| 44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY | 44.193.244.104 | | 0 B |
URL 44.193.244.104/','8Xxa2XQLv9',true,false,'OLp7WwSugqY IP44.193.244.104:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /','8Xxa2XQLv9',true,false,'OLp7WwSugqY HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 08:34:46 GMT
Server: Apache
X-Powered-By: PHP/7.4.15
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-UA-Compatible: IE=edge
Content-Security-Policy: block-all-mixed-content
X-Redirect-By: WordPress
Set-Cookie: aawp-country=NO; expires=Fri, 24-May-2024 08:34:46 GMT; Max-Age=2592000; path=/
X-Frame-Options: SAMEORIGIN
Location: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cache-Control: no-cache, must-revalidate, max-age=0, s-maxage=10
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| 44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY | 44.193.244.104 | 404 Not Found | 81 kB |
URL User Request GET HTTP/1.144.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP44.193.244.104:443
CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeHTML document, ASCII text, with very long lines (13878), with CRLF, LF line terminators Hash5d4e72bfe59aaf569cc998a1a747f9a4 c7538efeb3f9de3484d75123bc54d9c3cf1c6b60 db8613a0b7bb13954278b17dc7253d2e1fcb6fe3798155dd3bf5e65f0992f7fb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /,8Xxa2XQLv9,true,false,OLp7WwSugqY HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: aawp-country=NO
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 08:34:48 GMT
Server: Apache
X-Powered-By: PHP/7.4.15
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-UA-Compatible: IE=edge
Content-Security-Policy: block-all-mixed-content
Link: <https://44.193.244.104/wp-json/>; rel="https://api.w.org/"
Server-Timing: wp-before-template;dur=55.42
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache, must-revalidate, max-age=0, s-maxage=10
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| 44.193.244.104/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2 | 44.193.244.104 | 200 OK | 8.7 kB |
URL GET HTTP/1.144.193.244.104/wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash7e183681660ca3e58e928811b0252a44 41bbb8b875205deb5cce80dda50f8c190ccb743d b5571ce8d84e854051abddd7bdfcfa590c72fa0d4669abc05803e62bfb014bbc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/social-pug/assets/dist/style-frontend-pro.css?ver=1.33.2 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:48 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 15 Apr 2024 19:38:54 GMT
ETag: "19bf4-61627c59188c3-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8736
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG | 142.250.74.168 | 200 OK | 82 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-66P0QLDEZG IP142.250.74.168:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2165) Hashbed9f9fd9e37f5f7033c67759079db58 34452948be75d026c318a9591dab0756a2fdf1c7 865f565ce0d71556d5d48f1900d86c68e19d972d171ba6fc45b17779dd939d86
GET /gtag/js?id=G-66P0QLDEZG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 08:34:48 GMT
expires: Wed, 24 Apr 2024 08:34:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81988
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0 | 44.193.244.104 | 200 OK | 1.4 kB |
URL GET HTTP/1.144.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (5901), with no line terminators Hash620bdc2e262641f4cee95c34de331140 588be9ecfa8899889f324f17b4fe3f0828acd478 ff95720758215ef9f328fda9e5b00e7c64421bcc8c0439e38201492e0fa78616
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/gp-premium/menu-plus/functions/css/offside.min.css?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "170d-60ead68e3f3bf-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1364
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2 | 151.101.193.181 | 200 OK | 32 kB |
URL GET HTTP/2scripts.mediavine.com/tags/florida-hipster.js?ver=6.5.2 IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeUnicode text, UTF-8 text, with very long lines (65302) Hashf6855caa06f18307f0d1a88b4739b830 c24bbc7bdd0a44b19b969fa2a0e37f0067021102 ef7f4c87abb13386c748b6c51b84ed34b99d59ebe4722fb52ecfa146840cbf50
GET /tags/florida-hipster.js?ver=6.5.2 HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU; Expires=Wed, 01 May 2024 08:34:49 GMT; Path=/
AWSALBCORS=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU; Expires=Wed, 01 May 2024 08:34:49 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"28e13-wku8e90KRLGblp+ioON/AGcCEQI"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Wed, 24 Apr 2024 08:34:49 GMT
x-served-by: cache-iad-kjyo7100071-IAD, cache-hel1410027-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713947689.018021,VS0,VE148
vary: gdpr=1, country=EU, Accept-Encoding
strict-transport-security: max-age=300
content-length: 31974
X-Firefox-Spdy: h2
|
|
| 44.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0 | 44.193.244.104 | 200 OK | 2.0 kB |
URL GET HTTP/1.144.193.244.104/wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeJavaScript source, ASCII text, with very long lines (6795), with no line terminators Hash2c8d926d887909904dab4316508bacc6 455db3d80b61fefab3797bacd140f95229fa7518 50fe1014e82dd9acea2f5b26061c8f135cb11ea0aa5d5ad5985e6b265b7f50a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/gp-premium/menu-plus/functions/js/offside.min.js?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "1a8b-60ead68e3f3bf-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2033
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 44.193.244.104/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0 | 44.193.244.104 | 200 OK | 630 B |
URL GET HTTP/1.144.193.244.104/wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (3356), with no line terminators Hashf9b0b1948dca272b16005165ab098f29 6e6ae044e8392eb26831476b5340808d076ff76f f67e99114807ecac9bba6fbb9f81eea467c50c9f03b59974fe696bdfab6ba227
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/generatepress/assets/css/components/widget-areas.min.css?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "d1c-61217da3c0c4e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 630
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 44.193.244.104/wp-content/uploads/generatepress/style.min.css?ver=1710096701 | 44.193.244.104 | 200 OK | 2.0 kB |
URL GET HTTP/1.144.193.244.104/wp-content/uploads/generatepress/style.min.css?ver=1710096701 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (10730), with no line terminators Hashfe9ca4184da622c8ea21a7a3ecadf1d7 73763e81c80f63b35f5a1bf5e9dedc6cae4dc71c 3db209aba96aeb5017b6156aa96f4ae4c93e2a2182d8b805f4fe2f2b307a265a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/generatepress/style.min.css?ver=1710096701 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 10 Mar 2024 18:51:41 GMT
ETag: "29ea-61352ea664523-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2035
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 44.193.244.104/wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0 | 44.193.244.104 | 200 OK | 491 B |
URL GET HTTP/1.144.193.244.104/wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (3293), with no line terminators Hash07e59a4db7995b6ce66bfb90fc7fbd22 6d134cea98609f38cea5011d9f16e2199a5b5730 3cdc8768b77b752d62d488cda4d7917a5df5d334da0f7fa7c9f86aeae573923b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/gp-premium/blog/functions/css/featured-images.min.css?ver=2.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
Content-Length: 491
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 11 Jan 2024 15:43:32 GMT
ETag: "cdd-60ead68e347df-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Expires: Wed, 24 Apr 2024 08:39:42 GMT
X-Original-Content-Length: 3293
Content-Encoding: gzip
Cache-Control: s-maxage=10
X-Content-Type-Options: nosniff
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 44.193.244.104/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 | 44.193.244.104 | 200 OK | 4.4 kB |
URL GET HTTP/1.144.193.244.104/wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (19564), with no line terminators Hash867585929ee8b21749cdefa675d9aa11 afbd7bc967068d4e804641f4b1df78ab37417144 bc3b2c1e618a27e485095a3c0db20da5ba2fbfaf3b872ccd6ca35cb19eb37b5d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/generatepress/assets/css/main.min.css?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "4c6c-61217da3c0c4e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4418
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 44.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 | 44.193.244.104 | 200 OK | 1.6 kB |
URL GET HTTP/1.144.193.244.104/wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeJavaScript source, ASCII text, with very long lines (6957), with no line terminators Hash70bb4fab119eb133cae33105b69f65cb 0c78a77e06be020674ca82d28b02a712615f7b35 395121e5b9981325951ef88bec68d065d23087b16a70d4459109e1dd84a10936
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/generatepress/assets/js/menu.min.js?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "1b2d-61217da3c6a0e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1556
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| 44.193.244.104/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 44.193.244.104 | 200 OK | 14 kB |
URL GET HTTP/1.144.193.244.104/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 03 Apr 2024 01:21:36 GMT
ETag: "1bae5-615270b3be3de-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13902
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| 44.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 | 44.193.244.104 | 200 OK | 1.3 kB |
URL GET HTTP/1.144.193.244.104/wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typeJavaScript source, ASCII text, with very long lines (3429), with no line terminators Hash240fceffe2d443a2472854ee7d2e53d5 480337cfc727b896df5500d8e4108b09443b6235 91b2dc9cd7ac64ecf6e58b3a6929024bb30b9af8de18de40d63e10ec4fbb35ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/generatepress/assets/dist/modal.js?ver=3.4.0 HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 24 Feb 2024 02:58:35 GMT
ETag: "d65-61217da3c2b8e-br"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1283
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| scripts.mediavine.com/flooring/countryLookup | 151.101.193.181 | 200 OK | 77 B |
URL GET HTTP/2scripts.mediavine.com/flooring/countryLookup IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hash51c74fcf034fb236d191c5b513b68caf 2587fbc75dfb5a6573920e035f5fe746bc523e43 5c4a95df6e41f46eb579154b6d4b4ae7250ddab57a1fad28d1ec0c165adf83a9
GET /flooring/countryLookup HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Varnish
retry-after: 0
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=604800
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
via: 1.1 varnish
x-served-by: cache-hel1410028-HEL
x-cache: HIT
x-cache-hits: 0
strict-transport-security: max-age=300
content-length: 77
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/launcher/settings.json?off=mediavine | 151.101.193.181 | 200 OK | 1.4 kB |
URL GET HTTP/2scripts.mediavine.com/launcher/settings.json?off=mediavine IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hash12ae190ed892e1ab6234ff001adb056c a6e3eba553a4dcb84409bae06c5482522ded09b1 3ed6e96bbf0fd0b2f9cd2ca1c68a948b57b86cb0147619b97034d4ccaa0246aa
GET /launcher/settings.json?off=mediavine HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=TkxrvUY/gZIzJls2MT8YVVlPHx11r6oS4iDqjf9Og/YCx8U3+djtXpotFuaKpvXmo0J4g0qfN7crkx5SerRXmhjnjBxDzu2Rb/mtm3jzqMd6tpozY01J1DgkT1XV; Expires=Wed, 01 May 2024 01:47:24 GMT; Path=/
AWSALBCORS=TkxrvUY/gZIzJls2MT8YVVlPHx11r6oS4iDqjf9Og/YCx8U3+djtXpotFuaKpvXmo0J4g0qfN7crkx5SerRXmhjnjBxDzu2Rb/mtm3jzqMd6tpozY01J1DgkT1XV; Expires=Wed, 01 May 2024 01:47:24 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"1e47-puPrpVOk3LhECbrgbFSCUi3tCbE"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 24445
x-served-by: cache-iad-kjyo7100137-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 95, 2764
x-timer: S1713947689.342170,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 1374
X-Firefox-Spdy: h2
|
|
| 44.193.244.104/wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png | 44.193.244.104 | 200 OK | 107 kB |
URL GET HTTP/1.144.193.244.104/wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typePNG image data, 988 x 621, 8-bit/color RGBA, non-interlaced Size107 kB (106986 bytes) Hash8f9cac696c821d6509c8be39b281c485 760531b284d9a07f0f6a818b8adaa9c8be1f1b32 cd24321ba9c4b803ed9041d19babad31c7a3ada414260fcabcbd3fa9c87b6115
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/04/cropped-cropped-cropped-florida-hipster-blog-logo-small-.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Sat, 09 Mar 2024 22:38:07 GMT
ETag: "1a1ea-61341f65964ed"
Accept-Ranges: bytes
Content-Length: 106986
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
|
|
| fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP216.58.207.227:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31052, version 1.0 Hash5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3
GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:25:17 GMT
expires: Wed, 23 Apr 2025 08:25:17 GMT
cache-control: public, max-age=31536000
age: 86972
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204 | 151.101.193.181 | 200 OK | 55 kB |
URL GET HTTP/2scripts.mediavine.com/tags/3.1.15/wrapper.min.js?bust=1504074204 IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65463) Hash99655c629cb3a2a1a961e5c5a18492ad 3d85d70ba8fa01b179cd15b59d50f9f861de47ec ed48a9a43c2e6ed54e2795d8c5b0d37cb45a01d2abecb11ad40ba6042a39c95a
GET /tags/3.1.15/wrapper.min.js?bust=1504074204 HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=sdTgnAoOwk9UOTSDHBMUlAbyFpv+//KevuQI4919J2TWTE9M363UQIieu6Em1VE5skV9h+tArzZZt+e18V4pO2/PJVDLUivWLWlf2SCUo5cN/59cAB1MUy3ixgRU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/
AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: zzxbO0wnO4Rq0zQ66jA/7z6PyD4t2BEDn80KqHVAYWl18qLNUHAKnNyr0d1Tpm2n4m/lWjuP9VY=
x-amz-request-id: G9VFZ2XDV45W1HD4
last-modified: Mon, 22 Apr 2024 19:56:58 GMT
etag: "99655c629cb3a2a1a961e5c5a18492ad"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/3.1.15/wrapper.min.js
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 131069
x-served-by: cache-iad-kjyo7100079-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 5040
x-timer: S1713947689.480681,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 54736
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2 IP216.58.207.227:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19196, version 1.0 Hashd7287cfd5dfec2655d89b20d0bfb2205 91d8cf08c3873e87c1d62284ff0c8aeba1f6f565 f78bb4fead90ea6966383155118b67afbc0bdb0f870f4918944de11227d583e7
GET /s/prata/v20/6xKhdSpbNNCT-sWPCm4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:59:57 GMT
expires: Fri, 18 Apr 2025 02:59:57 GMT
cache-control: public, max-age=31536000
age: 538492
last-modified: Thu, 24 Aug 2023 20:58:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP216.58.207.227:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31052, version 1.0 Hash5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3
GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:25:17 GMT
expires: Wed, 23 Apr 2025 08:25:17 GMT
cache-control: public, max-age=31536000
age: 86972
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js | 151.101.193.181 | 200 OK | 11 kB |
URL GET HTTP/2scripts.mediavine.com/tags/1011/d0b73a12f7f19501fbbd.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (37641), with no line terminators Hashc573e57126063be3ca04b9d8399d6c0d 32878cbeaa5352d2595a2fc57cd11cec2d06decf 7f7ec3eb5d4b91fd715acd94d0df382855d4e6aea636c41c65804957ec7c839e
GET /tags/1011/d0b73a12f7f19501fbbd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=U3V6Yb/llQvjnYE1jOkzRLlrhaPJvKh8FwajBRBO+JNq9TLn+5tmpJ6H0L3mXWe4CWG1BER58F/S+D4yNq1cXLxZmVYMixrSdchJLLdzsGK7vU4G2Kbj5OY9NX7R; Expires=Wed, 27 Dec 2023 05:44:45 GMT; Path=/
AWSALBCORS=U3V6Yb/llQvjnYE1jOkzRLlrhaPJvKh8FwajBRBO+JNq9TLn+5tmpJ6H0L3mXWe4CWG1BER58F/S+D4yNq1cXLxZmVYMixrSdchJLLdzsGK7vU4G2Kbj5OY9NX7R; Expires=Wed, 27 Dec 2023 05:44:45 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: p+LsJAvR1LrB/SAvEyvsDf/27iwmifQKByUHf4ST/i7JvipDkQL9A2TmHv5NoVsFBA3JRiqVE3w=
x-amz-request-id: 8AVDJXZZWD21KJSF
last-modified: Wed, 20 Dec 2023 05:40:39 GMT
etag: "c573e57126063be3ca04b9d8399d6c0d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/1011/d0b73a12f7f19501fbbd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 9059037
x-served-by: cache-iad-kcgs7200123-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 12, 7685
x-timer: S1713947690.579173,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 10755
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js | 151.101.193.181 | 200 OK | 6.8 kB |
URL GET HTTP/2scripts.mediavine.com/tags/gdpr/a114d0d9dab54adfc1d4.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (22976), with no line terminators Hash62419b721381bec1d9e2e4fcbc9f4754 f8ba6d52cdb91a52c5a28b34886986914a5f46a5 ee390366f52cb58359c2e36e947f3b133c7876aafdc578f66f92ad8b4d3ae741
GET /tags/gdpr/a114d0d9dab54adfc1d4.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=jClgZYBawmqdlrt8TfeNB+pcA1VIVsjyln0Kq4wp/apPoaY3VDP+6Aa3sViQ6019YBcU6FszaLV+kikZKvI+Ozavc4gWOMgdFmUO8HERNF8c2fneHpeGgiEQnYTk; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/
AWSALBCORS=jClgZYBawmqdlrt8TfeNB+pcA1VIVsjyln0Kq4wp/apPoaY3VDP+6Aa3sViQ6019YBcU6FszaLV+kikZKvI+Ozavc4gWOMgdFmUO8HERNF8c2fneHpeGgiEQnYTk; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: TwTIxfYJ9kgtiG5rTdUt+OeL73US5F7VFgXnl3Af/CJGqK/pXwY58c7xTcN7wGxFlWX9Q0IqJRc=
x-amz-request-id: Z9R6V3P3JJ4EBFYK
last-modified: Fri, 16 Feb 2024 16:27:41 GMT
etag: "62419b721381bec1d9e2e4fcbc9f4754"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdpr/a114d0d9dab54adfc1d4.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 5368020
x-served-by: cache-iad-kjyo7100050-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 7650
x-timer: S1713947690.579731,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6811
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js | 151.101.193.181 | 200 OK | 12 kB |
URL GET HTTP/2scripts.mediavine.com/tags/6381/7b1b5bc2bf50b7f1fd3d.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (60835), with no line terminators Hash3ac36b93e230c09abea8266587e3313b ca2c6609b8bd1711d55dc94b5a98987e68545224 e7dc2d96e7b17036114e965bc4fd20227f0285f0e0a7530015fb57e6ee3a959c
GET /tags/6381/7b1b5bc2bf50b7f1fd3d.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=jnrw9Wa/Y3/Fja/PiGA/Hlswij+TOA+2j5h5OWyndPoFZfroVtIIK33+pVE8q6hdeWgGSY3uTVD4XNfamTaHTWASRg9W9u1g1CINCo6QCrJvkJTT1LcBfmzbYSfJ; Expires=Thu, 26 Oct 2023 19:08:38 GMT; Path=/
AWSALBCORS=jnrw9Wa/Y3/Fja/PiGA/Hlswij+TOA+2j5h5OWyndPoFZfroVtIIK33+pVE8q6hdeWgGSY3uTVD4XNfamTaHTWASRg9W9u1g1CINCo6QCrJvkJTT1LcBfmzbYSfJ; Expires=Thu, 26 Oct 2023 19:08:38 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: d3eIm046h9H0BOjUXI8ZGgHFoe1cVeh3ns5Egb/h8UjPNKZ8B84qSo/opAGXhxMkC4oFBTGu3+g=
x-amz-request-id: HVWF7YT12MWCGFWQ
last-modified: Tue, 17 Oct 2023 20:02:59 GMT
etag: "3ac36b93e230c09abea8266587e3313b"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/6381/7b1b5bc2bf50b7f1fd3d.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 14598076
x-served-by: cache-iad-kiad7000131-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 21, 7535
x-timer: S1713947690.585478,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 12001
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js | 151.101.193.181 | 200 OK | 3.1 kB |
URL GET HTTP/2scripts.mediavine.com/tags/gpp/a5a52b2a9ac68755afed.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (8747), with no line terminators Hash1e854cdc5f47eb5c60a0329d023edf27 9fed1deaf69fa1dd65a5d8f52abb6529f956fabe fb8218a504f901abd6e5240c1c634018485743c80901a9af5e17a5d3fe39df65
GET /tags/gpp/a5a52b2a9ac68755afed.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=eO4V0FO5xB7T0KGqNP/6tt+dajx13V1W4RFwx/AjjxhFCGATOqozfqbKgukAFyCH/uKu55CFNCYugOPH5zIznTspyeBbacNOkTEa5PViIEIlrEew+hvDT769E03i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=FVREilnhnjpuTnOJM8EyTp+r4fzdEjCnFrsFBKvtDFCyqsg7f5ej7nRCNJwgsaQjvx5Bj/RU7z/dIe8POBe9SrI+LphoGaT3WyEwV4w1TrBas/+H1K+xqoNCOUqM; Expires=Wed, 27 Mar 2024 20:16:15 GMT; Path=/
AWSALBCORS=FVREilnhnjpuTnOJM8EyTp+r4fzdEjCnFrsFBKvtDFCyqsg7f5ej7nRCNJwgsaQjvx5Bj/RU7z/dIe8POBe9SrI+LphoGaT3WyEwV4w1TrBas/+H1K+xqoNCOUqM; Expires=Wed, 27 Mar 2024 20:16:15 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: LQHrrTB1D/1w6P08vt2hSGkR5UbTVEH1PMh/j7JylRpsYXPPjYsKXDriaSi7iTuhhsQfagkoDvM=
x-amz-request-id: XX149TVG8285VJ5E
last-modified: Wed, 20 Mar 2024 20:13:11 GMT
etag: "1e854cdc5f47eb5c60a0329d023edf27"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gpp/a5a52b2a9ac68755afed.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1370355
x-served-by: cache-iad-kiad7000035-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 7501
x-timer: S1713947690.589246,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 3073
X-Firefox-Spdy: h2
|
|
| keywords.mediavine.com/keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY | 151.101.193.181 | 400 Bad Request | 0 B |
URL GET HTTP/2keywords.mediavine.com/keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /keyword/web.keywords.js?pageUrl=https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY HTTP/1.1
Host: keywords.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
x-powered-by: Express
access-control-allow-credentials: true
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 24 Apr 2024 08:34:49 GMT
x-served-by: cache-iad-kiad7000093-IAD, cache-hel1410027-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713947689.486631,VS0,VE120
vary: Origin
content-length: 0
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/cmp/v3/vendor-list.json | 151.101.193.181 | 200 OK | 23 kB |
URL GET HTTP/2scripts.mediavine.com/cmp/v3/vendor-list.json IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hashebd0784f7d222652f17bf2e675cc777f 1c2f8a396db299a96201bafcc7dbd32fba323a48 09817224c57598f6735b2f9f3f07358762a9a37f4881aa00b0610f14c3d13f69
GET /cmp/v3/vendor-list.json HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
set-cookie: AWSALB=2S4/ctYMi5b3cb8zUp4MwbRQDOg7vAxY3gw/6dG9yhnKRxvpboiD4sb0ikYybJju+6I+N0/7DA5N7fZcY7XrhVfHtjOT1ENLmlX5D5Ju9toPGvdudeWwrsf1K1xd; Expires=Fri, 26 Apr 2024 21:31:20 GMT; Path=/
AWSALBCORS=2S4/ctYMi5b3cb8zUp4MwbRQDOg7vAxY3gw/6dG9yhnKRxvpboiD4sb0ikYybJju+6I+N0/7DA5N7fZcY7XrhVfHtjOT1ENLmlX5D5Ju9toPGvdudeWwrsf1K1xd; Expires=Fri, 26 Apr 2024 21:31:20 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: max-age=604800
etag: W/"2d5e4-HC+KOW2ymaliAbr8x9vTL7oyOkg"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 385409
x-served-by: cache-iad-kiad7000172-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 27972
x-timer: S1713947690.691278,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 23255
X-Firefox-Spdy: h2
|
|
| 44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png | 44.193.244.104 | 200 OK | 18 kB |
URL GET HTTP/1.144.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash49145d4b8194376b092651dd49337069 9aba6ebc43f9a11bc3a03d83ebce0e6734214f01 b6a649822a49bc70b48b36ac658fcd04861098f1721d7bc9f862533a433465f7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-192x192.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO; _ga_66P0QLDEZG=GS1.1.1713947689.1.0.1713947689.0.0.0; _ga=GA1.1.3062679.1713947689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 03 Sep 2021 16:11:01 GMT
ETag: "45e6-5cb198bace560"
Accept-Ranges: bytes
Content-Length: 17894
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
|
|
| 44.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png | 44.193.244.104 | 200 OK | 2.2 kB |
URL GET HTTP/1.144.193.244.104/wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png IP44.193.244.104:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerLet's Encrypt Subjectwww.floridahipster.com Fingerprint78:33:4C:29:84:36:34:5B:5C:4F:45:A8:1D:49:F1:2B:3D:C3:D0:3B ValidityTue, 19 Mar 2024 03:47:48 GMT - Mon, 17 Jun 2024 03:47:47 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash944242f02a4e617e42ba0a3e02cb75f0 f4a19a7e297cd502b36fdea27f8afcdbce5b587e aa2d944e8aab2f781e8b964e725966f9e78431f020504e714b99805f6f588f8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/09/cropped-FLORIDA-HIPSTER-BLOG_v2_color_icon-32x32.png HTTP/1.1
Host: 44.193.244.104
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY
Cookie: aawp-country=NO; _ga_66P0QLDEZG=GS1.1.1713947689.1.0.1713947689.0.0.0; _ga=GA1.1.3062679.1713947689
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 08:34:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 03 Sep 2021 16:11:01 GMT
ETag: "885-5cb198bae5c61"
Accept-Ranges: bytes
Content-Length: 2181
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js | 151.101.193.181 | 200 OK | 22 kB |
URL GET HTTP/2scripts.mediavine.com/tags/2788/328caa2b0f7866645485.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (57883) Hashc201da8aace1c33690f3f1dbd7c580f5 481cf2af5c8874ab6214589a8cfadc59617baa41 ba19beacf91a3a7cb6e7f0238a634d78f77538a1678b929f3dc4e6fc538fd8f6
GET /tags/2788/328caa2b0f7866645485.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=1mUJvNeGW2brtWebUZp5m41h8sLZRPVUshUFQh0PLKyNmlFo8bNlg80nVJJmGSuKGJ+ckkgzSxuXASWr1TnVrZlWDwoDT9HI9Szr8L/udqNns4kp0xMhCeliKTo7; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/
AWSALBCORS=1mUJvNeGW2brtWebUZp5m41h8sLZRPVUshUFQh0PLKyNmlFo8bNlg80nVJJmGSuKGJ+ckkgzSxuXASWr1TnVrZlWDwoDT9HI9Szr8L/udqNns4kp0xMhCeliKTo7; Expires=Fri, 23 Feb 2024 16:28:00 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: RzCVAlDOPws9AI60FyoTBekx/ybNl+eoTynsaBIY35MeCDmxNwMCKX0Uz+Cd5Wo3XxViwM6Wbxc=
x-amz-request-id: Z9R72ZW5E02K6W34
last-modified: Fri, 16 Feb 2024 16:27:41 GMT
etag: "c201da8aace1c33690f3f1dbd7c580f5"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/2788/328caa2b0f7866645485.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 3708217
x-served-by: cache-iad-kjyo7100023-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 21, 7110
x-timer: S1713947690.768728,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 21830
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js | 151.101.193.181 | 200 OK | 4.7 kB |
URL GET HTTP/2scripts.mediavine.com/tags/gdprModal/ccee9b159360ebdc4eef.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (9882) Hash3e96db4170cf4e432566afd3255a4699 92f726d9cd5f0ae0c9405a5703fae76f4081625a b900a8f2e2808e9e102147f9660d9d84163bad7ef101235bb4e58513799fbbb8
GET /tags/gdprModal/ccee9b159360ebdc4eef.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=9xDuPHDUjq6SATHHzARKAJhBxYEwOV9bKRm3gCrnLMCLal0gkrW2AXOvy3cwq1eyv3Hv9isW+cIbgdBLjDKP8bQmMZ6gyODlFk1sTVeeU7pRPsrhVLGMXWSATb8Y; Expires=Thu, 11 Apr 2024 14:24:45 GMT; Path=/
AWSALBCORS=9xDuPHDUjq6SATHHzARKAJhBxYEwOV9bKRm3gCrnLMCLal0gkrW2AXOvy3cwq1eyv3Hv9isW+cIbgdBLjDKP8bQmMZ6gyODlFk1sTVeeU7pRPsrhVLGMXWSATb8Y; Expires=Thu, 11 Apr 2024 14:24:45 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: 3PcUHxcqsyu6QdLfHsyigmyxuvjNOG7wxiVVxGG8wLNSxGBcwjIkW6Hult63BQWYu7pKSsrgGaI=
x-amz-request-id: 8WXPBHPYAJADDY6T
last-modified: Wed, 03 Apr 2024 19:00:23 GMT
etag: "3e96db4170cf4e432566afd3255a4699"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModal/ccee9b159360ebdc4eef.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1707005
x-served-by: cache-iad-kiad7000175-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 7054
x-timer: S1713947690.771532,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 4741
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js | 151.101.193.181 | 200 OK | 2.5 kB |
URL GET HTTP/2scripts.mediavine.com/tags/gdprModalLayer1/afde2a95885d9784fc31.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (1987) Hash9e3039b66c897ccde62e44aedfb272d7 fb912de8566b585d3ffc11df8de3378a5299d454 fb41aae2affebd3ba9e7a5c8afcccb63309ea3141bc9e734e8c78cbc42bae57f
GET /tags/gdprModalLayer1/afde2a95885d9784fc31.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=Z8kXdVTMPbHjiXJ+JmSyRoVw7fIZcL7P88AGj1ilg5IjsliBvIc6S4vhT/emm5XCahXZ23BFmyLzyYh/0IpeeA35tR/WX4DRYqcv4JDH/dVLZjggfBTJdLWHrAR/; Expires=Mon, 27 Nov 2023 23:01:05 GMT; Path=/
AWSALBCORS=Z8kXdVTMPbHjiXJ+JmSyRoVw7fIZcL7P88AGj1ilg5IjsliBvIc6S4vhT/emm5XCahXZ23BFmyLzyYh/0IpeeA35tR/WX4DRYqcv4JDH/dVLZjggfBTJdLWHrAR/; Expires=Mon, 27 Nov 2023 23:01:05 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: Xk4w2uMX/jhD63hPqW5a913yMUvVpJrM3nx+KOXnN8lzQdMk+DDRTVoKzr3PGTeB5PGVjN//hLI=
x-amz-request-id: 8VQPMAZ5NBCJZBCM
last-modified: Mon, 20 Nov 2023 22:59:07 GMT
etag: "9e3039b66c897ccde62e44aedfb272d7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLayer1/afde2a95885d9784fc31.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 12680339
x-served-by: cache-iad-kiad7000148-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 26, 5637
x-timer: S1713947690.832621,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 2458
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js | 151.101.193.181 | 200 OK | 150 B |
URL GET HTTP/2scripts.mediavine.com/tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashb24f335a88b4c202634b236641c257f0 f7f290d984c551cd6e2a96287b0b5ca2af87aecf fec422cd3d21f8a35e3f7ddc97ca4134226be248e3d308f310771eddbc4b111b
GET /tags/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=nKPgVbep5QvBPREmWSRQBC/1eU4LzwG5e4HZmc8/FS4KMU5yZufxwFMhbKejT+trG42cSADyS8xdCsQFNqiLqtKDHpRvwX+0+3UGXJ1gY7cekgzM5qUSYTrZrLn4; Expires=Mon, 08 May 2023 13:39:32 GMT; Path=/
AWSALBCORS=nKPgVbep5QvBPREmWSRQBC/1eU4LzwG5e4HZmc8/FS4KMU5yZufxwFMhbKejT+trG42cSADyS8xdCsQFNqiLqtKDHpRvwX+0+3UGXJ1gY7cekgzM5qUSYTrZrLn4; Expires=Mon, 08 May 2023 13:39:32 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: prA11Kxgm2mzZDdXhFRILs3wYLX7OvJBKMrKN9p96CgsmdbCP/71YvOLWTud/I7Y4hYaG+9sU4Q=
x-amz-request-id: BRWK696DCHB645JT
last-modified: Thu, 27 Apr 2023 20:42:01 GMT
etag: "b24f335a88b4c202634b236641c257f0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLocale44/5715b27c8dcc07d6cacd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 30323399
x-served-by: cache-iad-kcgs7200105-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 19, 6119
x-timer: S1713947690.871427,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 150
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js | 151.101.193.181 | 200 OK | 630 B |
URL GET HTTP/2scripts.mediavine.com/tags/gdprModalLocale2/27432bc76ee0f6762441.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1030), with no line terminators Hash004e9b69c50c6f1631e930ebffb51e6e 6b8816ce02f4a2d30bc7f49e78c70d3be53ba126 a3cfbde18aa8afdd228074ce7a6014aec152e90a412a2ec4a7e3d621c5041560
GET /tags/gdprModalLocale2/27432bc76ee0f6762441.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=J8blnP6yazVNpNHrxAhD7Ft7xKqiQgsIRz2ALDuMi1y78yUUMfEjAkvxfK7PAq/1FaE6aiBuzvZb9ScjKnFsU8RfSTD7UQ4XdBfkKDBeX7wfHSdfrmwX9p5Rzx/Q; Expires=Thu, 14 Mar 2024 21:19:07 GMT; Path=/
AWSALBCORS=J8blnP6yazVNpNHrxAhD7Ft7xKqiQgsIRz2ALDuMi1y78yUUMfEjAkvxfK7PAq/1FaE6aiBuzvZb9ScjKnFsU8RfSTD7UQ4XdBfkKDBeX7wfHSdfrmwX9p5Rzx/Q; Expires=Thu, 14 Mar 2024 21:19:07 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: UG47KUAoPh0uE1OWkIxy4vKiky9cRo51ddLWlgU9CT5JBZbYlvu03u2p9dDpH+XmTj78OYxEcE4=
x-amz-request-id: BPHT2Z0GXMBSNPEX
last-modified: Thu, 07 Mar 2024 20:06:52 GMT
etag: "004e9b69c50c6f1631e930ebffb51e6e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/gdprModalLocale2/27432bc76ee0f6762441.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
age: 1509342
x-served-by: cache-iad-kjyo7100089-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 15, 5509
x-timer: S1713947690.882499,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 630
X-Firefox-Spdy: h2
|
|
| faves.grow.me/main.js | 151.101.2.49 | 200 OK | 6.5 kB |
IP151.101.2.49:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.grow.me FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (17275) Hashefceb41411d569c718532b52d561533d 8d0e314552a280cdf40ba4bb09b25373e435c32f 67ff6d6b37c4776675ea622ee7b58571fdb328b816b2308bc6f8b9ad790f4d40
GET /main.js HTTP/1.1
Host: faves.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: yBROnZjFy1wJCi61/u1tyGReWE9qmkyCRT+lnoHpnV7HcubSrbkXeUZOVQBlz6vcbKS3dbvaJDI=
x-amz-request-id: S4DKZBZ2G9C28SVR
last-modified: Tue, 23 Apr 2024 16:30:09 GMT
etag: "efceb41411d569c718532b52d561533d"
x-amz-server-side-encryption: AES256
cache-control: no-cache
x-amz-meta-surrogate-control: max-age=604800
x-amz-meta-surrogate-key: purge-on-widget-deploy
content-type: text/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:49 GMT
via: 1.1 varnish
age: 57851
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 1161
x-timer: S1713947690.991290,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6519
X-Firefox-Spdy: h2
|
|
| api.grow.me/versions | 151.101.130.49 | 200 OK | 137 B |
IP151.101.130.49:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.grow.me FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT
Hash254a5d347ca2aa64d5cff050d72b8849 cc08bef870b9d6406b725739b2ff1f1a7c3b21b0 279831d4cd1faee44771fda24b9504abd5d2e48efe6f52b73b612292f34e1d1e
GET /versions HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
cache-control: no-cache
etag: W/"88-zAi++HC51kBrclc5sv8fGnw7IbA"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
age: 40842
x-served-by: cache-iad-kjyo7100145-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 152, 1282
x-timer: S1713947690.159193,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 137
X-Firefox-Spdy: h2
|
|
| api.grow.me/location-privacy-info | 151.101.130.49 | 200 OK | 90 B |
URL GET HTTP/2api.grow.me/location-privacy-info IP151.101.130.49:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.grow.me FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT
Hash53c7b562c95ecac7872112758581b89c 863d0e17702016e7b599229dee7ea80e30eb5785 679be1b0b91a855a9837c569ed748a2e892e9dfe0e749908793802ac7d338ed8
GET /location-privacy-info HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
x-client-geo-region: 03
etag: W/"48-hj0OF3AgFue1mSKd7n6oDjDrV4U"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
age: 6246
x-served-by: cache-iad-kiad7000169-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1713947690.161730,VS0,VE0
vary: client-geo-country, Accept-Encoding
strict-transport-security: max-age=300
content-length: 90
X-Firefox-Spdy: h2
|
|
| api.grow.me/sites/376efdcf-6526-46f1-b89c-26245814a35c/config | 151.101.130.49 | 200 OK | 1.4 kB |
URL GET HTTP/2api.grow.me/sites/376efdcf-6526-46f1-b89c-26245814a35c/config IP151.101.130.49:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.grow.me FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT
Hash9dca7ae6999da26f5e9f17c214a3ee17 9a38acabe6b521d3fc01d15e27291da2cd666afc 0f159fee7c026a787b75da76b7b66c866cd2d222952fbefe55a0032ab103fa20
GET /sites/376efdcf-6526-46f1-b89c-26245814a35c/config HTTP/1.1
Host: api.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://44.193.244.104/
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"d29-mjisq+a1IdP8AdFeJykdos1mavw"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 7
date: Wed, 24 Apr 2024 08:34:50 GMT
x-served-by: cache-iad-kcgs7200023-IAD, cache-hel1410027-HEL
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1713947690.120272,VS0,VE114
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 1445
X-Firefox-Spdy: h2
|
|
| faves.grow.me/app.7.243.3.js | 151.101.2.49 | 200 OK | 50 kB |
URL GET HTTP/2faves.grow.me/app.7.243.3.js IP151.101.2.49:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.grow.me FingerprintC4:39:BF:52:EB:FD:02:72:36:99:B5:B9:D1:7E:E8:B5:77:F9:C0:9D ValidityTue, 01 Aug 2023 16:47:47 GMT - Sun, 01 Sep 2024 16:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash806ff2a3dffa17d678b00d9c64380584 4cff692fba637fb8fe69c00031fb302d8c3bb1d5 140cfe0bfba46c1d00ac622de6596454134b5099d6497f81e9454a6c7060433b
GET /app.7.243.3.js HTTP/1.1
Host: faves.grow.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: dzfpN+Ou/hz+RMCvHFWZrnS8og36NxhW0/J3siWqkmTKtakMZ1XJsZfG7nPS/yIdH/ra0iXyEbk=
x-amz-request-id: CRR9HCTSCEN7E7E0
last-modified: Tue, 23 Apr 2024 16:30:27 GMT
etag: "806ff2a3dffa17d678b00d9c64380584"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=31536000,immutable
content-type: text/javascript
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:50 GMT
via: 1.1 varnish
age: 40884
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 788
x-timer: S1713947690.269585,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 49556
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js | 151.101.193.181 | 200 OK | 7.7 kB |
URL GET HTTP/2scripts.mediavine.com/tags/6975/660cbf5be98a42152bb8.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (19788), with no line terminators Hash57e428479a67cf8e16597df4433fd511 50a9393c41578d4dfe60bc0f7b2fb79a8370021d 6e54381d04dd55bab23a149ac6b1f67a766c76f69d6c90855d1a9967e80a689e
GET /tags/6975/660cbf5be98a42152bb8.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=w0/Cbw2EJ6nBf513YfwQ0g1IIDqLQ9TgPTtWW+uFHawjAE4+u7G20lLn8HY+2l0U8XEl1SeCUsncNS/K876X6zoKNiqBPF4ufKeMqOibkAkDjC/pPsiqQTESK5mw; Expires=Fri, 26 Apr 2024 20:31:17 GMT; Path=/
AWSALBCORS=w0/Cbw2EJ6nBf513YfwQ0g1IIDqLQ9TgPTtWW+uFHawjAE4+u7G20lLn8HY+2l0U8XEl1SeCUsncNS/K876X6zoKNiqBPF4ufKeMqOibkAkDjC/pPsiqQTESK5mw; Expires=Fri, 26 Apr 2024 20:31:17 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: Ad8rocy1u1WSFQkoDcied3Xa7O0eD0Kwq0nm24/TuULheTNSygOVAiNXJor76BJ1QJPzg47Km28=
x-amz-request-id: V2X5ZS1H0WCQGDPG
last-modified: Fri, 19 Apr 2024 19:19:10 GMT
etag: "57e428479a67cf8e16597df4433fd511"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/6975/660cbf5be98a42152bb8.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 389018
x-served-by: cache-iad-kjyo7100162-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 7, 6519
x-timer: S1713947695.945593,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 7680
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js | 151.101.193.181 | 200 OK | 13 kB |
URL GET HTTP/2scripts.mediavine.com/tags/4420/bc05153bc2e6fb5e37bb.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (41941), with no line terminators Hashe76eedc914521a11aa4e68c36ff66df8 d50c0bd18278ee05cc678fc2937ad20d05d8c3f7 5adfd4a68b65a9bd3f8fff31737e574a50597d5adb241f15a2ba1377364b8519
GET /tags/4420/bc05153bc2e6fb5e37bb.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=vinOVSjme0oYhuVPBviLK5akQqr3zEEN4VxBZqXAjsUw+Ix/yAsn+gWT9isHZfAFgEpgVyppGg/zb5ZEPPTYAVjj/3NzyTs4kqiiqgDWDz8pgY7SXhDqFZRAWD2i; Expires=Mon, 22 Apr 2024 21:19:57 GMT; Path=/
AWSALBCORS=vinOVSjme0oYhuVPBviLK5akQqr3zEEN4VxBZqXAjsUw+Ix/yAsn+gWT9isHZfAFgEpgVyppGg/zb5ZEPPTYAVjj/3NzyTs4kqiiqgDWDz8pgY7SXhDqFZRAWD2i; Expires=Mon, 22 Apr 2024 21:19:57 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: UmMCpw6M8OnAZ1v/K5QGE0SVZiG6BwHLUH7iwcoJS0fesVyxWfP40l49I94krrFR4/V8LCmjBpk=
x-amz-request-id: VJVN7R6JJVJS9G7Z
last-modified: Mon, 15 Apr 2024 21:02:31 GMT
etag: "e76eedc914521a11aa4e68c36ff66df8"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/4420/bc05153bc2e6fb5e37bb.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 731698
x-served-by: cache-iad-kiad7000037-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 18, 6538
x-timer: S1713947695.948782,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 13349
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js | 151.101.193.181 | 200 OK | 6.9 kB |
URL GET HTTP/2scripts.mediavine.com/tags/4508/57c70d08153f3e7b78bd.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (19548), with no line terminators Hash51aaac94d1b60cba6fdb4dfc68b9aa14 38da8cbbe250ae19b20ce972db03f72df6cecd3f 7db6fec57509168c724f10200c01ee06dfd84b7096857411b231e006f1acff4f
GET /tags/4508/57c70d08153f3e7b78bd.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=9LkewOiMNckdXmuiqeq+E9T/kIv0C6F+UOGCIjr89fOIcePxZAoXQqq2E4cYXA6jDC9yxtFLFdEkUIPGqOjUwKXx6ILcV0YVzHdIIXz+q1WTVeQqP+Xlp8NGuVMD; Expires=Mon, 22 Apr 2024 21:34:53 GMT; Path=/
AWSALBCORS=9LkewOiMNckdXmuiqeq+E9T/kIv0C6F+UOGCIjr89fOIcePxZAoXQqq2E4cYXA6jDC9yxtFLFdEkUIPGqOjUwKXx6ILcV0YVzHdIIXz+q1WTVeQqP+Xlp8NGuVMD; Expires=Mon, 22 Apr 2024 21:34:53 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: jWboTO0JdXa3g059ABBjtcuf6Cf1ZsEtCj9cRD6ZZq+wIQ9gejQlSame4SFV+TfSHaVA+0JJxuY=
x-amz-request-id: QGK8KY9FDX7PPVQZ
last-modified: Mon, 15 Apr 2024 21:27:53 GMT
etag: "51aaac94d1b60cba6fdb4dfc68b9aa14"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/4508/57c70d08153f3e7b78bd.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 730801
x-served-by: cache-iad-kjyo7100120-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 6234
x-timer: S1713947695.953302,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6855
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js | 151.101.193.181 | 200 OK | 6.1 kB |
URL GET HTTP/2scripts.mediavine.com/tags/2726/92d464ebb831c67416d8.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (14672), with no line terminators Hash8ef75c4f102f97d3707604854b622af7 5c099a44a813877603bec2930d9fa12c7dc842cb 54d73ad2c6c7f353bbb28d257f8297ebc48560c48e477210465404159e710f4e
GET /tags/2726/92d464ebb831c67416d8.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=TrocdJCJ1pe+vSPV8ZxF6Py5CqIvoUVl95xA2WjkN+SRY2/21bL/5KxGLZJmPIPtQg0A7GDAWH0iI3IqS1BAjBC6JDUa6+Ijb2h5TbXgeHhWl87oNvR39c1yherF; Expires=Wed, 03 Apr 2024 20:14:26 GMT; Path=/
AWSALBCORS=TrocdJCJ1pe+vSPV8ZxF6Py5CqIvoUVl95xA2WjkN+SRY2/21bL/5KxGLZJmPIPtQg0A7GDAWH0iI3IqS1BAjBC6JDUa6+Ijb2h5TbXgeHhWl87oNvR39c1yherF; Expires=Wed, 03 Apr 2024 20:14:26 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: wmBHFz6MG5Oh2U4oTBBcxBi6nFRL5YGIMsDVb5AXffogMlRTsqgjxf9Mof8EYecIpNyI+SwAoPY=
x-amz-request-id: SFDZ8RQQDEPNVNQF
last-modified: Wed, 27 Mar 2024 20:08:57 GMT
etag: "8ef75c4f102f97d3707604854b622af7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/2726/92d464ebb831c67416d8.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 2377228
x-served-by: cache-iad-kcgs7200095-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 9, 6487
x-timer: S1713947695.957165,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 6137
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js | 151.101.193.181 | 200 OK | 70 kB |
URL GET HTTP/2scripts.mediavine.com/tags/afterScroll/1abceeaafd0f74e0eb30.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashf39ca26279bce78ccfc6bd9a1963c72d 1a1b07d0145084a8b6ceb3003fa147fc27052bc5 531d1901c3b45913d86a421c6a9cb37025e4947fb7d3c7e1fdfb4868b06de3d8
GET /tags/afterScroll/1abceeaafd0f74e0eb30.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/
AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs; Expires=Mon, 29 Apr 2024 20:10:21 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: /oceMg6Z0Niqw+hJ1N33Sa1s7YbUSgIjOX7TsDnDEIOse/3OjCpNNDTylHwhyyFpFc3NCBDNukw=
x-amz-request-id: G9V9R8V6VAF5FFZH
last-modified: Mon, 22 Apr 2024 19:58:00 GMT
etag: "f39ca26279bce78ccfc6bd9a1963c72d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/afterScroll/1abceeaafd0f74e0eb30.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:54 GMT
age: 131074
x-served-by: cache-iad-kjyo7100156-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 5985
x-timer: S1713947695.960984,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 70283
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/creativeBlocks | 151.101.193.181 | 200 OK | 11 kB |
URL GET HTTP/2scripts.mediavine.com/creativeBlocks IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hashaddb388c64f17193532f324fa6f4d8af 8a7214494c21df750bcf0d694974eaca00cbd99e e714a9b591950d4c203d9499b730eaa750638bc244caef4ae033bb54c7df315f
GET /creativeBlocks HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
set-cookie: AWSALB=nmn9B2FsUAruOxNmELGPa1jABWkihedfk7jhGFvZYkYy1OrfOrjOMPW9EoklcNqraHpLrOn8lRF5M/iOFABKf8flPtXSmGL/qaylYCcuDAGQbqLu8/8HKikqBpYy; Expires=Tue, 30 Apr 2024 18:14:46 GMT; Path=/
AWSALBCORS=nmn9B2FsUAruOxNmELGPa1jABWkihedfk7jhGFvZYkYy1OrfOrjOMPW9EoklcNqraHpLrOn8lRF5M/iOFABKf8flPtXSmGL/qaylYCcuDAGQbqLu8/8HKikqBpYy; Expires=Tue, 30 Apr 2024 18:14:46 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no-cache
etag: W/"96ee-inIUSUwh33ULzw1pSXTqygDL2Z4"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 51608
x-served-by: cache-iad-kjyo7100140-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 39, 4198
x-timer: S1713947695.033415,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 10659
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js | 151.101.193.181 | 200 OK | 103 kB |
URL GET HTTP/2scripts.mediavine.com/tags/8129/6f9a60d1cadb27b38bb7.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65454) Size103 kB (103124 bytes) Hash09c9f4aa29b9d997b31927d2075fe905 1fd3675295471d70e1e4563d9791409087ba84ed 5ca8db4c3fe23b2135f1c2885c4bd91804a12f36de08ded3fec95110dc5d709b
GET /tags/8129/6f9a60d1cadb27b38bb7.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=wbuKvcOniV4ZcfWYul7iTxVpeVPK8QrGbZ4nUsmF6mwS47uP0kpy0u6mc/Jfm8pTPx24eBt/NWrNFMiEEXeBfcm3io27PPzoiPIbMksjfGR1Emsnoon8ndmf0S3M; Expires=Mon, 22 Apr 2024 18:18:54 GMT; Path=/
AWSALBCORS=wbuKvcOniV4ZcfWYul7iTxVpeVPK8QrGbZ4nUsmF6mwS47uP0kpy0u6mc/Jfm8pTPx24eBt/NWrNFMiEEXeBfcm3io27PPzoiPIbMksjfGR1Emsnoon8ndmf0S3M; Expires=Mon, 22 Apr 2024 18:18:54 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: zq+vMFD0p1Oc/eh5cc/kRzm5V8NCqqqKd7L+n4N5TygrcBtO8L2HRC5RRBCyFiouRBbbuw6jHRk=
x-amz-request-id: X6G2KTX58MZF9CNS
last-modified: Mon, 15 Apr 2024 18:18:21 GMT
etag: "09c9f4aa29b9d997b31927d2075fe905"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/8129/6f9a60d1cadb27b38bb7.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 742561
x-served-by: cache-iad-kcgs7200179-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 17, 6725
x-timer: S1713947695.035144,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 103124
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js | 151.101.193.181 | 200 OK | 5.1 kB |
URL GET HTTP/2scripts.mediavine.com/tags/prebid/bd4b6908467a2163ab62.min.js IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (13265), with no line terminators Hash2ed4e4d44477a8f9a6ea4c990dd79d96 327825e486261ceb32519d02a8e79da9051d262d f7f90b61f4dd55de7311ccc80ada5b8780413dbeffe882c97c71afe6b1cd4ac3
GET /tags/prebid/bd4b6908467a2163ab62.min.js HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Cookie: AWSALBCORS=Ca66T2TlI/P18p+pfpwcmu7MfyCO0yo975/Z1Pe8U8fArl1QviR9lLINlMoSr/a5RO4QZk3AEu6UypfZ1/5DvFEpX9t9rYSbGVVvadvPFA5v9xD4/AZYqYbz3nWs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
set-cookie: AWSALB=SWLkuPq+d+joqrR2PuDpBn8fRn39cEGnXoPSoZEGm/PDDFiZ+L0FxoVA6ZHcv4tgpaV/dp0O5fHGZoXO/a48y9JeXMPfVsR85Y163FGT5PRo05NOj2mWucQ7JRM0; Expires=Fri, 12 Apr 2024 21:08:44 GMT; Path=/
AWSALBCORS=SWLkuPq+d+joqrR2PuDpBn8fRn39cEGnXoPSoZEGm/PDDFiZ+L0FxoVA6ZHcv4tgpaV/dp0O5fHGZoXO/a48y9JeXMPfVsR85Y163FGT5PRo05NOj2mWucQ7JRM0; Expires=Fri, 12 Apr 2024 21:08:44 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
x-amz-id-2: PXLLAM6LqrBk74ImT9xbXXs0QrgLDwDnTGy3eRkGE4hdpg8l37bWFO639UmjL9i0EHpwsEM9uGI=
x-amz-request-id: NKCASNYWC7G489GC
last-modified: Fri, 05 Apr 2024 20:57:29 GMT
etag: "2ed4e4d44477a8f9a6ea4c990dd79d96"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
x-amz-meta-surrogate-control: max-age=2592000, stale-if-error=86400, stale-while-revalidate=60
x-amz-meta-surrogate-key: web web/prebid/bd4b6908467a2163ab62.min.js
server: AmazonS3
x-robots-tag: noindex
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 1596371
x-served-by: cache-iad-kcgs7200164-IAD, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 8, 6411
x-timer: S1713947695.037288,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=300
content-length: 5082
X-Firefox-Spdy: h2
|
|
| scripts.mediavine.com/amazon/v1/adjustments?offering=mediavine | 151.101.193.181 | 200 OK | 13 kB |
URL GET HTTP/2scripts.mediavine.com/amazon/v1/adjustments?offering=mediavine IP151.101.193.181:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGlobalSign nv-sa Subject*.mediavine.com FingerprintB9:B6:2B:DB:75:93:1D:B2:C8:E3:66:BD:D1:A8:4B:56:D1:C3:B4:FE ValidityWed, 03 Apr 2024 22:03:06 GMT - Mon, 05 May 2025 22:03:05 GMT
Hashf80222bddf7a037f4e06af18b4f95259 a6a4f8ca879bca7e012d3a0b1c928eb7f656af5e 3430f18239579411865e8e24cfd432df82f4c84afd1082b4a850832fbc156ccb
GET /amazon/v1/adjustments?offering=mediavine HTTP/1.1
Host: scripts.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://44.193.244.104
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
set-cookie: AWSALB=6VNkLF80CH0xCx0mRS2eqw4l1xLSEoH427vG/a8gOhvevyt6uwWDGalVvSSKjx8MkF6JY1YuP586KAMrByYGdbcfiMnbPbLDqDEjL3sZe3ChX/35NS9EQ/NmmXH8; Expires=Fri, 26 Apr 2024 20:11:12 GMT; Path=/
AWSALBCORS=6VNkLF80CH0xCx0mRS2eqw4l1xLSEoH427vG/a8gOhvevyt6uwWDGalVvSSKjx8MkF6JY1YuP586KAMrByYGdbcfiMnbPbLDqDEjL3sZe3ChX/35NS9EQ/NmmXH8; Expires=Fri, 26 Apr 2024 20:11:12 GMT; Path=/; SameSite=None; Secure
x-powered-by: Express
access-control-allow-origin: *
cache-control: public, no cache
etag: W/"d60c-pqT4yoebyn4BLToLHJKOt/ZWr14"
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 08:34:55 GMT
age: 390222
x-served-by: cache-iad-kjyo7100126-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 405377, 2155
x-timer: S1713947695.156334,VS0,VE0
vary: offering=mediavine, Accept-Encoding
strict-transport-security: max-age=300
content-length: 12652
X-Firefox-Spdy: h2
|
|
| exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c | 52.28.186.253 | 200 OK | 13 kB |
URL GET HTTP/2exchange.mediavine.com/usersync.min.js?s2sVersion=s2s-ab-test2-c IP52.28.186.253:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerAmazon Subjectexchange.mediavine.com Fingerprint9C:DF:A5:F2:2C:8B:56:1E:9F:1D:D6:9E:6E:3B:98:92:4F:01:E7:6D ValidityTue, 06 Jun 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13067) Hash9315f8a8396756691a4c1e3c607e95df b17f0580cbfe7fc9f2e8aa19f6faf675a2adbcf0 e0156fe12820a1e5f4d01fbe08c6d183020b69ca19ea75fbca1b5ed8b5845e21
GET /usersync.min.js?s2sVersion=s2s-ab-test2-c HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:34:49 GMT
content-type: application/javascript; charset=UTF-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: no-cache, private
accept-ranges: bytes
last-modified: Mon, 22 Apr 2024 14:28:08 GMT
etag: W/"3351-18f0635047d"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0 | 142.250.74.170 | 200 OK | 7.6 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0 IP142.250.74.170:443
Requested byhttps://44.193.244.104/,8Xxa2XQLv9,true,false,OLp7WwSugqY CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (7777), with no line terminators Hashc64fb0361d8bbe13b45dc0539d5ef012 397a55d21013cae0368a2e7529bad48dfbd38093 8e397a8adfcee4d04ced8ae17250440d0142a807cdfb5756da5770c7a5fbdd2d
GET /css?family=Prata%3Aregular%7CNunito+Sans%3Aregular%2C600%2C700&display=auto&ver=3.4.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://44.193.244.104/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 08:34:48 GMT
date: Wed, 24 Apr 2024 08:34:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|