ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 9be3fe14f68f6532597d14598507135b
60808c84e6454278fad41302a21f77b95c97e193
93e68f9214835f244c00eb7ba51a06c44a1c257b7d4c1a4c208c67d6a579d39b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 9be3fe14f68f6532597d14598507135b
60808c84e6454278fad41302a21f77b95c97e193
93e68f9214835f244c00eb7ba51a06c44a1c257b7d4c1a4c208c67d6a579d39b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brandedmedia.io/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
188.114.96.1200 OK 820 B URL GET HTTP/3 brandedmedia.io/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 95bd9b340ad6826beff005e5df32bd77
fdb64d88e53c9279ea62b5acbcf86641c52d63f2
f2c809f77b19df64ec8270272ac29ce3d84d242a663e589825a9e4f57b8a5461
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 01:34:30 GMT
etag: W/"63895626-5fa"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024248.862158,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GCdOllsEU4IzfPRUQ2Mi1DVVAR10txxY3yCUEH%2Bf1CjePXFSul3%2B3Q1%2FT6PzaF3y%2FGRpXGXDR8ms9r8POrrDjDBo%2BdugBCHHIiEgtSjWYMIFdq0s8f8BRyYb%2FDf%2FCHrjzhY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb23b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 1b65234d17a96b0f4e13aa8c4fa234bc
431fcdde0cc0c92a88c9dcfbf3cc907c66f450f9
cbc49a826b5616db80122a0d3aa95ab772bf36e2cd8e1ee28bd84079b43cb3e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 9be3fe14f68f6532597d14598507135b
60808c84e6454278fad41302a21f77b95c97e193
93e68f9214835f244c00eb7ba51a06c44a1c257b7d4c1a4c208c67d6a579d39b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 1b65234d17a96b0f4e13aa8c4fa234bc
431fcdde0cc0c92a88c9dcfbf3cc907c66f450f9
cbc49a826b5616db80122a0d3aa95ab772bf36e2cd8e1ee28bd84079b43cb3e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brandedmedia.io/wp-content/uploads/2022/04/White-Horizontal-1536x224.png
188.114.96.1200 OK 43 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/White-Horizontal-1536x224.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 1536 x 224, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cda8ec3a1e8fc6d46f5ed24aa91d023
ccedbc45380d0c31738e5dadb72d6a6ee8e2945b
bbae4e27c93ed257d19dc0b7805e0cc52da2099fb1ea6184503f16c2c76297f3
GET /wp-content/uploads/2022/04/White-Horizontal-1536x224.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/png
last-modified: Thu, 14 Apr 2022 04:26:47 GMT
etag: W/"6257a287-a5f2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1647-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.862349,VS0,VE606
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtuK5vvU02o9sKWQfIkwC%2BEinRymDpRiAhNpDidKbafwZtsT83%2FC9xbfF4EyVGfI7sRBuR5STxoT%2F53lN%2Fhkf3ojLtLMbzRKP3sh%2BBEl9lOGB3bahla67fBd6zsu7U764CQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb20b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap
216.58.207.202200 OK 62 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap
IP 216.58.207.202:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash 4f36192063f12d3d9683dac1c66ee72e
824778ce9fb971d88520947d061d706e9314f974
80b44a14e322d226e5a8af76110603cdd98ee8d6a6e2436004d5b4e75aa36208
GET /css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 14 May 2023 00:30:47 GMT
date: Sun, 14 May 2023 00:30:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/video.min.js?v=3.20&ver=3.20
188.114.96.1200 OK 6.0 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/video.min.js?v=3.20&ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (17344), with no line terminators
Hash 04aa9d62747c71aa57d67a776fcd6cbd
325899039875aae88201a9813c39821c0d9a8c5c
7242896a4461e17d9e5b9e5e239e96d0a43c5dd5734f31246ff674c47183b853
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/video.min.js?v=3.20&ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-43c0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1660-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.864880,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BHAg3kq9sA0BnSG6qkBoCL40rtGJllZOkmjwnDze9bfuyQnqVrb6hOVcIstJl8te3SnS0G44LBgft5h3TBaL6oAclZnyydLaq78xVd6zszrBWup5BPhxnzW9WV%2BF7LmXJnk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb2bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
188.114.96.1200 OK 1.1 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (1626)
Hash cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-71b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1641-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.848696,VS0,VE362
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=peqR0B04jbqSIL5rrqxCEESNcjdA989gho6etJOaGfoUMoDGz64QCw679wRbZi%2FKc%2FeXd7o%2B4pw7%2Fkkov14sqATCYdIBUljSiCy6T8edPfHUK61m83GNFwZM8HjIoMWjuWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dcdb14b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ae974c8f61823ca8658979a1109cbd2d
623d134c2263c62a20d2e7bfcb3cb0f89e842a10
cde1c25877913540c22c959d5d8dccdc8e162ed9b9c891f3309d73ac1f9cea5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/general.min.js?ver=3.20
188.114.96.1200 OK 24 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/general.min.js?ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
Hash 18fa642f7d1b827f6f3c8397b1cea044
6130fbf2a7a6710189fcd2edcfb1fd2f8723ceda
5223a9c1b3494e0d1e2c10343ac483344756f18e652403d2cf7a044eaeca9ba1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/general.min.js?ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-11794"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1672-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.845816,VS0,VE605
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T88V5UwMZcIrdDM6VY3%2FsVrPetv2zys6HQivXTB3hn8nI7c%2B4PPkUZKNaCaavBKCjH%2FMbix77TRBlh0lg9NHgjONPzM8%2BvvrZL1paxOGCyrLeDheweGYAn3xFrAXgT9R2uw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dcdb17b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ae974c8f61823ca8658979a1109cbd2d
623d134c2263c62a20d2e7bfcb3cb0f89e842a10
cde1c25877913540c22c959d5d8dccdc8e162ed9b9c891f3309d73ac1f9cea5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/frontend.min.js?ver=3.15.1
188.114.96.1200 OK 9.2 kB URL GET HTTP/3 brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/frontend.min.js?ver=3.15.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (29225), with no line terminators
Hash 0c6b6ae76e976098cd184cc225b0c237
8caf1f15f416e49ebc10a1b890b38eb17cd3df8b
0e2075776eed1a0d979ca4cff828cb1ecb0d7e9410e38b9a2035e144d55f9ecf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/thrive-theme/inc/assets/dist/frontend.min.js?ver=3.15.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 22 Feb 2023 02:53:24 GMT
etag: W/"63f583a4-7229"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1631-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.848633,VS0,VE487
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vMXtIybtd6oJkoVhtmJo775GH1BIEz8NjQSqz7f4cnmLwzlUvDJjP%2BepLnOP8KCRD8PBiREA%2Fwuk7HBze1d6hlm83oYkJlv8VX47wEJLi1qviumSMN614O9QuQ21%2BbmwrLs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dcdb1cb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
216.58.207.227200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Hash c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e
GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 07:26:37 GMT
expires: Sun, 12 May 2024 07:26:37 GMT
cache-control: public, max-age=31536000
age: 61451
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2
216.58.207.227200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Hash d258461a8f2c53d244500969828bdd3f
c796103e6ca328dd6a92bfecf72cda8f0a143158
f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef
GET /s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 18:00:10 GMT
expires: Sun, 12 May 2024 18:00:10 GMT
cache-control: public, max-age=31536000
age: 23438
last-modified: Tue, 19 Apr 2022 18:56:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 03:11:48 GMT
expires: Sun, 12 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 76740
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2
216.58.207.227200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Hash d312d179276a175029c56c50e9bc9d0b
aa9285dd6183c696fc39ec31c221581e2d4959c1
7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80
GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 07:39:10 GMT
expires: Sun, 12 May 2024 07:39:10 GMT
cache-control: public, max-age=31536000
age: 60698
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
216.58.207.227200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Hash 2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e
GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 00:16:37 GMT
expires: Thu, 09 May 2024 00:16:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
age: 346451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 07:44:41 GMT
expires: Sun, 12 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 60367
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 08:09:04 GMT
expires: Sun, 12 May 2024 08:09:04 GMT
cache-control: public, max-age=31536000
age: 58904
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=3.33
188.114.96.1200 OK 23 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=3.33
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (2090), with no line terminators
Hash 6d29cf1b6c1e71dc1a988b86f5d2102f
5078fffd279f1c4160f4715af1a8e5203a5c6d53
ed77fc2cbbcf4cd716fbf7f4ace9c8d1612bf6140a5996e4f38f8caa142edcb8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=3.33 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:15 GMT
etag: W/"6451c3b3-82a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1673-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.864690,VS0,VE487
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TZHF8ndYd7OyyLx%2FX1OBX0SqwNqs0xNA50VlJBTnYQxFRYl0Xu1Z2%2F%2Fw4UITC%2FOZMoE4Tx%2BgqfniAIgTi17XfOwCsG072IZs3TqCVVlq%2BIwA3j8pB1NVFJDfxXCVRiZCV%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb27b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2
216.58.207.227200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data
Hash f27acc0d33d769a3da576516ca236c41
a678c0f6905303906a2537c1ff983258286a9263
1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277
GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 07:43:41 GMT
expires: Sun, 12 May 2024 07:43:41 GMT
cache-control: public, max-age=31536000
age: 60427
last-modified: Tue, 19 Apr 2022 19:05:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ae974c8f61823ca8658979a1109cbd2d
623d134c2263c62a20d2e7bfcb3cb0f89e842a10
cde1c25877913540c22c959d5d8dccdc8e162ed9b9c891f3309d73ac1f9cea5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 14 May 2023 00:30:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brandedmedia.io/wp-content/uploads/2022/02/Background-3-1024x302-1.jpg
188.114.96.1200 OK 7.2 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/02/Background-3-1024x302-1.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x302, components 3\012- data
Hash a639fe50286168787ebc9841c553cdf5
7877062a5d67334a329fcd46228274c0f38f013f
13e5c4c41628088e7f4b4be244588e150bc483f17453b4ab8622d4a6fd25ca28
GET /wp-content/uploads/2022/02/Background-3-1024x302-1.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/jpeg
last-modified: Tue, 01 Feb 2022 05:12:59 GMT
etag: W/"61f8c15b-1bfd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1662-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.744663,VS0,VE201
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oJ3oA4%2FWo8PHAZP31h7FnJdlPYptCQXKOb54wXXlmt%2Bn66dDtyAfegvJUYj8TkkKCv%2B%2FXRgp7TXgMtzqlD3V0GKGE3aBRBfOIchSKK94KkrdItmjsnU6T2HNHO2AHNnPsUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e27e22b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
188.114.96.1200 OK 34 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-15e54"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1674-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.839853,VS0,VE614
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FBcRq7kjsmdw8LJFrkaG%2BEEcVEL7oU16%2F30H5rojwQ28Tf2WxEYP2Rlnup%2B%2FKvH0MT%2F4uAjcjF0op5BH%2F2dzo4C0S1N7gevPwqXMK6H35py4vHezQGBVpZKDGQiNc2CDxj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb0bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/js/masonry.min.js?ver=4.2.2
188.114.96.1200 OK 8.1 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/masonry.min.js?ver=4.2.2
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-5e4a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1622-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.846466,VS0,VE126
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfH4LS7RKLEq%2BzwkPTWwTTAIxlyUF70W2cZQv64doRYy3%2FWc5Q6hc0R%2BDc0mLcb%2BGlZRXpkZ2s%2F2TGL7xBOjN8KEdytUmAH3aX5c0Bkubq5buOEBFinWDCiOxYx4%2BGF73Is%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dcdb15b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
app.paykickstart.com/tracking-script
143.204.55.20302 Found 110 B URL GET HTTP/2 app.paykickstart.com/tracking-script
IP 143.204.55.20:443
Certificate IssuerAmazon
Subject*.paykickstart.com
FingerprintB3:AB:44:35:75:D9:11:DA:08:C1:BD:66:4D:E6:23:00:6B:1F:83:76
ValidityMon, 20 Feb 2023 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f366e0e18b589cb6f243bf43ce75e83c
0f95dda86ab28586f00bc878b42ecd09e579a890
075f0fd7eeb4bfec31816d61be72b064d4899853b224bd5f380041d7dd0b1d19
GET /tracking-script HTTP/1.1
Host: app.paykickstart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: text/html
content-length: 110
location: https://s3.amazonaws.com:443/img.paykickstart.com/tracking/tracking-script.min.js
server: awselb/2.0
date: Sun, 14 May 2023 00:30:49 GMT
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k354J_Yog6p_o8UnTVnCWonnn4NuDqvU24FYtbde0fucfSdfra8Urg==
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/uploads/2022/04/logo-icons-768x61.png
188.114.96.1200 OK 13 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/logo-icons-768x61.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 768 x 61, 8-bit gray+alpha, non-interlaced\012- data
Hash f03123b81d03b023123b3036f108b8f9
69ea16138328e16fecab680cba4bf99023cf3b51
86ad4998d1213575ba47e9d6085baa3711dee3b7b6abc4210f453a4cc265e60d
GET /wp-content/uploads/2022/04/logo-icons-768x61.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 22:45:30 GMT
etag: W/"6257528a-3031"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1658-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024249.765973,VS0,VE7
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5BGMMEfelmQDIrplEIM5nA%2FoRSrQ5TUvu3jazk%2FLtQrlQ1Edh73r3LFmXkTcNWQ3XKuh2Xp98ftC6JH2O1RPZn7%2F6uvw91igLsVSiewGvspXLJ8toY2D4NjHruYZWfExw6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e2be43b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/Website.jpg
188.114.96.1200 OK 708 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/Website.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1950, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1410], baseline, precision 8, 960x1494, components 3\012- data
Size 708 kB (707956 bytes)
Hash ea966a9e3f897848c4cb50a8161dfa80
94cf867e576597854f6e3161010443f408cda48e
25cf60e7045482bda8391abed42c401a3e03abf28bfc5fdbcbe82d3ecdebc36a
GET /wp-content/uploads/2022/05/Website.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Wed, 04 May 2022 22:56:16 GMT
etag: W/"62730490-abeb2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1668-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.714995,VS0,VE622
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q5ekJCDOVp7S00QLxk%2BvoM2krXj6rA9yMk92kBglYt0X2LhNn5gbZ8kfjsGaVurqQfizE9GOMEA3TsE8%2B1s3%2BRlAyWm7CyarDTjGFGvxw1%2Fv15xMVB9juNPJKff46Llqm0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23dfdb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/Brand-Guidelines.jpg
188.114.96.1200 OK 501 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/Brand-Guidelines.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=599, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=961], baseline, precision 8, 935x583, components 3\012- data
Size 501 kB (501033 bytes)
Hash 2342d84b74053604a463960970932e58
617aa9dc82192026f3c11956d77b060ab53fb0a5
92f18c966ccc4846f934e3cb6dc438a0a857efd17d901a2e55960f7de55f8370
GET /wp-content/uploads/2022/05/Brand-Guidelines.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:50 GMT
content-type: image/jpeg
last-modified: Thu, 05 May 2022 15:09:17 GMT
etag: W/"6273e89d-7a4ff"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1667-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.712150,VS0,VE1749
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1F2AA5SnHoRMh9LjZQe8OjWFDh1ATqVzfBMMJCaO%2FYQUgADtXK%2FVB9fVtQwtpP9ub9sw1AWLrFZNeIzaV%2FBCRcZCIRLnurl0Jiq7%2BXpfo1OsCq%2F03DkrZqAMfKibW2e4Buk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23e04b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/activecampaign-form-block/build/style-index.css?ver=1683079788
188.114.96.1200 OK 70 B URL GET HTTP/3 brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/activecampaign-form-block/build/style-index.css?ver=1683079788
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cecbf6f5be880b9ef74ea4d130552744
daffab2e58d32af70dacb314ba3576c76100c739
1ad68005a2e2f741878ac39abe5fc17b1043c570684a6013ac0aaf057eda4702
GET /wp-content/plugins/activecampaign-subscription-forms/activecampaign-form-block/build/style-index.css?ver=1683079788 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: text/css
last-modified: Wed, 03 May 2023 02:09:48 GMT
etag: W/"6451c26c-46"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1667-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.838281,VS0,VE489
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18fygWLSl2ryA9CYKitB9UwgeDqzjeVMrsSEYOD%2Brn7ApXdqkts2wJvFZQsOzxHKV06K0NLNaFz5I8azphX5vBK5qXco%2Fz%2Be6TNUQeQBSrjnEN4sw%2FikuPghyJoNt7wdBj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb02b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap
216.58.207.202200 OK 14 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap
IP 216.58.207.202:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash 0086e40b6087fd3874dd052456fa1058
8f5e69a5aaa064811e81f5c794f97af169b7c033
e7ef7a4dd9680ad63ad1a1d34b073565462b1dc9c3ece689b9301c459c654e1f
GET /css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 14 May 2023 00:30:47 GMT
date: Sun, 14 May 2023 00:30:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png
188.114.96.1200 OK 88 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash b61de438fac42b921654d204ffa42a1f
6442b4f5abbf5bf465c39ed4d97cdbe21e7643f1
23fea0a65802ec2af52f0128f8f9aecd97c9ab97322779dd083c8123224fd551
GET /wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:51 GMT
content-type: image/png
last-modified: Wed, 01 Dec 2021 19:42:34 GMT
etag: W/"61a7d02a-155cf"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024251.734953,VS0,VE370
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gG9ak2hudNhZ5Z2%2BSx8zE5ah3lTfnvqGWhRoIimNnzTApJqjG90%2BRQi4yYE3K2ll8ORKfoKW0%2FdxOmJQC83SoLqh%2BTwLdNK44XYg0EETcytIKzy31Iu5pQGrOv7bAKfTP78%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08eeeda7b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/js/imagesloaded.min.js?ver=4.1.4
188.114.96.1200 OK 5.6 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (5734), with no line terminators
Hash 1dda7be32d909ff3dd78ba7420c70ad9
25b565675b390118e460d5841a18dc8bfca9f1da
196458b44851dc116932b65c48ab21694fcdba403d3ba3d76ba4b7eba747b0cd
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
etag: W/"6373f725-15fd"
cache-control: public, max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-content-type-options: nosniff
x-fw-server: Flywheel/5.1.0
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1647-BMA, cache-bma1658-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1684024248.841921,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zqi4ptUCgi5LowpSxi5Tv2O%2BERM3Pl6juYLN9bqt7wjI3BZWbzn8xR2JCnsV2p3qokak9ji9d0rqAfz1gZ2KRY4m1yZOn7MUjr8xLNSebVLI9bJEV63quDCg78dsOe%2BOj4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb10b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin
216.58.207.202200 OK 13 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin
IP 216.58.207.202:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash b4eb0bf4c774ca7d967649b44c479ce1
6e0e6d52a136f2e3b9ba18bbcc14a9a37286b498
4acd923ba565f1ceb9f4f99c7880165b9787f82e429cb7d41a53725766ca9f4b
GET /css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 14 May 2023 00:30:47 GMT
date: Sun, 14 May 2023 00:30:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
188.114.96.1200 OK 490 kB URL User Request GET HTTP/2 IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
Size 490 kB (490423 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024247.569722,VS0,VE985
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uLpZPywSk1T%2BbauqpBC%2FA0Q80Qmc0ySvaif7Re1MwDXfBkZlLAruD9GfzW0CWwWKP7XhKuPg4QU1Al6OB2RhWC0uejAtJEvZi7M7PPXc1dVULxh69ib49tOWbTaovk%2F96M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08d4ccc10b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
brandedmedia.io/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
188.114.96.1200 OK 11 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024248.844155,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3VYbtb8XMNUOj0ltDGOzGcPYtT6HdVuej5U0CuUcZN17xITHdsW03g4kycNjbq4B78xxZE2PKxt2%2Fcq9W45z6twUE8ALtE0SAlkhAXoC%2BcZSnIgZaBJ7KQW2ZM3M6n%2FgLnQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb0eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/site_tracking.js?ver=6.1.1
188.114.96.1200 OK 1.4 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/site_tracking.js?ver=6.1.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (1494), with no line terminators
Hash e78b6e7886ecd1ba87c372b6069d0071
cf5625753eeca527dc83287d3efebbf431f0224f
c21172f2f925034215f259ec6de8559446ec9422ee4861f940d7f890b118b5fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/activecampaign-subscription-forms/site_tracking.js?ver=6.1.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:09:48 GMT
etag: W/"6451c26c-57b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.834135,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mkHxlRhFCa1UfDONTrj6L7Kpgqxoy58cACuocAzNMbOlSQUSzIKw5CakFcQRfKoCoNBO0VPuh2yRSEqvHWiPmIt3d8v8llFJLsj2OZ5uSx%2Ftm2WqnoIXcsLCY0osBsNc96A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb1fb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/04/risetoiconic-768x648.png
188.114.96.1200 OK 64 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/risetoiconic-768x648.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 768 x 648, 8-bit/color RGBA, non-interlaced\012- data
Hash 0af23b34b0d507f1448d4cce6604339b
979b7d0d75640e6eeee1391ea939a40cb4d8afcd
f7e9bb2974d43e1ae1b89aaf6b617a7740fdc02e6b0d905b1d3d78c6aed1946b
GET /wp-content/uploads/2022/04/risetoiconic-768x648.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 22:45:02 GMT
etag: W/"6257526e-fbf2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1633-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.792460,VS0,VE694
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2FlsrhMui51OcaWMsb1mwXqMNCqCPw%2BRTG%2BbFcEzJ0fTcuZjotWxONsnFm7fq9W%2FNXwYoKYWg380%2F%2FCQ5UvUKe7N3nHdkbwDc%2Bq2yd1Z2ro7K7jley7PHnClNciKgm6vSdA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e2be46b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/bm-displays-768x439.png
188.114.96.1200 OK 298 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/bm-displays-768x439.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 768 x 439, 8-bit/color RGBA, non-interlaced\012- data
Size 298 kB (297701 bytes)
Hash 263e1018744d541ebe5f0240ba84029d
6e0a6676b58a6d3343cd4acf8714362c741c3e86
e8e000ffb3682f02f8895f224c7ed19d08838f114a24773b819d2fbcbf8ab870
GET /wp-content/uploads/2022/05/bm-displays-768x439.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:50 GMT
content-type: image/png
last-modified: Sat, 07 May 2022 17:16:07 GMT
etag: W/"6276a957-48ae5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1625-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.790971,VS0,VE1548
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1Lv9QvjXv%2B4MHeSItSlUfxdzB74gqxVBFJpYLY6%2F0TDtKmefetA%2FHz9nIe%2BJvMUy%2BoYaDeTFmQumGr4deqxzu4r7hlWHt%2Fg2b1lke537jlATV57TFzvIrrDCD%2Fh3Jjh4Qw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e2be45b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/04/buildyourbrandbg-scaled.jpg
188.114.96.1200 OK 55 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/buildyourbrandbg-scaled.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 2560x684, components 3\012- data
Hash 8a1b75cb38556eb739d705195a3b95c9
5143fd7c08817a062bca9d4a10adef1c47e82664
aa7883d5cdfc855c84659fb67525ac3c3565a3169b1ae542ba189f3a9fe310e2
GET /wp-content/uploads/2022/04/buildyourbrandbg-scaled.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Tue, 19 Apr 2022 05:19:09 GMT
etag: W/"625e464d-d6c1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.660277,VS0,VE726
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p562%2FlwlgLKwTrlcl3BlEwucrnnXuraarokM%2BlWurfOH125VktSxXDfD7ezg2v6Q4elm%2BZ4bkzmI1Bu2ErHFG6Wi%2Fitt0%2FBXYySo2E89Q7L1xp5CWIH%2FhYEkCAyZdPyU6f4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e1edc7b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/gra.png
188.114.96.1200 OK 160 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/gra.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 639 x 401, 8-bit/color RGB, non-interlaced\012- data
Size 160 kB (159491 bytes)
Hash 4910228d3c61cde5a475f5254a3f337d
fd23721ef834c59c8728a0421aacbe1ff1ec5e79
ccbca4270f9cb24d569cbffaae41e4197a7507713eb3f51c4269d3bd3d109774
GET /wp-content/uploads/2022/05/gra.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/png
last-modified: Fri, 06 May 2022 02:53:13 GMT
etag: W/"62748d99-26f03"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.708007,VS0,VE901
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0s0n%2FFk1%2BpUQCB%2B%2BEk9D%2FXQJxCGmKmk0OXXtdONihr0zVvAMvowzbSzblyMzoJJPwKc9IiJLL12Oh4pfGPqOy%2FiQdn4KQdGwGnkF3mZVy22fA6ebH5wEJ%2B7oinfDOv5%2BU6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23e03b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/css/classic-themes.min.css?ver=1
188.114.96.1200 OK 217 B URL GET HTTP/3 brandedmedia.io/wp-includes/css/classic-themes.min.css?ver=1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 723bbab25ceea9dadba405ab02269a2d
ca26599ff3d31e01e2215965e790ec4f270c0343
18aa9922624232656ab2f2239fa490a6b75e3e99bbdfff63f95a4b7ec376834d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-d9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.843034,VS0,VE487
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCF3%2B0L1kr5tVu%2BhxCHXc3IkBnNZSsaM6ztNIBvyw3LWJuiskpKkHp%2FJ4UtVAYvQddaZgIJWhqTlsVEYgdLFwcBsl7vy106buezkEDUENV2H5QxN5IZOhLYvb0zMbJR7%2BjA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb03b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/bk-browsers-e1651959289715.jpg
188.114.96.1200 OK 58 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/bk-browsers-e1651959289715.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, PhotometricIntepretation=RGB, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop 23.3 (Macintosh), datetime=2022:05:07 16:30:05], baseline, precision 8, 1920x974, components 3\012- data
Hash fb0b2a74b33644bd8f0904b9a8de9fcb
32670215342c5ad6ddd529921ce0edee6fdfd8cb
f354c76134a04c4e80ca10361998ccf4261fe1e04e129c772e01103597bc1e09
GET /wp-content/uploads/2022/05/bk-browsers-e1651959289715.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Sat, 07 May 2022 21:34:49 GMT
etag: W/"6276e5f9-e298"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1620-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.687784,VS0,VE793
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ipZ01%2BWxlZayntvS73AWl6TaM61Z1J%2FdmmX4gngVANbF3aRu4PrrkwmuUUFWfAUt1Rs2ru3DokAdo83KP6XbqOjUIVd6vcN%2FhTps8vRRqjUQYDKahS17VILX71iTqCZhhbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23e07b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/06/homepage-bc.jpg
188.114.96.1200 OK 163 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/06/homepage-bc.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.0 (Windows), datetime=2022:06:07 23:55:55], progressive, precision 8, 1920x1080, components 3\012- data
Size 163 kB (162763 bytes)
Hash d346f4a15c760ea0bce5dbd7d36ecd58
f74063003bc2367ebe9d7d31c15db0ed4eff8084
886464c38568bee4bfd99fe60647ba06abf26cad182d1b9c4a60a406f505a8d2
GET /wp-content/uploads/2022/06/homepage-bc.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Tue, 07 Jun 2022 15:57:46 GMT
etag: W/"629f757a-27bcb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.664247,VS0,VE844
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TqrDqGVt%2BPO2NU%2BCb5PKVXB0DPorhm2McsWIu6weB5b8IFKyv9mAsuOk47ACMoMv1PChq2AOkdfCd1t3xa98vn6vMSEu0vzUwPeEZMgr5NXI6dQLHVuMuX4%2F99Un1EXUQQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e1ddbcb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
app.paykickstart.com/collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer=
143.204.55.20200 OK 42 B URL GET HTTP/2 app.paykickstart.com/collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer=
IP 143.204.55.20:443
Certificate IssuerAmazon
Subject*.paykickstart.com
FingerprintB3:AB:44:35:75:D9:11:DA:08:C1:BD:66:4D:E6:23:00:6B:1F:83:76
ValidityMon, 20 Feb 2023 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d
GET /collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer= HTTP/1.1
Host: app.paykickstart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 42
date: Sun, 14 May 2023 00:30:51 GMT
server: nginx
cache-control: no-cache=Set-Cookie, private, proxy-revalidate
content-encoding: none
expires: Wed, 11 Jan 2000 12:59:00 GMT
last-modified: Wed, 11 Jan 2006 12:59:00 GMT
pragma: no-cache
x-frame-options: DENY
set-cookie: laravel_session=eyJpdiI6InorWStuUGRtalB3UEhhamhNeXpVbkE9PSIsInZhbHVlIjoiNHBhY0ZUU0FjM0p1cjJQSU9VbWl3QU14OURFWmdodGpJXC9DYitRdTNUeURuSE9cL3pmUm9qaklNWUVGUGRVNWlmem9Tak9KdmhiZDdIVURIVDF3UlgrczhObEc3MjVSWmtoTUVtVmxoYk9tMlREZU9DV3lXcnZ0N0poNHdWOWlOMSIsIm1hYyI6IjJmNWMyNmMxN2Y0NjAzZjkxOTQ1MmJmYjg3M2EyNDM5NWI3ZWU0OTdjYTg0ZWVlN2ZjZDcyMGM5ZmZkMzJjMDQifQ%3D%3D; expires=Sun, 14-May-2023 01:30:51 GMT; Max-Age=3600; path=/; secure; httponly; samesite=none
pk_vid=eyJpdiI6IjQzNzNVNlRJblQxNHdDb2pGakI0VUE9PSIsInZhbHVlIjoieXNhcUNTWVZobFFSc0V2TEhZSTl1M0NyYTc5dzk1XC9ucGpMTGQxQXJRbitnOHpkaWZ4alhLSlZOVUJ1WUpXdVg3UEhQZXp4RWtUODhIVXJUQ0swOEtqbFV1aGtQOVBneG1oMngzS2tsWnlvPSIsIm1hYyI6Ijc2OGI4YmNmZmMwN2U5M2ZjZTJhYWFkZmVmYzAyYWEzODlhNjkyZmZlYTI2NTdjNjcwNzJlNDEzYmQ4MDU4N2YifQ%3D%3D; expires=Fri, 12-May-2028 00:30:51 GMT; Max-Age=157680000; path=/; secure; httponly; samesite=none
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dP6alPMlfxPD28FLRoSc3WHcBE4iptY1QYFEI2pFONGVIwjxpgItjA==
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/uploads/2022/06/footer-bg-4.png
188.114.96.1200 OK 894 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/06/footer-bg-4.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 2077 x 574, 8-bit/color RGBA, non-interlaced\012- data
Size 894 kB (893993 bytes)
Hash b6b1aaba3fdd235dafc3d6f442f32ea0
86c096fca4640b0821065c6350f3144fb9d17f40
44f8c6730a74a8d7ef252738dc1192aa0c030dc7c2e57f045e9843138b0dee28
GET /wp-content/uploads/2022/06/footer-bg-4.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/png
last-modified: Fri, 17 Jun 2022 00:33:32 GMT
etag: W/"62abcbdc-da429"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1658-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.746175,VS0,VE1067
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wYBGsCbdrHYFc2ALanuvdhbmYMReF6DTFYpMA5kbeMBXRxVP2kRBG1J4NgzmOwpbwSE7g%2Fu%2B26yZ84DdTPX0WJMIH0nZSwY2mrrHWba7MP4aAhT8MGu35PGq%2BZ0iL%2ByT0P0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e27e29b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
104.16.14.194301 Moved Permanently 0 B URL GET HTTP/2 app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP 104.16.14.194:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint76:93:26:C7:54:DD:C9:C2:34:D3:16:AF:2B:26:16:E1:9A:02:43:B1
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Cookie: __cf_bm=xB.V3jG9xFZckknUCluxT3_F_xDYje205yMtyamZGPE-1684024247-0-AYuBWgFYRrz/T++aSPO6In4ceFoyiWGvdYQ/QOGoLY8ilbozWp+cMl3P1IBjrfwJOHEkGxiloSWhxVx6lZaT33DdRXy4qG9U6yPRHliZWdLi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 14 May 2023 00:30:49 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 7c6f08e4aa471bfa-OSL
age: 640
cache-control: public, max-age=1200
expires: Sun, 14 May 2023 00:50:49 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.18.39.181403 Forbidden 0 B URL GET HTTP/3 www.clickfunnels.com/assets/cfpop.js
IP 104.18.39.181:443
Certificate IssuerCloudflare, Inc.
Subjectwww.clickfunnels.com
Fingerprint16:12:37:68:E7:D3:AA:D1:C7:D6:81:A8:06:E7:C6:1A:F7:6A:C4:C3
ValidityTue, 25 Oct 2022 00:00:00 GMT - Tue, 24 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Cookie: __cf_bm=xB.V3jG9xFZckknUCluxT3_F_xDYje205yMtyamZGPE-1684024247-0-AYuBWgFYRrz/T++aSPO6In4ceFoyiWGvdYQ/QOGoLY8ilbozWp+cMl3P1IBjrfwJOHEkGxiloSWhxVx6lZaT33DdRXy4qG9U6yPRHliZWdLi; __cf_bm=KCn9RB.aGFtai0eX_zBsUq9AYSm0mId4juemSi5KplM-1684024248-0-Ac8MoTFMCUPUCSJKTxV6X4CoHoocRyZRBANQtMxCLPy5ezoRcaEHDYqTWUrS61v1kAECNOv4j25C8RqH1+N+k9U=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 14 May 2023 00:30:49 GMT
content-type: application/xml
cf-ray: 7c6f08e4db50b523-OSL
vary: Accept-Encoding
cf-cache-status: BYPASS
x-amz-id-2: /QbGnZFmquqI5zb2I+U/pPqohiNZBSBJs9r7hgrqJu6lJidA6JxsOeUuny5Tmr+uLe4y/3kuGpI=
x-amz-request-id: 7WMT7VFJWMFW398X
set-cookie: __cf_bm=tH1ZVGCKlonNAAjzySx4zDE5iFagqSLnaGgAVIZqz7M-1684024249-0-AUQ2HBmasHgDjtBbl4znuZPgArE3YJRqyYJBy18eUOkrfQRM3A24xhsh9oO9/SBEQkvBLel7/Wwf62lp97oTlt8=; path=/; expires=Sun, 14-May-23 01:00:49 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
s3.amazonaws.com/img.paykickstart.com/tracking/tracking-script.min.js
54.231.196.128200 OK 3.8 kB URL GET HTTP/1.1 s3.amazonaws.com/img.paykickstart.com/tracking/tracking-script.min.js
IP 54.231.196.128:443
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint94:B9:7C:21:8C:A0:94:8C:1A:34:F7:CB:48:59:A4:A2:B4:E5:81:03
ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 20 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (3816), with no line terminators
Hash c35790f59d360cf2c92a027be84e4971
16d049e8f2005684c5126aa216b07717c97f64e1
27f7e992cefa0d014959cf7ca1ce1756e321130ceac42c3867cb8ffa035deda0
GET /img.paykickstart.com/tracking/tracking-script.min.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 8By1POhK6kO/Itjsc5nPW9bNTGbw9M98yzrA/sQ/M56elP5Ni9Tx7KqebGVdi77dCISmcrLULnA=
x-amz-request-id: 7WMZKGE1FRX0XHBG
Date: Sun, 14 May 2023 00:30:50 GMT
Last-Modified: Thu, 10 Feb 2022 10:37:20 GMT
ETag: "f6b70eee1655adae3d4d2297f870c31b"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 3778
brandedmedia.io/wp-content/themes/thrive-theme/style.css?ver=3.15.1
188.114.96.1200 OK 18 kB URL GET HTTP/3 brandedmedia.io/wp-content/themes/thrive-theme/style.css?ver=3.15.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (17995)
Hash 15a1b613ddb5405d98306862f6360a94
032948f72a727419fb9ec4eb3805c6c02392341b
a7060cee9718a95acdb1aa44172e3e2bd4f99167ebcbcee3796d88d4d14305e3
GET /wp-content/themes/thrive-theme/style.css?ver=3.15.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: text/css
last-modified: Wed, 22 Feb 2023 02:53:26 GMT
etag: W/"63f583a6-4850"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.843114,VS0,VE129
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uUoX%2FTys6iBSqYN2ydf9LGDWJgFf1qQ92jciMFLsQsCJzNjLGR6%2BPjmO8O%2BGcsVYANliKplq2I1C5y4IkQsn1isBz2jJCkvZQmhP9WEPJgCg8xqsKlKq35TEJw8K7YyaUt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb09b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-list.min.js?v=3.20&ver=3.20
188.114.96.1200 OK 4.1 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-list.min.js?v=3.20&ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (4222), with no line terminators
Hash b295ad00a9859a963db99f13eb46cd52
1b73c14544db7a5f7b87d163ed5e196cedff6634
6059957afbc98fcfc6e56ee3ebc591a8c41db938da7071564e24a54fa6993ec8
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-list.min.js?v=3.20&ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-1020"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.862471,VS0,VE490
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IGHulndkB33AcWpb9IdABj3%2BbpfWros%2BIGnIaeACgqFK9Ul%2BunWapWTonzW8QT0NKgqHVwThVqChwZ40aeaYprhzN7zBk%2F4YtqWLLwDN3r6spwM7IrHRiNKj04%2F34nmYafw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb29b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F
104.18.42.105200 OK 0 B URL GET HTTP/2 trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F
IP 104.18.42.105:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:67:4E:CC:4A:0F:16:72:90:95:A2:D6:A7:50:E7:85:F3:84:7E:DA
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
x-envoy-upstream-service-time: 10
x-powered-by: PHP/8.1.18
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c6f08e4ec660b3d-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
216.58.207.227200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Hash 8074c760fbdd366fc1c33ce702911abf
b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254
GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 May 2023 17:57:07 GMT
expires: Sun, 12 May 2024 17:57:07 GMT
cache-control: public, max-age=31536000
age: 23621
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/dropdown.min.js?v=3.20&ver=3.20
188.114.96.1200 OK 3.1 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/dropdown.min.js?v=3.20&ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (3247), with no line terminators
Hash 8d56c30a230d37c03db354ff575b322a
905d48598a77bd4490e335101adf9311f96da563
022c47be110773cdc98778d14b6974bb59dd740c0ded3055b60ec200b85e7e5a
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/dropdown.min.js?v=3.20&ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-c39"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1620-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024248.864232,VS0,VE12
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FFxzIBcSPvi6vnxFJ%2BIrnoXM9zQkwijezwfs9cuX8E6miZhSWzi6rZBm8UYbhMAt0Hq7dlx6K7KGsGPBbzmqVcM%2F3KROyFWLlWCNHxNvxgtUPAWwN0lcA7K7%2Br%2BkyFby2W0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb28b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/template.png
188.114.96.1200 OK 125 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/template.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 639 x 397, 8-bit/color RGB, non-interlaced\012- data
Size 125 kB (125374 bytes)
Hash 2dc65863679479b65450c360fc400553
3a4c670a994b5acf52d08eee67da4ce8ddc8b0eb
42470c665ebef3ff3100fbdf84f710b4a54474acb502650b78e20feb99865064
GET /wp-content/uploads/2022/05/template.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/png
last-modified: Fri, 06 May 2022 02:41:58 GMT
etag: W/"62748af6-1e9be"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1662-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024249.716996,VS0,VE3
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cmft7%2FmF5UpXnBjOUneqfMxtZQXRCSAmMVX7T%2FhffL%2BVHrc8YMEKS%2FOdQzPSsBTZaYq3z2RDUYs%2BZ5Ian%2BjHmlgfgFH6e3RGBgCFp8kKSSizLTzZuER06sOKVZEeEQ0Tmno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23e06b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/06/Website-video-format.mp4
188.114.96.1206 Partial Content 943 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/06/Website-video-format.mp4
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 943 kB (942853 bytes)
Hash 0ddd46e6983f82abe2708398eeedbc2b
7b9788d7127573e4d8edf1910d89af102fa3006f
93269f2d8578f4be60d80728fb09b425f67cc720f2e10eb58cf2a2ffd6e71696
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/06/Website-video-format.mp4 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://brandedmedia.io/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Sun, 14 May 2023 00:30:50 GMT
content-type: video/mp4
content-length: 8645102
last-modified: Thu, 16 Jun 2022 02:25:50 GMT
etag: "62aa94ae-83e9ee"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1652-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.093852,VS0,VE1633
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
cf-cache-status: MISS
content-range: bytes 0-8645101/8645102
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cMny9Z95N6VcCeaLQr5eK84SCabPGWeK9D6DyIAMRQwqbWARPx7clkH72SwZKBf2thMrOZb0D9hQPuUtUknqcmaiz%2FQ0AYIilwcyr79KqVVuLfGjUolXTJOLJu%2BCUXZsk7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e4aff9b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap
216.58.207.202200 OK 18 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap
IP 216.58.207.202:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash e4dd3e23dd34b735effc3fc5aabfccb0
047b62c56594ef45395070bd29d7aff96737d7fd
7940ba43bc6f1c8977f6e942cb7ad6b7be59364d3189f80b4a939557fdbda6f2
GET /css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 14 May 2023 00:30:47 GMT
date: Sun, 14 May 2023 00:30:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/uploads/2022/05/trisha-jeff-vip-workshop.jpeg
188.114.96.1200 OK 177 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/trisha-jeff-vip-workshop.jpeg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2, software=Luminar AI], baseline, precision 8, 1000x616, components 3\012- data
Size 177 kB (176741 bytes)
Hash b998aefef82f7db7bf6fdbd1d37ff221
165117e98e89e8dbcf5811ac80ba0425d3f9afab
4f5447b7aca520321d96b16d96d29854da339e5049326cccba7d0db7d392a58f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/05/trisha-jeff-vip-workshop.jpeg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/jpeg
last-modified: Wed, 04 May 2022 20:02:37 GMT
etag: W/"6272dbdd-2b265"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1684024249.727668,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xear%2BEHwr5ahealTpafy%2F5ZhkoXph6kSEZhXAk13rD80oV%2F3f7KHA2XxKR%2BLWtGs7%2BqsrYErU%2FEED9dnmeJIO3dD9uTZW2mFQLCik1rXFgKqXnwQjZK2uUkl9C1yieyQtdU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e25e18b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/04/White-Horizontal-300x44.png
188.114.96.1200 OK 6.8 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/White-Horizontal-300x44.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bdac77f82279781afa6536a90ce4470
b717f612badb6eeb4404305dee98438d8bb4f67c
d971d634914a317e68d386df6568c9df6f8e433d8834976a85ace23de273cde3
GET /wp-content/uploads/2022/04/White-Horizontal-300x44.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/png
last-modified: Thu, 14 Apr 2022 04:26:45 GMT
etag: W/"6257a285-1aa7"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.795998,VS0,VE557
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YQNpnpVPOi6Efj5mnSUGSFgK%2BHHjq7qndvC7Ph7RiVLv0n0EHcFOO4H2aXZryIVdWWEyyo0%2F2DDvc76wDLT9q%2F%2BC6A9LnhiSLhvQeb0Yky06OQBUFNpqgi67cOKMrD6thMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e2be44b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/04/getitall-bg.png
188.114.96.1200 OK 1.6 MB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/getitall-bg.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
Size 1.6 MB (1550216 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2022/04/getitall-bg.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:50 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 22:46:05 GMT
etag: W/"625752ad-17a788"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1667-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.681780,VS0,VE2013
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=En6s6s3BG2V7lX3KrlNmFJn0XroMaqkvNOlXgCsg20S9hKL81E%2FVkUSQkHbCcF9r6QmAdseaqeeP%2B8iI%2FCAdhB3U%2B3G%2FUwxiVB9GB17NQyHUYcove8wzHiVCJ1iu%2B82XVVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e22dfbb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin
216.58.207.202200 OK 13 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin
IP 216.58.207.202:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash b4eb0bf4c774ca7d967649b44c479ce1
6e0e6d52a136f2e3b9ba18bbcc14a9a37286b498
4acd923ba565f1ceb9f4f99c7880165b9787f82e429cb7d41a53725766ca9f4b
GET /css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 14 May 2023 00:30:47 GMT
date: Sun, 14 May 2023 00:30:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
104.16.14.194301 Moved Permanently 0 B URL GET HTTP/2 app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP 104.16.14.194:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint76:93:26:C7:54:DD:C9:C2:34:D3:16:AF:2B:26:16:E1:9A:02:43:B1
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 14 May 2023 00:30:47 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 7c6f08dd9f5f1bfa-OSL
age: 638
cache-control: public, max-age=1200
expires: Sun, 14 May 2023 00:50:47 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
set-cookie: __cf_bm=xB.V3jG9xFZckknUCluxT3_F_xDYje205yMtyamZGPE-1684024247-0-AYuBWgFYRrz/T++aSPO6In4ceFoyiWGvdYQ/QOGoLY8ilbozWp+cMl3P1IBjrfwJOHEkGxiloSWhxVx6lZaT33DdRXy4qG9U6yPRHliZWdLi; path=/; expires=Sun, 14-May-23 01:00:47 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.6
188.114.96.1200 OK 7.9 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.6
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (8105), with no line terminators
Hash d538ea2414d22ae85dd94d028e1d62d5
6d75e948c4aca1ec2f1fc92bc58210a5c143bfc0
6b60650614a36234cad03bea36b82d6ca5118a3d5d9efe6cc4389b5ad64a1b84
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.6 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:13:30 GMT
etag: W/"6451c34a-1ef2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1654-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.862228,VS0,VE487
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3aiC4ZJDAuqNHr7OrFoBrhhesLtLuLcK8RJYGoJ4bcWo7ljwtZkNS6ShLS%2FPjzRvQfd5MstwD5DxSl9JX8q88yb93Sxp5%2FaA0Uq%2F7NxrI5knpH83V9tSnD82plR7b2N99Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb2ab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
188.114.96.1200 OK 19 kB URL GET HTTP/3 brandedmedia.io/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 20:31:33 GMT
etag: W/"6373f725-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1639-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.945553,VS0,VE491
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nwM6WQ5Qdifi3SqFLY4daMHl30tKYpZQjMypR19cSAdLsQOCtU0f29ErQOoPNpH6PZXYnjGRTcoxtqmrHy2KnD%2FTOFJ%2F1H5KG5Gea242LPOetAscQjF5K8K3t9WzEzbmVp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dd6b60b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/04/bg-04.png
188.114.96.1200 OK 6.8 MB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/04/bg-04.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
Size 6.8 MB (6756200 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2022/04/bg-04.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/png
last-modified: Wed, 13 Apr 2022 22:45:43 GMT
etag: W/"62575297-671768"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1640-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.713988,VS0,VE1143
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oo%2FRcDmcwOImjojoaFfAiNwIcsabngxeOL%2FdPPkA1ECq%2BAE6UXK5Sh1cah60ZpJZQAyqiAniS09VBRMbsEW7Ib1gEieNL78jH34NSuT%2BPvewDhTuEnNFy27gRmsNZxn4A2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e22df7b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/05/Social-Media-Covers.jpg
188.114.96.1200 OK 413 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/05/Social-Media-Covers.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=599, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=961], baseline, precision 8, 935x583, components 3\012- data
Size 413 kB (413284 bytes)
Hash 7760bdb46976f1e2783973a25917de61
03b6f10cdbeb080404e7e73c743bbf69c0767da3
d666bf264d57ae075762627b5255eb4492703116ba4460b4c4a918d77e52af08
GET /wp-content/uploads/2022/05/Social-Media-Covers.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/jpeg
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
etag: W/"6273e8c8-64e64"
cache-control: public, max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-content-type-options: nosniff
x-fw-server: Flywheel/5.1.0
last-modified: Thu, 05 May 2022 15:10:00 GMT
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1679-BMA, cache-bma1657-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1684024249.704208,VS0,VE4
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L0Fx4y2tUn2PKsnetHfTGlTMnCT6euK9P9qcKBB95bBthhl24DIWDY%2Fpr5kP78DEIP%2FCv5BH9YhX%2FlgkbQDWhZeXcENZCiktw%2BtXeaXgwhXIj6Rw4KIRLXZukyPlmiiyp2Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e23e02b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/plugins/testimonial-slider-and-showcase/assets/css/wptestimonial.css?ver=2.3.2
188.114.96.1200 OK 67 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/testimonial-slider-and-showcase/assets/css/wptestimonial.css?ver=2.3.2
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash e86ce53ca8a62fce3f28b616fd27ec06
90455262d47d720da9dc93c298a52f144f19a45a
a0b3cb4968bff697a32c16807d9b87515f7bce29653d578892570f5f1598a559
GET /wp-content/plugins/testimonial-slider-and-showcase/assets/css/wptestimonial.css?ver=2.3.2 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: text/css
last-modified: Wed, 03 May 2023 02:14:19 GMT
etag: W/"6451c37b-1049c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1675-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.839488,VS0,VE491
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=knWKJB6j96OA7AtFtCdyLvA8znh3yxSSrNwDSopvR%2BDCOJTEnlBjEu0FU0ksEkr4XHDEYk9ZKnD8482URTxW7Xc0P17d%2F5ejwJaTjgvWbhpzIy8%2BB9YZI3DhtjXow1FYKcs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb05b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/landingpage-front.css?ver=3.15.1
188.114.96.1200 OK 723 B URL GET HTTP/3 brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/landingpage-front.css?ver=3.15.1
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (724), with no line terminators
Hash 0a965ae3c8550995d2b2ad5e06608c9f
52c7ee77fb5c0c9801759e2fc0933ac5b65c7ad0
978f3820c8c42cc6f04ed7f7b4ff46df25c2f9d249876c5cd8dcad43efde3b33
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/thrive-theme/inc/assets/dist/landingpage-front.css?ver=3.15.1 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: text/css
last-modified: Wed, 22 Feb 2023 02:53:25 GMT
etag: W/"63f583a5-2d3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1679-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.837759,VS0,VE498
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BM2ZvRecNt%2B%2B2MtCIDs%2FrZnDxuetAzqQtnaUuJRLrmxIxICXv7S52IM5u4XPwzwX%2BI6C%2B9ZtoKrcIfZRv24FK06pq0810CrEoMF%2FFsYBGOlB1DT1ENDpd3ZDPwT8ZPQcSjw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dccb08b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-grid-compat.min.js?v=3.20&ver=3.20
188.114.96.1200 OK 1.4 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-grid-compat.min.js?v=3.20&ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (1450), with no line terminators
Hash 76a46ef66e890b50fe3bdd0e84ca05d1
52fce953844a1a02cf1e9db65d30d67da2ef8efe
df633317f9139feabaa34b0e5b20c46835358e4c69cf4e2e96d70ffcb0b7994b
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-grid-compat.min.js?v=3.20&ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:47 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-57c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.863642,VS0,VE129
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fOqlhvgY6vWDPpsBI1qmfl2ADtZ9gs7kVcTf4k5QoGQr6WiMgrXd60b16gvu0Webg03fr5sq4y4uP%2Frmed63x5C1wIBrlFrDP7azHNZZZnT9Eoh%2B0B4Oak7nH1kXIFzVfJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb25b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png
188.114.96.1200 OK 88 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash b61de438fac42b921654d204ffa42a1f
6442b4f5abbf5bf465c39ed4d97cdbe21e7643f1
23fea0a65802ec2af52f0128f8f9aecd97c9ab97322779dd083c8123224fd551
GET /wp-content/uploads/2018/08/cropped-BrandedMediaLogo-solo-1.png HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:51 GMT
content-type: image/png
last-modified: Wed, 01 Dec 2021 19:42:34 GMT
etag: W/"61a7d02a-155cf"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024251.734953,VS0,VE370
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sW6XAH34SvgbDCrpafXhaplx7cG%2F8wC4NjOZQ%2Fe%2BmssbtiukSsMCcaH23f%2FafrzlcuZJLiSt%2FS%2Bc%2Bn6XtWLev5B%2FREj%2F2zlQeLQ6H9SSS2bV6Rx9B9AFPqeHMWHyfQ1Oa3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08eeeda6b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
s.w.org/images/core/emoji/14.0.0/svg/1f635.svg
192.0.77.48200 OK 1.3 kB URL GET HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f635.svg
IP 192.0.77.48:443
Certificate IssuerSectigo Limited
Subject*.w.org
FingerprintB2:4C:20:97:37:FE:82:F3:56:5E:3B:F9:5C:EA:7F:81:14:89:D7:0E
ValidityTue, 06 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1362), with no line terminators
Hash 52ad7e4b81a994ab3a35c920faa7819d
593513c26e425f077e65b86be1c3f120c3a6e698
f4ae8aa6fd5629e1e64b24821656d7f81daca4084949cae9b5737b8f5c5cebdf
GET /images/core/emoji/14.0.0/svg/1f635.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/svg+xml
content-length: 1340
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/lead-generation.min.js?v=3.20&ver=3.20
188.114.96.1200 OK 19 kB URL GET HTTP/3 brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/lead-generation.min.js?v=3.20&ver=3.20
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (18679), with no line terminators
Hash fa349aabc820a30ada117ace120fb054
bfcdade5451efca307198e1cdf205dc8748baf4f
38c2bdcd44040920e46948bd56689a6c6f71754a48b13fefcaf41fec19cef902
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/lead-generation.min.js?v=3.20&ver=3.20 HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/javascript
last-modified: Wed, 03 May 2023 02:15:05 GMT
etag: W/"6451c3a9-48f7"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024248.863575,VS0,VE131
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TUxFp6Ymxq2Yvy5Yql9%2FJ81%2FPbQ0E2ncO8QS%2FaBqeBFaNneVSDgmyCqqFlT%2BP%2BGdfh2%2BmDm8U3JqnruPQctJK8%2BZsyI4ajHzz12xNNl%2FEx%2F0bDLpJjdtSYCMjTaFmv%2B933o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08dceb2cb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.clickfunnels.com/assets/cfpop.js
104.18.39.181403 Forbidden 0 B URL GET HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.18.39.181:443
Certificate IssuerCloudflare, Inc.
Subjectwww.clickfunnels.com
Fingerprint16:12:37:68:E7:D3:AA:D1:C7:D6:81:A8:06:E7:C6:1A:F7:6A:C4:C3
ValidityTue, 25 Oct 2022 00:00:00 GMT - Tue, 24 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Cookie: __cf_bm=xB.V3jG9xFZckknUCluxT3_F_xDYje205yMtyamZGPE-1684024247-0-AYuBWgFYRrz/T++aSPO6In4ceFoyiWGvdYQ/QOGoLY8ilbozWp+cMl3P1IBjrfwJOHEkGxiloSWhxVx6lZaT33DdRXy4qG9U6yPRHliZWdLi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 14 May 2023 00:30:48 GMT
content-type: application/xml
cf-ray: 7c6f08df5d611c0e-OSL
vary: Accept-Encoding
cf-cache-status: BYPASS
x-amz-id-2: vVae8/tD8bUvSJkZtydvvx5s5PUIG0y1sOWGFtArhlZMAjUOnuaWvI9kB/sEG27DM//LQxE/bd0=
x-amz-request-id: NJKTT8BY0AF4FGPB
set-cookie: __cf_bm=KCn9RB.aGFtai0eX_zBsUq9AYSm0mId4juemSi5KplM-1684024248-0-Ac8MoTFMCUPUCSJKTxV6X4CoHoocRyZRBANQtMxCLPy5ezoRcaEHDYqTWUrS61v1kAECNOv4j25C8RqH1+N+k9U=; path=/; expires=Sun, 14-May-23 01:00:48 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5
142.250.74.168200 OK 163 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5
IP 142.250.74.168:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2709)
Size 163 kB (162678 bytes)
Hash c8bc5671e21b872f4ef99e13964339fb
9eb752040cfe14fe31b6dc98fd65105ab71181a3
998d278b793f6ec82ce931894bb4e39cb9be17a69d472d0314890b8ce50a15b0
GET /gtm.js?id=GTM-5HJNHV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 14 May 2023 00:30:48 GMT
expires: Sun, 14 May 2023 00:30:48 GMT
cache-control: private, max-age=900
last-modified: Sun, 14 May 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
brandedmedia.io/wp-content/uploads/2022/06/Thumbnail-1024x576.jpg
188.114.96.1200 OK 82 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/06/Thumbnail-1024x576.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1024x576, components 3\012- data
Hash 439c205a9d77ceb57863fbb4440b96ef
0ef48c9c2ccce343597162b98ac30731c70a3120
e7cafd0ad6ed1597fc05aeb694561510772bff9ee69839f67c20d33ff7610e9a
GET /wp-content/uploads/2022/06/Thumbnail-1024x576.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:48 GMT
content-type: image/jpeg
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
etag: W/"62b1d2a5-13e88"
cache-control: public, max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1
x-content-type-options: nosniff
x-fw-server: Flywheel/5.1.0
last-modified: Tue, 21 Jun 2022 14:16:05 GMT
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1680-BMA, cache-bma1667-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1684024249.718981,VS0,VE4
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a5gOwhnBnG%2BH4%2BH4Pw1TDLz1EnWd5LOmXJL%2BOzfda4MiM8aiCBZDJhUqz%2F82U2PGdid2lp0L7Tzvi6a4%2BKhgnecXMxZzXB2JCpX7A6CwtYsArrqdbOj2Nc%2FKgrvozoA3Fyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e24e0eb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/07/jeff-semrush-1024x576.jpg
188.114.96.1200 OK 67 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/07/jeff-semrush-1024x576.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1024x576, components 3\012- data
Hash 51159cdb8d3dcce8c4061985f4016599
1806801177d2d68f670850d5eae65895fee15f52
aa4f7e0cd83cba1d055ff75acbeab42d00c8d0e1108c56881b2d8bcfe07a9441
GET /wp-content/uploads/2022/07/jeff-semrush-1024x576.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Tue, 19 Jul 2022 17:51:41 GMT
etag: W/"62d6ef2d-1064e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1631-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.721595,VS0,VE660
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sCMh2BTbIcsS89oojSlwrtODG9crpYBna9yIX0%2FrcgjcSNF%2BVJuDZwkM95PTcTP2rTXr9mEem%2FUSoyJlCtPJvQRJT7H99vbmQ%2FVZb04jeiestAjPE39QHKkCpx2r1dXddFA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e24e11b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
brandedmedia.io/wp-content/uploads/2022/06/36-1024x576.jpg
188.114.96.1200 OK 84 kB URL GET HTTP/3 brandedmedia.io/wp-content/uploads/2022/06/36-1024x576.jpg
IP 188.114.96.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint67:EB:B3:1F:48:C7:10:4C:AD:9C:D3:3D:8E:6C:A8:4F:81:C9:93:0C
ValiditySat, 12 Nov 2022 00:00:00 GMT - Sun, 12 Nov 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1024x576, components 3\012- data
Hash 84fe6498acfc8cd54af3ec8326dcc571
4738648c68235257369d6c2439b8e256d4fee271
aecefd1d37ed5a3f7e88f6a0a0a84573ffa171a5eff0ec8c4706a2fceade827f
GET /wp-content/uploads/2022/06/36-1024x576.jpg HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 14 May 2023 00:30:49 GMT
content-type: image/jpeg
last-modified: Fri, 24 Jun 2022 04:10:21 GMT
etag: W/"62b5392d-14793"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: 9ko8xsa2g6
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1648-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1684024249.727716,VS0,VE561
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8D2Cqc8PsjUWrqvUISiFSM88jtXlu8p4Ak38UjgfyqnCNIzJ6BbofdDqtFNYHyz%2Bb4UVlDaXur6GmZxCF7NRMVLt%2Bpamt6Ngq48CnJjgUhB10vTBDBCEG2CkJBJhzbigN7E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c6f08e25e14b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400