Report - medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom

Report Overview

Submitted URL
medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
IP
54.167.34.126
ASN
#14618 AMAZON-AES
Submitted
2024-04-25 22:44:24
Access
public
Website Title
DCBL - Red Hat — BANT Deep Funnel Q1 - DC59862
Final URL
medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
medianetworkcurated.com	unknown	2022-05-09	2022-05-17	2023-12-02	9.6 kB	171 kB	54.167.34.126
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-25	455 B	9.2 kB	151.101.65.229
polyfill.io	102644	2013-03-18	2016-02-12	2024-04-24	516 B	570 B	104.18.52.27
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-25	462 B	160 kB	104.18.11.207
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-24	879 B	46 kB	104.17.25.14
use.typekit.net	494	2010-08-02	2012-07-05	2024-04-24	423 B	4.5 kB	23.36.76.122
p.typekit.net	620	2010-08-02	2012-05-23	2024-04-25	883 B	338 B	23.36.76.184
via.placeholder.com	26595	2002-05-05	2017-06-01	2024-04-24	441 B	4.6 kB	34.199.142.69
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	5.5 kB	137 kB	216.58.207.234
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	526 B	17 kB	142.250.74.67

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed
2024-04-25	medium	medianetworkcurated.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	medianetworkcurated.com/lib/uri/uri.js	77 kB	2023-03-07	2024-04-26
Pretty URL medianetworkcurated.com/lib/uri/uri.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:25 Last Seen2024-04-26 00:44:26 Times Seen1499 Hash 64437cd33e2fa1a40e6850ee6388639e 809078716153b491c00852f366ca3f8d6e03df22 96361c580499a6dd7afa83f352fb2a27c159a39daf794e2e6813514be8a8fbe9 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-05 20:49:58 Times Seen141639 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	medianetworkcurated.com/lib/jq/validator/fb.validation.js	2.3 kB	2023-03-26	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/validator/fb.validation.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:15:02 Last Seen2024-04-26 00:44:26 Times Seen176 Hash 0b0aa4474dad1eddbecef64e3965741d 5aa56316fef252cc71edfc14a6442e332070d379 3d995784f4fac1d1fd84d4bdc4d863a253677bdae17f19ef403c8b2fcb6748e0 Loading...

	medianetworkcurated.com/lpScripts/assetsBehavior.js?v=1	21 kB	2024-04-26	2024-04-26
Pretty URL medianetworkcurated.com/lpScripts/assetsBehavior.js?v=1 IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:44:25 Last Seen2024-04-26 00:44:26 Times Seen2 Hash 166a84ddcfcb74d632084d95cf0949c6 4ed88edeff28de706d62a6c64640f04e967169c9 c1ce1f7c5a9049e3399213b48ce3368ed1f047c318670212234c9edf9b5d4647 Loading...

	polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7	103 B	2023-12-17	2024-04-28
Pretty URL polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 IP 104.18.52.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-17 19:37:38 Last Seen2024-04-28 21:47:53 Times Seen99 Hash 59a46dbbf533fd37ef4a33480d1d894a 24fa508fa9ab6e6e0cde097cc4d7f44f07d5fecd 59c2d73d2bc35a4fa8778ccb547d1be85aea093f276e6b8dd698ffecc7390677 Loading...

	cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js	24 kB	2023-04-05	2024-05-05
Pretty URL cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:16:58 Last Seen2024-05-05 11:17:20 Times Seen1138 Hash 2adc424801bb73bee0fa69c743346a66 0ae93cd2e60fe32e1e9027753ad5886c1881fbc3 4d387da2ff19dfde5d0c90c4c0f0f97a8da665a6e0f9553758626d0135c08714 Loading...

	medianetworkcurated.com/lib/jq/cqParams/fb.cqParams.js	2.8 kB	2023-03-07	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/cqParams/fb.cqParams.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2024-04-26 00:44:26 Times Seen186 Hash 55159908ed60d22fd3992732aa7e42d3 57976f1953d1da224e9746296eaac849d69dc5f3 c6b1e77cd2f103d2fa292bf088a9680848a4f94b6c1ef6ee2017c2ba530a03c5 Loading...

	medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf	58 B	2023-03-07	2024-04-26
Pretty URL medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:32:08 Last Seen2024-04-26 00:44:25 Times Seen67 Hash ea4cdd05ea02fc381650389e3513ec3a ae902087b2cde7a4e0d58c1a5eb3fc8310b2c755 f2738345b1d22b55dbcfbd3c3fd7ed8ed4e9ed7ca68e35b86135c2a9211ef4ed Loading...

	medianetworkcurated.com/lib/jq/otherInput/fb.otherInput.js	2.3 kB	2023-03-08	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/otherInput/fb.otherInput.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:02 Last Seen2024-04-26 00:44:26 Times Seen204 Hash 98ddf73de28f5fef1378553ea90dc407 9c76c82d52e3512a2fe53c754b135c5a91f1e97c 0bf7b8a2f9d4ebc076ca6ecbfad616bca4bb4d489ab2d021d935c4854585a0d0 Loading...

	cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js	71 kB	2023-03-07	2024-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-05-05 12:03:38 Times Seen4324 Hash 0f64f3a3a0c620a6756d36abaff1b4a6 4738d7f9885db2cb9370766974c8f6b22e9ec29d 00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b Loading...

	medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf	98 B	2023-03-07	2024-04-26
Pretty URL medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:32:08 Last Seen2024-04-26 00:44:25 Times Seen67 Hash bd1bb06e1eb2513d80d713f827f44a47 e16d34af3ee95682c44aea25471460209bf69f61 a415cd8038dc4ff7548175717a3c9d05be601ac83c010f17066c33bbaa9da799 Loading...

	medianetworkcurated.com/lib/jq/fb.utils.js	34 kB	2024-04-26	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/fb.utils.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:44:25 Last Seen2024-04-26 00:44:26 Times Seen2 Hash 11f86052d649720fd2c42be42c052605 49049a8efdbc1c2ad3e11a18c33f2f323f4f901a 3b08766cc4978736e62d3b45303bc60ad269ba8cf877d980ae41c87635683303 Loading...

	medianetworkcurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js	112 kB	2024-04-26	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:44:25 Last Seen2024-04-26 00:44:26 Times Seen1 Hash 89e3c71f6b53e783f7241e1553d2f2f8 2629f7ae89b84ae185687adde7cf5a746d33b5d4 6e24e9335ead5f816e6fcdef5d22cb10b4e81452adccf77d946f9e903f7b91c3 Loading...

	medianetworkcurated.com/lib/jq/fb.autoSubmit.js	604 B	2023-03-12	2024-04-26
Pretty URL medianetworkcurated.com/lib/jq/fb.autoSubmit.js IP 54.167.34.126 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:32:49 Last Seen2024-04-26 00:44:26 Times Seen204 Hash 0a52231b24a9f8a0f2489261a3aac5db a2d0829b6030e795da8f556c17acedce1fb58a5a aa704c7c7552d95db32e393c6002b674df0e2fe05e586f891e631d9213794813 Loading...

HTTP Transactions (37)

URL IP Response Size

medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf

54.167.34.126

200 OK

9.2 kB

URL User Request GET HTTP/1.1
medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (15037)
Size
9.2 kB (9171 bytes)
Hash
27731b11962cabd5b8c80f3c90de959e
7b6d318b55bda71da41f3ff0a81716bb25ae994f
17fa3497b655cb38d44aed4f53110c0d20c511d761b52b361dc891862590e86f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.2.12
Cache-Control: max-age=0, must-revalidate, private
Date: Thu, 25 Apr 2024 22:43:52 GMT
Expires: Thu, 25 Apr 2024 22:43:52 GMT
Content-Encoding: gzip

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27958 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:43:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 94652
expires: Tue, 15 Apr 2025 22:43:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SPPK7AFywN8HkIMUtoqTCWx356Hw7ptmLmBrrG0FJT8mRJcdjED2x7uVUGwgmoO%2BybshT6vtwDmRviniq3tnSV6kjz5RwzMcX%2FSWpnhv25zpalYZbL82c%2FQkDgaXR0LGdbV8mT3R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a1dac1aa4bb52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js

104.17.25.14

200 OK

16 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (64131)
Size
16 kB (16456 bytes)
Hash
0f64f3a3a0c620a6756d36abaff1b4a6
4738d7f9885db2cb9370766974c8f6b22e9ec29d
00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b

HTTP Headers

GET /ajax/libs/select2/4.0.13/js/select2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://medianetworkcurated.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:43:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 16456
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ecc8659-114c3"
last-modified: Tue, 26 May 2020 03:00:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 795383
expires: Tue, 15 Apr 2025 22:43:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a5wn7g2Fflr6kJf63fpwxhbfGB8xKvRZD%2B%2FNWrgGkOgo8JkRVphg4hgH8zeO0ZXfU6urSLOa8I%2FFruC91UcEtecduPGVVydDI1YhHpQFwwMk3J9Mim%2BTF5uAWS33MAlfl5ZpH%2FB1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a1dac1bd661c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

medianetworkcurated.com/ckeditor/contents.css?t=N94E

54.167.34.126

200 OK

1.3 kB

URL GET HTTP/1.1
medianetworkcurated.com/ckeditor/contents.css?t=N94E
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
ASCII text
Size
1.3 kB (1284 bytes)
Hash
ea34863bd1770c4274d7ed7c58449f2a
1aefe351289c27d7b741cd38baaaad3398e306ba
43b78285c786c968e35d8a44aafb06df291e840e106bd01ddf36df96ce84ff5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ckeditor/contents.css?t=N94E HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: text/css
Last-Modified: Thu, 25 Apr 2024 06:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa5f-b46"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js

151.101.65.229

200 OK

8.4 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (24237)
Size
8.4 kB (8397 bytes)
Hash
8a25965d822705f957a243443d219787
0da4c535b50bdb4dffa3b5fae3e999aeee137cb5
b0f074179d185032b4a2d0e7b1f3476b0626039334a638d47f84ef44990616b2

HTTP Headers

GET /npm/jquery-validation@1.19.1/dist/jquery.validate.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.19.1
x-jsd-version-type: version
etag: W/"5f38-DaTFNbUL203/o7X64+mZru4TfLU"
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:43:53 GMT
age: 8016527
x-served-by: cache-fra-etou8220040-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8397
X-Firefox-Spdy: h2

medianetworkcurated.com/ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css

54.167.34.126

200 OK

6.0 kB

URL GET HTTP/1.1
medianetworkcurated.com/ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
ASCII text, with very long lines (14633)
Size
6.0 kB (5981 bytes)
Hash
787386e5e10ff3bb89548b79491676c9
91954bf6893e1369d4d29eed13684241e114474e
83f3a7c1ef45aec623457bf7f8165b0ec4ef1699a7822796ded8fa4ee7f67562

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ckeditor/plugins/assetImageEditor/styles/assetImageEditor.css HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: text/css
Last-Modified: Thu, 25 Apr 2024 06:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa5f-392a"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1699654719897

54.167.34.126

200 OK

2.0 kB

URL GET HTTP/1.1
medianetworkcurated.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1699654719897
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
ASCII text
Size
2.0 kB (2038 bytes)
Hash
f28e6bc5696e20076b3cb064f2c417f6
a9ebb438302f1db0c69872ea6be8079ba4a735a2
a0704f0c05be937489489707514c1a7304790f42a6e3a569536935c0bf3c1dbb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1699654719897 HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: text/css
Last-Modified: Thu, 25 Apr 2024 06:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa5f-1868"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/ckeditor/plugins/lpLinkV2/css/styles.css

54.167.34.126

200 OK

681 B

URL GET HTTP/1.1
medianetworkcurated.com/ckeditor/plugins/lpLinkV2/css/styles.css
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
ASCII text, with very long lines (2158)
Size
681 B (681 bytes)
Hash
20944bcec784ce7e2b95b62808da9869
29fa6fc754e5f8cda684cfcadad4b996f7404e61
479da2477e3d7631c8cca6c411d1b2afad9d5e66bc6bb7acc8b1bdafadd75499

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ckeditor/plugins/lpLinkV2/css/styles.css HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: text/css
Last-Modified: Thu, 25 Apr 2024 06:38:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa5f-86f"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/fb.utils.js

54.167.34.126

200 OK

8.6 kB

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/fb.utils.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
8.6 kB (8594 bytes)
Hash
11f86052d649720fd2c42be42c052605
49049a8efdbc1c2ad3e11a18c33f2f323f4f901a
3b08766cc4978736e62d3b45303bc60ad269ba8cf877d980ae41c87635683303

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/fb.utils.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Thu, 25 Apr 2024 06:37:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa40-8495"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js

54.167.34.126

200 OK

27 kB

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
27 kB (26711 bytes)
Hash
0c77c85376150b686f84c4d4ae0226dd
c6ca62792abbc3462a165fc17781b72c3de56819
ebaebcc79b9b281c3f6acdf2edd795b9c2741db35043f00de2e1f07b5528d265

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/validator/localization/jq_validation_localizations.boundled.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Thu, 28 Dec 2023 14:38:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"658d8866-1b4a1"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/validator/fb.validation.js

54.167.34.126

200 OK

899 B

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/validator/fb.validation.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, ASCII text
Size
899 B (899 bytes)
Hash
0b0aa4474dad1eddbecef64e3965741d
5aa56316fef252cc71edfc14a6442e332070d379
3d995784f4fac1d1fd84d4bdc4d863a253677bdae17f19ef403c8b2fcb6748e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/validator/fb.validation.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Mon, 20 Mar 2023 09:05:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"641821da-8d2"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/cqParams/fb.cqParams.js

54.167.34.126

200 OK

897 B

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/cqParams/fb.cqParams.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, ASCII text
Size
897 B (897 bytes)
Hash
55159908ed60d22fd3992732aa7e42d3
57976f1953d1da224e9746296eaac849d69dc5f3
c6b1e77cd2f103d2fa292bf088a9680848a4f94b6c1ef6ee2017c2ba530a03c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/cqParams/fb.cqParams.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Tue, 14 Sep 2021 10:49:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61407e34-aff"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/uploads/uploadedFonts/fontsImport.css?v=1714085032

54.167.34.126

200 OK

14 kB

URL GET HTTP/1.1
medianetworkcurated.com/uploads/uploadedFonts/fontsImport.css?v=1714085032
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
ASCII text, with very long lines (508)
Size
14 kB (13728 bytes)
Hash
7c2fba9f585d90b1456a12f41e53b784
6e660f7f08ed50eddb1e613bce25756eff27ca17
7c38973f9de7f9eda1f2f71063804a06b5b56717290fb57e02fc7618e290bd02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/uploadedFonts/fontsImport.css?v=1714085032 HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Apr 2024 10:51:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"661d06bb-22e0f"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/otherInput/fb.otherInput.js

54.167.34.126

200 OK

767 B

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/otherInput/fb.otherInput.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, ASCII text
Size
767 B (767 bytes)
Hash
98ddf73de28f5fef1378553ea90dc407
9c76c82d52e3512a2fe53c754b135c5a91f1e97c
0bf7b8a2f9d4ebc076ca6ecbfad616bca4bb4d489ab2d021d935c4854585a0d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/otherInput/fb.otherInput.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Fri, 07 Oct 2022 13:13:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63402615-91c"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/uri/uri.js

54.167.34.126

200 OK

20 kB

URL GET HTTP/1.1
medianetworkcurated.com/lib/uri/uri.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (1107)
Size
20 kB (19895 bytes)
Hash
64437cd33e2fa1a40e6850ee6388639e
809078716153b491c00852f366ca3f8d6e03df22
96361c580499a6dd7afa83f352fb2a27c159a39daf794e2e6813514be8a8fbe9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/uri/uri.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6074ab5b-12c3e"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Content-Encoding: gzip

medianetworkcurated.com/lib/jq/fb.autoSubmit.js

54.167.34.126

200 OK

604 B

URL GET HTTP/1.1
medianetworkcurated.com/lib/jq/fb.autoSubmit.js
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, ASCII text
Size
604 B (604 bytes)
Hash
0a52231b24a9f8a0f2489261a3aac5db
a2d0829b6030e795da8f556c17acedce1fb58a5a
aa704c7c7552d95db32e393c6002b674df0e2fe05e586f891e631d9213794813

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/jq/fb.autoSubmit.js HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Content-Length: 604
Last-Modified: Wed, 04 Jan 2023 12:09:12 GMT
Connection: keep-alive
ETag: "63b56c68-25c"
Expires: Thu, 25 Apr 2024 23:43:53 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

medianetworkcurated.com/lpScripts/assetsBehavior.js?v=1

54.167.34.126

200 OK

5.9 kB

URL GET HTTP/1.1
medianetworkcurated.com/lpScripts/assetsBehavior.js?v=1
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
JavaScript source, ASCII text
Size
5.9 kB (5929 bytes)
Hash
166a84ddcfcb74d632084d95cf0949c6
4ed88edeff28de706d62a6c64640f04e967169c9
c1ce1f7c5a9049e3399213b48ce3368ed1f047c318670212234c9edf9b5d4647

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lpScripts/assetsBehavior.js?v=1 HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:53 GMT
Content-Type: application/javascript
Last-Modified: Thu, 25 Apr 2024 06:37:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6629fa40-5269"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip

use.typekit.net/mgr2odi.css

23.36.76.122

200 OK

4.1 kB

URL GET HTTP/2
use.typekit.net/mgr2odi.css
IP
23.36.76.122:443
ASN
#20940 Akamai International B.V.

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56
ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (520)
Size
4.1 kB (4083 bytes)
Hash
f03cf609aeed247d3a9aba2d34b2a5ab
054962aa9a1a564550b81b40cb1db1f3e28872f7
8e3662b3e186bc0a9fba2ebbd70284e4a0b0161413c12ee1cdf39de30e0d114a

HTTP Headers

GET /mgr2odi.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 4083
date: Thu, 25 Apr 2024 22:43:53 GMT
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css

23.36.76.184

200 OK

5 B

URL GET HTTP/2
p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css
IP
23.36.76.184:443
ASN
#20940 Akamai International B.V.

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56
ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 25 Apr 2024 22:43:53 GMT
X-Firefox-Spdy: h2

via.placeholder.com/1280x320?text=LOGO

34.199.142.69

200 OK

4.4 kB

URL GET HTTP/2
via.placeholder.com/1280x320?text=LOGO
IP
34.199.142.69:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerAmazon
Subjectplaceholder.com
FingerprintB5:14:E9:81:80:A6:37:46:44:95:D0:B8:CB:1F:34:EB:47:E5:55:EC
ValidityTue, 26 Dec 2023 00:00:00 GMT - Fri, 24 Jan 2025 23:59:59 GMT

File type
PNG image data, 1280 x 320, 8-bit/color RGB, non-interlaced
Size
4.4 kB (4391 bytes)
Hash
6366276773d1567d56619126f85c3ba4
a6e2302975ab5630f5498ae81d75db72348087fc
7770f46eb5640b6e1ac7b89fbe800fab138068985aab2f934d9052b077e0263a

HTTP Headers

GET /1280x320?text=LOGO HTTP/1.1
Host: via.placeholder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:43:53 GMT
content-type: image/png
content-length: 4391
server: Werkzeug/2.2.2 Python/3.9.16
cache-control: public, max-age=31557600
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

216.58.207.234

200 OK

9.7 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
9.7 kB (9669 bytes)
Hash
9add98589a4dfe115b684b9e6ff1a092
865a9622288cd4999cd46b0d28e4589315880332
7b3227a20d00efd09a0261a2ca43d1f397ff728aa0547a17d1bf99bf43ce60fc

HTTP Headers

GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap

216.58.207.234

200 OK

11 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
11 kB (11322 bytes)
Hash
59930d2a092298894cde6949966a69b9
b355b613901f74b8497f8b84cec76057e766abd0
15ccc52563e467e739f2c06b7b54c954bcfa13bda76923588c671a15020d0f38

HTTP Headers

GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf

54.167.34.126

200 OK

20 B

URL User Request GET HTTP/1.1
medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
gzip compressed data, max speed, from Unix
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 35
Origin: https://medianetworkcurated.com
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.2.12
Cache-Control: max-age=0, must-revalidate, private
Date: Thu, 25 Apr 2024 22:43:54 GMT
Expires: Thu, 25 Apr 2024 22:43:54 GMT
Content-Encoding: gzip

medianetworkcurated.com/uploads/uploadedFonts/92/Regular/Segoe-UI.ttf

54.167.34.126

200 OK

34 kB

URL GET HTTP/1.1
medianetworkcurated.com/uploads/uploadedFonts/92/Regular/Segoe-UI.ttf
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
TrueType Font data, 18 tables, 1st "FFTM", 48 names, Macintosh
Size
34 kB (34164 bytes)
Hash
0e7e9a9b5c4abaadef7bc8f4e4574084
995e37cfba0e3df9a716891a4cf9a05b38b118f9
3745c347d168dd938971aed573ab2140b6a766f658c4f353f06ddc05e976ff7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/uploadedFonts/92/Regular/Segoe-UI.ttf HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/uploads/uploadedFonts/fontsImport.css?v=1714085032
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:54 GMT
Content-Type: application/octet-stream
Content-Length: 34164
Last-Modified: Fri, 24 Feb 2023 15:46:13 GMT
Connection: keep-alive
ETag: "63f8dbc5-8574"
Expires: Thu, 25 Apr 2024 23:43:54 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

medianetworkcurated.com/favicon.ico

54.167.34.126

200 OK

34 kB

URL GET HTTP/1.1
medianetworkcurated.com/favicon.ico
IP
54.167.34.126:443
ASN
#14618 AMAZON-AES

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerLet's Encrypt
Subjectmedianetworkcurated.com
FingerprintB9:F8:06:3E:AD:FD:7D:A5:8C:26:2A:9B:BD:C3:C0:A6:6D:07:E2:64
ValidityTue, 27 Feb 2024 04:19:20 GMT - Mon, 27 May 2024 04:19:19 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
34 kB (34494 bytes)
Hash
d4a95c780824be97bc45a187ab7ad24b
53aeb2d44190d91ec2006379b3ddbd202b865d24
502322d8592de8395d6e7c2c37b18e04904e62d8f8b3caaa53858e4ebc64b692

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: medianetworkcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Thu, 25 Apr 2024 22:43:54 GMT
Content-Type: image/x-icon
Content-Length: 34494
Last-Modified: Wed, 14 Sep 2022 11:51:00 GMT
Connection: keep-alive
ETag: "6321c024-86be"
Accept-Ranges: bytes

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://medianetworkcurated.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 195376
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap

216.58.207.234

200 OK

16 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
16 kB (15624 bytes)
Hash
4db6fad77764151a20ad6bcc00a5e62b
612ef2d2291b5adee9cb6fec01cde65c02436d8a
4272ac42cc98e1f9894baba7fcd34026329afa3c802bd9090c178345347d3b81

HTTP Headers

GET /css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css2?family=Noto+Sans:wght@400&display=swap

216.58.207.234

200 OK

3.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Noto+Sans:wght@400&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (3272), with no line terminators
Size
3.2 kB (3192 bytes)
Hash
3e15972e34db57f193696124445a1644
ff4b0708bdf3485af4b7e58a1a16ce8df13a4fc1
7e6944d56f8a2f198951ed53bb3d51bb012d1b724b6f6cf88258e82b2737b077

HTTP Headers

GET /css2?family=Noto+Sans:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap

216.58.207.234

200 OK

28 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
28 kB (28178 bytes)
Hash
7b1884acc9afa1fbd97c1e3e29d13b55
c4b4171b50d3f29d7af642875e63d8427d0067aa
7e7fd9f1e6fd2387dc2a5bb83cb72a1c44206347ad8ffde69bcab829cf88b1ff

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Muli

216.58.207.234

200 OK

1.1 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Muli
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1155), with no line terminators
Size
1.1 kB (1131 bytes)
Hash
5f2d0717938cad7ed3d9f569ae7aa6e5
1db81dd4db6fb94b6b26526e2750699cb0abd64c
f21035c09762ddbf6f2c329d5d20488da261a8c058ae903d12096fe635277701

HTTP Headers

GET /css?family=Muli HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap

216.58.207.234

200 OK

31 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
31 kB (30550 bytes)
Hash
90fffea21b0e3b0cbd8e98b006d5986b
d45f6bad5f439f5bb74aca394c3359a3e2a7c29a
1c7510cd1ecdcdbaf8d47f7e32f1ef6d2606f379c10cc95581e302cb148d95a6

HTTP Headers

GET /css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7

104.18.52.27

200 OK

103 B

URL GET HTTP/2
polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7
IP
104.18.52.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerSectigo Limited
Subject*.polyfill.io
Fingerprint19:AA:59:2F:D9:8A:C1:48:99:20:3C:64:45:4E:E5:A6:1D:E4:92:0C
ValidityTue, 20 Feb 2024 00:00:00 GMT - Wed, 19 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
103 B (103 bytes)
Hash
355acb45e83e409fc396126ade92ed65
de72924d885389aa9cd797e2e6c725c28526d922
75a4320c68de237c98b4b6192bdbd43afad6143fe30070e6513a3f09b6a15dc2

HTTP Headers

GET /v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://medianetworkcurated.com
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:43:53 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 87a1dac1aae3712e-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 32109
cache-control: public, max-age=14400
content-encoding: gzip
expires: Fri, 26 Apr 2024 02:43:53 GMT
last-modified: Thu, 25 Apr 2024 13:48:44 GMT
vary: Accept-Encoding, User-Agent
access-control-allow-methods: GET,HEAD,OPTIONS
server: cloudflare
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap

216.58.207.234

200 OK

7.7 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (7874), with no line terminators
Size
7.7 kB (7694 bytes)
Hash
83883a3950b917f5cf818c378f3d7534
0e597e0d42060491b3a0bf1d78f519a540d32489
366a512bc79e7d75125a712c73136dd3d916cfbe75e82e6d4bfecea90d835a03

HTTP Headers

GET /css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.11.207

200 OK

160 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:43:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 10/31/2023 19:00:00
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: bae8a1587e900a782629330c8ed740ae
cdn-cache: HIT
cf-cache-status: HIT
age: 13280679
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a1dac19cc65697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap

216.58.207.234

200 OK

2.3 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (2379), with no line terminators
Size
2.3 kB (2316 bytes)
Hash
03278c047a3192f4a25c4644284d910b
61fc733be8553b3e6d9847d43b4bef84b5ae947d
d5e8a5e5b7bfea2764abadded25ab112a034543a2315c942bb9fd3cbe7ece8fb

HTTP Headers

GET /css2?family=Roboto:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap

216.58.207.234

200 OK

12 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
12 kB (12242 bytes)
Hash
96a9c5fb178c9772913cb12d6dca24dd
ef05b55212524161eb1f13a93cd1115db780cefe
00da328e265ca2a15bd972611a0a78e34ce0aff1f2706fb55ad412a23dfe6364

HTTP Headers

GET /css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css2?family=Noto+Color+Emoji:wght@400&display=swap

216.58.207.234

200 OK

8.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Noto+Color+Emoji:wght@400&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://medianetworkcurated.com/57046-271772/136718?uid=2dGGyVXna8fYkDhwZkuEqJ&prom_type=nurturing&prom_id=74718&pld=26L81sNgpwNGbf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (8630), with no line terminators
Size
8.5 kB (8528 bytes)
Hash
8ffea396f91964270b0ca54b34561572
4b770feb78534027442e5618b66cf75f67a60521
51ff1c0cb45235ca4c12ce7b87d640d223983357f475e8d8d20c36cc6032ecfd

HTTP Headers

GET /css2?family=Noto+Color+Emoji:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://medianetworkcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:43:53 GMT
date: Thu, 25 Apr 2024 22:43:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML