-iad-kjyo7100050-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 7650
x-timer: S1713947690.579731,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6811
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js

151.101.193.181

200 OK

12 kB

URL GET HTTP/2
scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (60835), with no line terminators
Size
12 kB (12001 bytes)
Hash
3ac36b93e230c09abea8266587e3313b
ca2c6609b8bd1711d55dc94b5a98987e68545224
e7dc2d96e7b17036114e965bc4fd20227f0285f0e0a7530015fb57e6ee3a959c

HTTP Headers

GET /tags/6381/7b1b5bc2bf50b7f1fd3d.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=jnrw9Wa/Y3/Fja/PiGA/Hlswij+TOA+2j5h5OWyndPoFZfroVtIIK33+pVE8q6hdeWgGSY3uTVD4XNfamTaHTWASRg9W9u1g1CINCo6QCrJvkJTT1LcBfmzbYSfJ; Expires=Thu, 26 Oct 2023 19:08:38 GMT; Path=/
AWSALBCORS=jnrw9Wa/Y3/Fja/PiGA/Hlswij+TOA+2j5h5OWyndPoFZfroVtIIK33+pVE8q6hdeWgGSY3uTVD4XNfamTaHTWASRg9W9u1g1CINCo6QCrJvkJTT1LcBfmzbYSfJ; Expires=Thu, 26 Oct 2023 19:08:38 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: d3eIm046h9H0BOjUXI8ZGgHFoe1cVeh3ns5Egb/h8UjPNKZ8B84qSo/opAGXhxMkC4oFBTGu3+g=
x-amz-request-id: HVWF7YT12MWCGFWQ
last-modified: Tue, 17 Oct 2023 20:02:59 GMT
etag: "3ac36b93e230c09abea8266587e3313b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/6381/7b1b5bc2bf50b7f1fd3d.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 14598076
x-served-by: cache-iad-kiad7000131-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 21, 7535
x-timer: S1713947690.585478,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 12001
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js

151.101.193.181

200 OK

3.1 kB

URL GET HTTP/2
scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (8747), with no line terminators
Size
3.1 kB (3073 bytes)
Hash
1e854cdc5f47eb5c60a0329d023edf27
9fed1deaf69fa1dd65a5d8f52abb6529f956fabe
fb8218a504f901abd6e5240c1c634018485743c80901a9af5e17a5d3fe39df65

HTTP Headers

GET /tags/gpp/a5a52b2a9ac68755afed.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=FVREilnhnjpuTnOJM8EyTp+r4fzdEjCnFrsFBKvtDFCyqsg7f5ej7nRCNJwgsaQjvx5Bj/RU7z/dIe8POBe9SrI+LphoGaT3WyEwV4w1TrBas/+H1K+xqoNCOUqM; Expires=Wed, 27 Mar 2024 20:16:15 GMT; Path=/
AWSALBCORS=FVREilnhnjpuTnOJM8EyTp+r4fzdEjCnFrsFBKvtDFCyqsg7f5ej7nRCNJwgsaQjvx5Bj/RU7z/dIe8POBe9SrI+LphoGaT3WyEwV4w1TrBas/+H1K+xqoNCOUqM; Expires=Wed, 27 Mar 2024 20:16:15 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: LQHrrTB1D/1w6P08vt2hSGkR5UbTVEH1PMh/j7JylRpsYXPPjYsKXDriaSi7iTuhhsQfagkoDvM=
x-amz-request-id: XX149TVG8285VJ5E
last-modified: Wed, 20 Mar 2024 20:13:11 GMT
etag: "1e854cdc5f47eb5c60a0329d023edf27"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gpp/a5a52b2a9ac68755afed.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1370355
x-served-by: cache-iad-kiad7000035-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 7501
x-timer: S1713947690.589246,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 3073
X-Firefox-Spdy: h2

keywords.mediavine.com/keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY

151.101.193.181

400 Bad Request

0 B

URL GET HTTP/2
keywords.mediavine.com/keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY HTTP/1.1
Host: keywords.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 400 Bad Request
x-powered-by: Express
access-control-allow-credentials: true
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 24 Apr 2024 08:34:49 GMT
x-served-by: cache-iad-kiad7000093-IAD, cache-hel1410027-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713947689.486631,VS0,VE120
vary: Origin
content-length: 0
X-Firefox-Spdy: h2

scripts.mediavine.com/cmp/v3/vendor-list.json

151.101.193.181

200 OK

23 kB

URL GET HTTP/2
scripts.mediavine.com/cmp/v3/vendor-list.json
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JSON text data
Size
23 kB (23255 bytes)
Hash
ebd0784f7d222652f17bf2e675cc777f
1c2f8a396db299a96201bafcc7dbd32fba323a48
09817224c57598f6735b2f9f3f07358762a9a37f4881aa00b0610f14c3d13f69

HTTP Headers

GET /cmp/v3/vendor-list.json HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
set-cookie: AWSALB=2S4/ctYMi5b3cb8zUp4MwbRQDOg7vAxY3gw/6dG9yhnKRxvpboiD4sb0ikYybJju+6I+N0/7DA5N7fZcY7XrhVfHtjOT1ENLmlX5D5Ju9toPGvdudeWwrsf1K1xd; Expires=Fri, 26 Apr 2024 21:31:20 GMT; Path=/
AWSALBCORS=2S4/ctYMi5b3cb8zUp4MwbRQDOg7vAxY3gw/6dG9yhnKRxvpboiD4sb0ikYybJju+6I+N0/7DA5N7fZcY7XrhVfHtjOT1ENLmlX5D5Ju9toPGvdudeWwrsf1K1xd; Expires=Fri, 26 Apr 2024 21:31:20 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: max-age=604800
etag: W/"2d5e4-HC+KOW2ymaliAbr8x9vTL7oyOkg"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 385409
x-served-by: cache-iad-kiad7000172-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 27972
x-timer: S1713947690.691278,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 23255
X-Firefox-Spdy: h2

44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png

44.193.244.104

200 OK

18 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
18 kB (17894 bytes)
Hash
49145d4b8194376b092651dd49337069
9aba6ebc43f9a11bc3a03d83ebce0e6734214f01
b6a649822a49bc70b48b36ac658fcd04861098f1721d7bc9f862533a433465f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO; _ga_66P0QLDEZG=GS1.1.1713947689.1.0.1713947689.0.0.0; _ga=GA1.1.3062679.1713947689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 03 Sep 2021 16:11:01 GMT
ETag: "45e6-5cb198bace560"
Accept-Ranges: bytes
Content-Length: 17894
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png

44.193.244.104

200 OK

2.2 kB

URL GET HTTP/1.1
44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png
IP
44.193.244.104:443
ASN
#14618 AMAZON-AES

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerLet's Encrypt
Subjectwww.floridahipster.com
Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B
ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2181 bytes)
Hash
944242f02a4e617e42ba0a3e02cb75f0
f4a19a7e297cd502b36fdea27f8afcdbce5b587e
aa2d944e8aab2f781e8b964e725966f9e78431f020504e714b99805f6f588f8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO; _ga_66P0QLDEZG=GS1.1.1713947689.1.0.1713947689.0.0.0; _ga=GA1.1.3062679.1713947689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 03 Sep 2021 16:11:01 GMT
ETag: "885-5cb198bae5c61"
Accept-Ranges: bytes
Content-Length: 2181
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js

151.101.193.181

200 OK

22 kB

URL GET HTTP/2
scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (57883)
Size
22 kB (21830 bytes)
Hash
c201da8aace1c33690f3f1dbd7c580f5
481cf2af5c8874ab6214589a8cfadc59617baa41
ba19beacf91a3a7cb6e7f0238a634d78f77538a1678b929f3dc4e6fc538fd8f6

HTTP Headers

GET /tags/2788/328caa2b0f7866645485.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=1mUJvNeGW2brtWebUZp5m41h8sLZRPVUshUFQh0PLKyNmlFo8bNlg80nVJJmGSuKGJ+ckkgzSxuXASWr1TnVrZlWDwoDT9HI9Szr8L/udqNns4kp0xMhCeliKTo7; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/
AWSALBCORS=1mUJvNeGW2brtWebUZp5m41h8sLZRPVUshUFQh0PLKyNmlFo8bNlg80nVJJmGSuKGJ+ckkgzSxuXASWr1TnVrZlWDwoDT9HI9Szr8L/udqNns4kp0xMhCeliKTo7; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: RzCVAlDOPws9AI60FyoTBekx/ybNl+eoTynsaBIY35MeCDmxNwMCKX0Uz+Cd5Wo3XxViwM6Wbxc=
x-amz-request-id: Z9R72ZW5E02K6W34
last-modified: Fri, 16 Feb 2024 16:27:41 GMT
etag: "c201da8aace1c33690f3f1dbd7c580f5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/2788/328caa2b0f7866645485.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 3708217
x-served-by: cache-iad-kjyo7100023-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 21, 7110
x-timer: S1713947690.768728,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 21830
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js

151.101.193.181

200 OK

4.7 kB

URL GET HTTP/2
scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (9882)
Size
4.7 kB (4741 bytes)
Hash
3e96db4170cf4e432566afd3255a4699
92f726d9cd5f0ae0c9405a5703fae76f4081625a
b900a8f2e2808e9e102147f9660d9d84163bad7ef101235bb4e58513799fbbb8

HTTP Headers

GET /tags/gdprModal/ccee9b159360ebdc4eef.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=9xDuPHDUjq6SATHHzARKAJhBxYEwOV9bKRm3gCrnLMCLal0gkrW2AXOvy3cwq1eyv3Hv9isW+cIbgdBLjDKP8bQmMZ6gyODlFk1sTVeeU7pRPsrhVLGMXWSATb8Y; Expires=Thu, 11 Apr 2024 14:24:45 GMT; Path=/
AWSALBCORS=9xDuPHDUjq6SATHHzARKAJhBxYEwOV9bKRm3gCrnLMCLal0gkrW2AXOvy3cwq1eyv3Hv9isW+cIbgdBLjDKP8bQmMZ6gyODlFk1sTVeeU7pRPsrhVLGMXWSATb8Y; Expires=Thu, 11 Apr 2024 14:24:45 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: 3PcUHxcqsyu6QdLfHsyigmyxuvjNOG7wxiVVxGG8wLNSxGBcwjIkW6Hult63BQWYu7pKSsrgGaI=
x-amz-request-id: 8WXPBHPYAJADDY6T
last-modified: Wed, 03 Apr 2024 19:00:23 GMT
etag: "3e96db4170cf4e432566afd3255a4699"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModal/ccee9b159360ebdc4eef.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1707005
x-served-by: cache-iad-kiad7000175-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 7054
x-timer: S1713947690.771532,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 4741
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js

151.101.193.181

200 OK

2.5 kB

URL GET HTTP/2
scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (1987)
Size
2.5 kB (2458 bytes)
Hash
9e3039b66c897ccde62e44aedfb272d7
fb912de8566b585d3ffc11df8de3378a5299d454
fb41aae2affebd3ba9e7a5c8afcccb63309ea3141bc9e734e8c78cbc42bae57f

HTTP Headers

GET /tags/gdprModalLayer1/afde2a95885d9784fc31.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=Z8kXdVTMPbHjiXJ+JmSyRoVw7fIZcL7P88AGj1ilg5IjsliBvIc6S4vhT/emm5XCahXZ23BFmyLzyYh/0IpeeA35tR/WX4DRYqcv4JDH/dVLZjggfBTJdLWHrAR/; Expires=Mon, 27 Nov 2023 23:01:05 GMT; Path=/
AWSALBCORS=Z8kXdVTMPbHjiXJ+JmSyRoVw7fIZcL7P88AGj1ilg5IjsliBvIc6S4vhT/emm5XCahXZ23BFmyLzyYh/0IpeeA35tR/WX4DRYqcv4JDH/dVLZjggfBTJdLWHrAR/; Expires=Mon, 27 Nov 2023 23:01:05 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: Xk4w2uMX/jhD63hPqW5a913yMUvVpJrM3nx+KOXnN8lzQdMk+DDRTVoKzr3PGTeB5PGVjN//hLI=
x-amz-request-id: 8VQPMAZ5NBCJZBCM
last-modified: Mon, 20 Nov 2023 22:59:07 GMT
etag: "9e3039b66c897ccde62e44aedfb272d7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLayer1/afde2a95885d9784fc31.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 12680339
x-served-by: cache-iad-kiad7000148-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 26, 5637
x-timer: S1713947690.832621,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 2458
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js

151.101.193.181

200 OK

150 B

URL GET HTTP/2
scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
150 B (150 bytes)
Hash
b24f335a88b4c202634b236641c257f0
f7f290d984c551cd6e2a96287b0b5ca2af87aecf
fec422cd3d21f8a35e3f7ddc97ca4134226be248e3d308f310771eddbc4b111b

HTTP Headers

GET /tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=nKPgVbep5QvBPREmWSRQBC/1eU4LzwG5e4HZmc8/FS4KMU5yZufxwFMhbKejT+trG42cSADyS8xdCsQFNqiLqtKDHpRvwX+0+3UGXJ1gY7cekgzM5qUSYTrZrLn4; Expires=Mon, 08 May 2023 13:39:32 GMT; Path=/
AWSALBCORS=nKPgVbep5QvBPREmWSRQBC/1eU4LzwG5e4HZmc8/FS4KMU5yZufxwFMhbKejT+trG42cSADyS8xdCsQFNqiLqtKDHpRvwX+0+3UGXJ1gY7cekgzM5qUSYTrZrLn4; Expires=Mon, 08 May 2023 13:39:32 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: prA11Kxgm2mzZDdXhFRILs3wYLX7OvJBKMrKN9p96CgsmdbCP/71YvOLWTud/I7Y4hYaG+9sU4Q=
x-amz-request-id: BRWK696DCHB645JT
last-modified: Thu, 27 Apr 2023 20:42:01 GMT
etag: "b24f335a88b4c202634b236641c257f0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 30323399
x-served-by: cache-iad-kcgs7200105-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 19, 6119
x-timer: S1713947690.871427,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 150
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js

151.101.193.181

200 OK

630 B

URL GET HTTP/2
scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1030), with no line terminators
Size
630 B (630 bytes)
Hash
004e9b69c50c6f1631e930ebffb51e6e
6b8816ce02f4a2d30bc7f49e78c70d3be53ba126
a3cfbde18aa8afdd228074ce7a6014aec152e90a412a2ec4a7e3d621c5041560

HTTP Headers

GET /tags/gdprModalLocale2/27432bc76ee0f6762441.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=J8blnP6yazVNpNHrxAhD7Ft7xKqiQgsIRz2ALDuMi1y78yUUMfEjAkvxfK7PAq/1FaE6aiBuzvZb9ScjKnFsU8RfSTD7UQ4XdBfkKDBeX7wfHSdfrmwX9p5Rzx/Q; Expires=Thu, 14 Mar 2024 21:19:07 GMT; Path=/
AWSALBCORS=J8blnP6yazVNpNHrxAhD7Ft7xKqiQgsIRz2ALDuMi1y78yUUMfEjAkvxfK7PAq/1FaE6aiBuzvZb9ScjKnFsU8RfSTD7UQ4XdBfkKDBeX7wfHSdfrmwX9p5Rzx/Q; Expires=Thu, 14 Mar 2024 21:19:07 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: UG47KUAoPh0uE1OWkIxy4vKiky9cRo51ddLWlgU9CT5JBZbYlvu03u2p9dDpH+XmTj78OYxEcE4=
x-amz-request-id: BPHT2Z0GXMBSNPEX
last-modified: Thu, 07 Mar 2024 20:06:52 GMT
etag: "004e9b69c50c6f1631e930ebffb51e6e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLocale2/27432bc76ee0f6762441.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1509342
x-served-by: cache-iad-kjyo7100089-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 15, 5509
x-timer: S1713947690.882499,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 630
X-Firefox-Spdy: h2

faves.grow.me/main.js

151.101.2.49

200 OK

6.5 kB

URL GET HTTP/2
faves.grow.me/main.js
IP
151.101.2.49:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.grow.me
FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D
ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT

File type
JavaScript source, ASCII text, with very long lines (17275)
Size
6.5 kB (6519 bytes)
Hash
efceb41411d569c718532b52d561533d
8d0e314552a280cdf40ba4bb09b25373e435c32f
67ff6d6b37c4776675ea622ee7b58571fdb328b816b2308bc6f8b9ad790f4d40

HTTP Headers

GET /main.js HTTP/1.1
Host: faves.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: yBROnZjFy1wJCi61/u1tyGReWE9qmkyCRT+lnoHpnV7HcubSrbkXeUZOVQBlz6vcbKS3dbvaJDI=
x-amz-request-id: S4DKZBZ2G9C28SVR
last-modified: Tue, 23 Apr 2024 16:30:09 GMT
etag: "efceb41411d569c718532b52d561533d"
x-amz-server-side-encryption: AES256
cache-control: no-cache
x-amz-meta-surrogate-control: max-age=604800
x-amz-meta-surrogate-key: purge-on-widget-deploy
content-type: text/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
via: 1.1 varnish
age: 57851
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 1161
x-timer: S1713947690.991290,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6519
X-Firefox-Spdy: h2

api.grow.me/versions

151.101.130.49

200 OK

137 B

URL GET HTTP/2
api.grow.me/versions
IP
151.101.130.49:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.grow.me
FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D
ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT

File type
JSON text data
Size
137 B (137 bytes)
Hash
254a5d347ca2aa64d5cff050d72b8849
cc08bef870b9d6406b725739b2ff1f1a7c3b21b0
279831d4cd1faee44771fda24b9504abd5d2e48efe6f52b73b612292f34e1d1e

HTTP Headers

GET /versions HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache
etag: W/"88-zAi++HC51kBrclc5sv8fGnw7IbA"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
age: 40842
x-served-by: cache-iad-kjyo7100145-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 152, 1282
x-timer: S1713947690.159193,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 137
X-Firefox-Spdy: h2

api.grow.me/location-privacy-info

151.101.130.49

200 OK

90 B

URL GET HTTP/2
api.grow.me/location-privacy-info
IP
151.101.130.49:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.grow.me
FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D
ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
53c7b562c95ecac7872112758581b89c
863d0e17702016e7b599229dee7ea80e30eb5785
679be1b0b91a855a9837c569ed748a2e892e9dfe0e749908793802ac7d338ed8

HTTP Headers

GET /location-privacy-info HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
x-client-geo-region: 03
etag: W/"48-hj0OF3AgFue1mSKd7n6oDjDrV4U"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
age: 6246
x-served-by: cache-iad-kiad7000169-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1713947690.161730,VS0,VE0
vary: client-geo-country, Accept-Encoding
strict-transport-security: max-age=300
content-length: 90
X-Firefox-Spdy: h2

api.grow.me/sites/376efdcf-6526-46f1-b89c-26245814a35c/config

151.101.130.49

200 OK

1.4 kB

URL GET HTTP/2
api.grow.me/sites/376efdcf-6526-46f1-b89c-26245814a35c/config
IP
151.101.130.49:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.grow.me
FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D
ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT

File type
JSON text data
Size
1.4 kB (1445 bytes)
Hash
9dca7ae6999da26f5e9f17c214a3ee17
9a38acabe6b521d3fc01d15e27291da2cd666afc
0f159fee7c026a787b75da76b7b66c866cd2d222952fbefe55a0032ab103fa20

HTTP Headers

GET /sites/376efdcf-6526-46f1-b89c-26245814a35c/config HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"d29-mjisq+a1IdP8AdFeJykdos1mavw"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 7
date: Wed, 24 Apr 2024 08:34:50 GMT
x-served-by: cache-iad-kcgs7200023-IAD, cache-hel1410027-HEL
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1713947690.120272,VS0,VE114
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 1445
X-Firefox-Spdy: h2

faves.grow.me/app.7.243.3.js

151.101.2.49

200 OK

50 kB

URL GET HTTP/2
faves.grow.me/app.7.243.3.js
IP
151.101.2.49:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.grow.me
FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D
ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
50 kB (49556 bytes)
Hash
806ff2a3dffa17d678b00d9c64380584
4cff692fba637fb8fe69c00031fb302d8c3bb1d5
140cfe0bfba46c1d00ac622de6596454134b5099d6497f81e9454a6c7060433b

HTTP Headers

GET /app.7.243.3.js HTTP/1.1
Host: faves.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-amz-id-2: dzfpN+Ou/hz+RMCvHFWZrnS8og36NxhW0/J3siWqkmTKtakMZ1XJsZfG7nPS/yIdH/ra0iXyEbk=
x-amz-request-id: CRR9HCTSCEN7E7E0
last-modified: Tue, 23 Apr 2024 16:30:27 GMT
etag: "806ff2a3dffa17d678b00d9c64380584"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-type: text/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
via: 1.1 varnish
age: 40884
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 788
x-timer: S1713947690.269585,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 49556
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js

151.101.193.181

200 OK

7.7 kB

URL GET HTTP/2
scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (19788), with no line terminators
Size
7.7 kB (7680 bytes)
Hash
57e428479a67cf8e16597df4433fd511
50a9393c41578d4dfe60bc0f7b2fb79a8370021d
6e54381d04dd55bab23a149ac6b1f67a766c76f69d6c90855d1a9967e80a689e

HTTP Headers

GET /tags/6975/660cbf5be98a42152bb8.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=w0/Cbw2EJ6nBf513YfwQ0g1IIDqLQ9TgPTtWW+uFHawjAE4+u7G20lLn8HY+2l0U8XEl1SeCUsncNS/K876X6zoKNiqBPF4ufKeMqOibkAkDjC/pPsiqQTESK5mw; Expires=Fri, 26 Apr 2024 20:31:17 GMT; Path=/
AWSALBCORS=w0/Cbw2EJ6nBf513YfwQ0g1IIDqLQ9TgPTtWW+uFHawjAE4+u7G20lLn8HY+2l0U8XEl1SeCUsncNS/K876X6zoKNiqBPF4ufKeMqOibkAkDjC/pPsiqQTESK5mw; Expires=Fri, 26 Apr 2024 20:31:17 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: Ad8rocy1u1WSFQkoDcied3Xa7O0eD0Kwq0nm24/TuULheTNSygOVAiNXJor76BJ1QJPzg47Km28=
x-amz-request-id: V2X5ZS1H0WCQGDPG
last-modified: Fri, 19 Apr 2024 19:19:10 GMT
etag: "57e428479a67cf8e16597df4433fd511"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/6975/660cbf5be98a42152bb8.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 389018
x-served-by: cache-iad-kjyo7100162-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 7, 6519
x-timer: S1713947695.945593,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 7680
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js

151.101.193.181

200 OK

13 kB

URL GET HTTP/2
scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (41941), with no line terminators
Size
13 kB (13349 bytes)
Hash
e76eedc914521a11aa4e68c36ff66df8
d50c0bd18278ee05cc678fc2937ad20d05d8c3f7
5adfd4a68b65a9bd3f8fff31737e574a50597d5adb241f15a2ba1377364b8519

HTTP Headers

GET /tags/4420/bc05153bc2e6fb5e37bb.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=vinOVSjme0oYhuVPBviLK5akQqr3zEEN4VxBZqXAjsUw+Ix/yAsn+gWT9isHZfAFgEpgVyppGg/zb5ZEPPTYAVjj/3NzyTs4kqiiqgDWDz8pgY7SXhDqFZRAWD2i; Expires=Mon, 22 Apr 2024 21:19:57 GMT; Path=/
AWSALBCORS=vinOVSjme0oYhuVPBviLK5akQqr3zEEN4VxBZqXAjsUw+Ix/yAsn+gWT9isHZfAFgEpgVyppGg/zb5ZEPPTYAVjj/3NzyTs4kqiiqgDWDz8pgY7SXhDqFZRAWD2i; Expires=Mon, 22 Apr 2024 21:19:57 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: UmMCpw6M8OnAZ1v/K5QGE0SVZiG6BwHLUH7iwcoJS0fesVyxWfP40l49I94krrFR4/V8LCmjBpk=
x-amz-request-id: VJVN7R6JJVJS9G7Z
last-modified: Mon, 15 Apr 2024 21:02:31 GMT
etag: "e76eedc914521a11aa4e68c36ff66df8"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/4420/bc05153bc2e6fb5e37bb.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 731698
x-served-by: cache-iad-kiad7000037-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 18, 6538
x-timer: S1713947695.948782,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 13349
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js

151.101.193.181

200 OK

6.9 kB

URL GET HTTP/2
scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (19548), with no line terminators
Size
6.9 kB (6855 bytes)
Hash
51aaac94d1b60cba6fdb4dfc68b9aa14
38da8cbbe250ae19b20ce972db03f72df6cecd3f
7db6fec57509168c724f10200c01ee06dfd84b7096857411b231e006f1acff4f

HTTP Headers

GET /tags/4508/57c70d08153f3e7b78bd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=9LkewOiMNckdXmuiqeq+E9T/kIv0C6F+UOGCIjr89fOIcePxZAoXQqq2E4cYXA6jDC9yxtFLFdEkUIPGqOjUwKXx6ILcV0YVzHdIIXz+q1WTVeQqP+Xlp8NGuVMD; Expires=Mon, 22 Apr 2024 21:34:53 GMT; Path=/
AWSALBCORS=9LkewOiMNckdXmuiqeq+E9T/kIv0C6F+UOGCIjr89fOIcePxZAoXQqq2E4cYXA6jDC9yxtFLFdEkUIPGqOjUwKXx6ILcV0YVzHdIIXz+q1WTVeQqP+Xlp8NGuVMD; Expires=Mon, 22 Apr 2024 21:34:53 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: jWboTO0JdXa3g059ABBjtcuf6Cf1ZsEtCj9cRD6ZZq+wIQ9gejQlSame4SFV+TfSHaVA+0JJxuY=
x-amz-request-id: QGK8KY9FDX7PPVQZ
last-modified: Mon, 15 Apr 2024 21:27:53 GMT
etag: "51aaac94d1b60cba6fdb4dfc68b9aa14"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/4508/57c70d08153f3e7b78bd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 730801
x-served-by: cache-iad-kjyo7100120-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 6234
x-timer: S1713947695.953302,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6855
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js

151.101.193.181

200 OK

6.1 kB

URL GET HTTP/2
scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (14672), with no line terminators
Size
6.1 kB (6137 bytes)
Hash
8ef75c4f102f97d3707604854b622af7
5c099a44a813877603bec2930d9fa12c7dc842cb
54d73ad2c6c7f353bbb28d257f8297ebc48560c48e477210465404159e710f4e

HTTP Headers

GET /tags/2726/92d464ebb831c67416d8.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=TrocdJCJ1pe+vSPV8ZxF6Py5CqIvoUVl95xA2WjkN+SRY2/21bL/5KxGLZJmPIPtQg0A7GDAWH0iI3IqS1BAjBC6JDUa6+Ijb2h5TbXgeHhWl87oNvR39c1yherF; Expires=Wed, 03 Apr 2024 20:14:26 GMT; Path=/
AWSALBCORS=TrocdJCJ1pe+vSPV8ZxF6Py5CqIvoUVl95xA2WjkN+SRY2/21bL/5KxGLZJmPIPtQg0A7GDAWH0iI3IqS1BAjBC6JDUa6+Ijb2h5TbXgeHhWl87oNvR39c1yherF; Expires=Wed, 03 Apr 2024 20:14:26 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: wmBHFz6MG5Oh2U4oTBBcxBi6nFRL5YGIMsDVb5AXffogMlRTsqgjxf9Mof8EYecIpNyI+SwAoPY=
x-amz-request-id: SFDZ8RQQDEPNVNQF
last-modified: Wed, 27 Mar 2024 20:08:57 GMT
etag: "8ef75c4f102f97d3707604854b622af7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/2726/92d464ebb831c67416d8.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 2377228
x-served-by: cache-iad-kcgs7200095-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 9, 6487
x-timer: S1713947695.957165,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6137
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js

151.101.193.181

200 OK

70 kB

URL GET HTTP/2
scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70283 bytes)
Hash
f39ca26279bce78ccfc6bd9a1963c72d
1a1b07d0145084a8b6ceb3003fa147fc27052bc5
531d1901c3b45913d86a421c6a9cb37025e4947fb7d3c7e1fdfb4868b06de3d8

HTTP Headers

GET /tags/afterScroll/1abceeaafd0f74e0eb30.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/
AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: /oceMg6Z0Niqw+hJ1N33Sa1s7YbUSgIjOX7TsDnDEIOse/3OjCpNNDTylHwhyyFpFc3NCBDNukw=
x-amz-request-id: G9V9R8V6VAF5FFZH
last-modified: Mon, 22 Apr 2024 19:58:00 GMT
etag: "f39ca26279bce78ccfc6bd9a1963c72d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/afterScroll/1abceeaafd0f74e0eb30.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 131074
x-served-by: cache-iad-kjyo7100156-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 5985
x-timer: S1713947695.960984,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 70283
X-Firefox-Spdy: h2

scripts.mediavine.com/creativeBlocks

151.101.193.181

200 OK

11 kB

URL GET HTTP/2
scripts.mediavine.com/creativeBlocks
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JSON text data
Size
11 kB (10659 bytes)
Hash
addb388c64f17193532f324fa6f4d8af
8a7214494c21df750bcf0d694974eaca00cbd99e
e714a9b591950d4c203d9499b730eaa750638bc244caef4ae033bb54c7df315f

HTTP Headers

GET /creativeBlocks HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=utf-8
set-cookie: AWSALB=nmn9B2FsUAruOxNmELGPa1jABWkihedfk7jhGFvZYkYy1OrfOrjOMPW9EoklcNqraHpLrOn8lRF5M/iOFABKf8flPtXSmGL/qaylYCcuDAGQbqLu8/8HKikqBpYy; Expires=Tue, 30 Apr 2024 18:14:46 GMT; Path=/
AWSALBCORS=nmn9B2FsUAruOxNmELGPa1jABWkihedfk7jhGFvZYkYy1OrfOrjOMPW9EoklcNqraHpLrOn8lRF5M/iOFABKf8flPtXSmGL/qaylYCcuDAGQbqLu8/8HKikqBpYy; Expires=Tue, 30 Apr 2024 18:14:46 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"96ee-inIUSUwh33ULzw1pSXTqygDL2Z4"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 51608
x-served-by: cache-iad-kjyo7100140-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 39, 4198
x-timer: S1713947695.033415,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 10659
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js

151.101.193.181

200 OK

103 kB

URL GET HTTP/2
scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (65454)
Size
103 kB (103124 bytes)
Hash
09c9f4aa29b9d997b31927d2075fe905
1fd3675295471d70e1e4563d9791409087ba84ed
5ca8db4c3fe23b2135f1c2885c4bd91804a12f36de08ded3fec95110dc5d709b

HTTP Headers

GET /tags/8129/6f9a60d1cadb27b38bb7.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=wbuKvcOniV4ZcfWYul7iTxVpeVPK8QrGbZ4nUsmF6mwS47uP0kpy0u6mc/Jfm8pTPx24eBt/NWrNFMiEEXeBfcm3io27PPzoiPIbMksjfGR1Emsnoon8ndmf0S3M; Expires=Mon, 22 Apr 2024 18:18:54 GMT; Path=/
AWSALBCORS=wbuKvcOniV4ZcfWYul7iTxVpeVPK8QrGbZ4nUsmF6mwS47uP0kpy0u6mc/Jfm8pTPx24eBt/NWrNFMiEEXeBfcm3io27PPzoiPIbMksjfGR1Emsnoon8ndmf0S3M; Expires=Mon, 22 Apr 2024 18:18:54 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: zq+vMFD0p1Oc/eh5cc/kRzm5V8NCqqqKd7L+n4N5TygrcBtO8L2HRC5RRBCyFiouRBbbuw6jHRk=
x-amz-request-id: X6G2KTX58MZF9CNS
last-modified: Mon, 15 Apr 2024 18:18:21 GMT
etag: "09c9f4aa29b9d997b31927d2075fe905"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/8129/6f9a60d1cadb27b38bb7.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 742561
x-served-by: cache-iad-kcgs7200179-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 6725
x-timer: S1713947695.035144,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 103124
X-Firefox-Spdy: h2

scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js

151.101.193.181

200 OK

5.1 kB

URL GET HTTP/2
scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JavaScript source, ASCII text, with very long lines (13265), with no line terminators
Size
5.1 kB (5082 bytes)
Hash
2ed4e4d44477a8f9a6ea4c990dd79d96
327825e486261ceb32519d02a8e79da9051d262d
f7f90b61f4dd55de7311ccc80ada5b8780413dbeffe882c97c71afe6b1cd4ac3

HTTP Headers

GET /tags/prebid/bd4b6908467a2163ab62.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=SWLkuPq+d+joqrR2PuDpBn8fRn39cEGnXoPSoZEGm/PDDFiZ+L0FxoVA6ZHcv4tgpaV/dp0O5fHGZoXO/a48y9JeXMPfVsR85Y163FGT5PRo05NOj2mWucQ7JRM0; Expires=Fri, 12 Apr 2024 21:08:44 GMT; Path=/
AWSALBCORS=SWLkuPq+d+joqrR2PuDpBn8fRn39cEGnXoPSoZEGm/PDDFiZ+L0FxoVA6ZHcv4tgpaV/dp0O5fHGZoXO/a48y9JeXMPfVsR85Y163FGT5PRo05NOj2mWucQ7JRM0; Expires=Fri, 12 Apr 2024 21:08:44 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: PXLLAM6LqrBk74ImT9xbXXs0QrgLDwDnTGy3eRkGE4hdpg8l37bWFO639UmjL9i0EHpwsEM9uGI=
x-amz-request-id: NKCASNYWC7G489GC
last-modified: Fri, 05 Apr 2024 20:57:29 GMT
etag: "2ed4e4d44477a8f9a6ea4c990dd79d96"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/prebid/bd4b6908467a2163ab62.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 1596371
x-served-by: cache-iad-kcgs7200164-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 8, 6411
x-timer: S1713947695.037288,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 5082
X-Firefox-Spdy: h2

scripts.mediavine.com/amazon/v1/adjustments?offering=mediavine

151.101.193.181

200 OK

13 kB

URL GET HTTP/2
scripts.mediavine.com/amazon/v1/adjustments?offering=mediavine
IP
151.101.193.181:443
ASN
#54113 FASTLY

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGlobalSign nv-sa
Subject*.mediavine.com
FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE
ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT

File type
JSON text data
Size
13 kB (12652 bytes)
Hash
f80222bddf7a037f4e06af18b4f95259
a6a4f8ca879bca7e012d3a0b1c928eb7f656af5e
3430f18239579411865e8e24cfd432df82f4c84afd1082b4a850832fbc156ccb

HTTP Headers

GET /amazon/v1/adjustments?offering=mediavine HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
set-cookie: AWSALB=6VNkLF80CH0xCx0mRS2eqw4l1xLSEoH427vG/a8gOhvevyt6uwWDGalVvSSKjx8MkF6JY1YuP586KAMrByYGdbcfiMnbPbLDqDEjL3sZe3ChX/35NS9EQ/NmmXH8; Expires=Fri, 26 Apr 2024 20:11:12 GMT; Path=/
AWSALBCORS=6VNkLF80CH0xCx0mRS2eqw4l1xLSEoH427vG/a8gOhvevyt6uwWDGalVvSSKjx8MkF6JY1YuP586KAMrByYGdbcfiMnbPbLDqDEjL3sZe3ChX/35NS9EQ/NmmXH8; Expires=Fri, 26 Apr 2024 20:11:12 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no cache
etag: W/"d60c-pqT4yoebyn4BLToLHJKOt/ZWr14"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 390222
x-served-by: cache-iad-kjyo7100126-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 405377, 2155
x-timer: S1713947695.156334,VS0,VE0
vary: offering=mediavine, Accept-Encoding
strict-transport-security: max-age=300
content-length: 12652
X-Firefox-Spdy: h2

exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c

52.28.186.253

200 OK

13 kB

URL GET HTTP/2
exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c
IP
52.28.186.253:443
ASN
#16509 AMAZON-02

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerAmazon
Subjectexchange.mediavine.com
Fingerprint9C:DF:A5:F2:2C:8B:56:1E:9F:1D:D6:9E:6E:3B:98:92:4F:01:E7:6D
ValidityTue, 06 Jun 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13067)
Size
13 kB (13137 bytes)
Hash
9315f8a8396756691a4c1e3c607e95df
b17f0580cbfe7fc9f2e8aa19f6faf675a2adbcf0
e0156fe12820a1e5f4d01fbe08c6d183020b69ca19ea75fbca1b5ed8b5845e21

HTTP Headers

GET /usersync.min.js?s2sVersion=s2s-ab-test2-c HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:34:49 GMT
content-type: application/javascript; charset=UTF-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, private
accept-ranges: bytes
last-modified: Mon, 22 Apr 2024 14:28:08 GMT
etag: W/"3351-18f0635047d"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0

142.250.74.170

200 OK

7.6 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (7777), with no line terminators
Size
7.6 kB (7610 bytes)
Hash
c64fb0361d8bbe13b45dc0539d5ef012
397a55d21013cae0368a2e7529bad48dfbd38093
8e397a8adfcee4d04ced8ae17250440d0142a807cdfb5756da5770c7a5fbdd2d

HTTP Headers

GET /css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 08:34:48 GMT
date: Wed, 24 Apr 2024 08:34:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML