Report - www.wowace.com/paste/248c0ee6

Report Overview

Visitedpublic

2025-05-01 09:05:05

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-04-30	2.0 kB	1.1 MB	142.250.74.136
rumcdn.geoedge.be	1525	2018-05-06	2019-03-06	2025-04-27	1.3 kB	509 kB	54.240.174.7
btloader.com	169057	2020-10-06	2020-10-22	2025-04-24	433 B	118 kB	104.22.75.216
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-04-30	492 B	654 kB	142.250.74.99
wrappers.geoedge.be	22197	2018-05-06	2022-12-03	2025-04-28	473 B	4.1 kB	3.167.2.71
apis.google.com	105	1997-09-15	2013-05-06	2025-04-30	417 B	65 kB	142.250.74.110
tracker.nitropay.com	29033	2003-11-04	2017-05-23	2025-04-30	544 B	178 B	35.244.144.25
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-30	1.7 kB	114 kB	142.250.74.35
ad-delivery.net	1341	2017-05-03	2017-06-22	2025-04-30	892 B	1.9 kB	104.22.5.65
media.forgecdn.net	56337	2017-12-06	2018-01-23	2025-04-23	464 B	2.2 kB	54.240.174.85
content.overwolf.com	43460	2009-08-23	2014-10-07	2025-04-11	434 B	2.4 kB	54.240.174.9
elerium-static.curseforge.com	unknown	2007-10-18	2023-03-04	2025-03-17	427 B	562 kB	3.167.2.91
consent.nitrocnct.com	unknown	2021-07-21	2022-10-31	2025-04-30	925 B	818 kB	104.21.32.1
configs.forgecdn.net	187315	2017-12-06	2021-02-16	2025-03-17	417 B	22 kB	3.167.2.115
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-30	1.8 kB	50 kB	142.250.74.10
www.google.com	7	1997-09-15	2015-05-10	2025-04-30	456 B	1.7 kB	142.250.74.68
t.nit.ro	unknown	unknown	2023-12-02	2025-04-30	575 B	170 B	35.244.144.25
ag.dns-finder.com	unknown	2024-07-18	2025-01-24	2025-04-27	439 B	0 B	0.0.0.0
s.nitropay.com	30100	2003-11-04	2018-05-21	2025-04-30	3.5 kB	984 kB	104.18.3.78
floors.nitropay.com	unknown	2003-11-04	2025-01-13	2025-04-30	448 B	272 B	35.244.144.25
ats-wrapper.privacymanager.io	16559	2019-11-21	2021-09-15	2025-04-27	472 B	106 kB	3.167.2.72
www.wowace.com	unknown	2005-06-12	2012-07-13	2025-03-17	9.8 kB	2.5 MB	104.17.64.160

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	From	Size	First Seen	Last Seen
	apis.google.com/js/platform.js	ScriptElement	64 kB	2025-04-28	2025-05-27
URL apis.google.com/js/platform.js IP / ASN 142.250.74.110 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-28 Last Seen 2025-05-27 Times Seen 251 Size 64 kB (64240 bytes) MD5 cb6aefccc07d078c24cf452ca9fd504d SHA1 e4305acb32e891eb61a09472876304ec3780275e SHA256 d19d81dabdfa027655bcc408d7be4690d441ea1f702fbeb975e94b787be5aa2b Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	454 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 420 Size 454 B (454 bytes) MD5 917ffe1f7c7a83da9c8f170390133232 SHA1 650d33f80f5580eb5a3a3c3b84ce3634b50ad02e SHA256 47d8ceba4f77e1a68e7f5afb3ece776eed4008d74a0445e77c379695c17790f7 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-3N8RVEG29S	ScriptElement	1.0 kB	2025-05-01	2025-05-01
URL www.googletagmanager.com/gtag/js?id=G-3N8RVEG29S IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-05-01 Times Seen 1 Size 1.0 kB (1000 bytes) MD5 23a0d73b5bd9c395f383d8ebfe3a83a6 SHA1 9adad079a3dd6d20f8093575506baa965fe344e9 SHA256 9796a468cef12dfebff4f29012309d7baf9bbfe096f0c3d3f21e46973843c32f Format Code Loading...

	www.googletagmanager.com/gtag/js?id=AW-807668235&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424	ScriptElement	344 kB	2025-05-01	2025-05-01
URL www.googletagmanager.com/gtag/js?id=AW-807668235&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-05-01 Times Seen 1 Size 344 kB (344436 bytes) MD5 f88bf3882aa4d55a82150daec6024b91 SHA1 7d17c0ee8c08b139500b982af77ba8c858530005 SHA256 50eeecd1d96e457a8b09938535e2cf41941ff17bcf99972788515a648eb3ca46 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	132 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 416 Size 132 B (132 bytes) MD5 1d9023dca84c4dace55433e930efc874 SHA1 035fe60df21dcac3a1d036b7eafb66aedb3f5740 SHA256 29cbae6d81242eb5f6c3143d65e560bf773d8eee1ff513e953a288e6c64af2e1 Format Code Loading...

	www.wowace.com/paste/sandbox%20eval%20code		148 B	2023-04-11	2025-08-07
URL www.wowace.com/paste/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-07 Times Seen 29416 Size 148 B (148 bytes) MD5 64fe6fe97a487c82c5be70158b71aa87 SHA1 b93ba17d1796e404b0ca1ef6f262bbbb0c427366 SHA256 3ec8a12103cf9c2e91b9be1329d1e9f1c53043e38a641070650d1b8d07dbbcd2 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	223 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 415 Size 223 B (223 bytes) MD5 32c16b2b621bc21ff4a3d19a59181769 SHA1 d1552c40803f6434acc1c93e5c1a684affbfb45d SHA256 29da3d9f514dd8292bfd3ca1ea6411f503d3ecbb96c7e184f674e7973ec9b125 Format Code Loading...

	btloader.com/tag?o=6278260873756672&upapi=true	ScriptElement	117 kB	2025-05-01	2025-05-01
URL btloader.com/tag?o=6278260873756672&upapi=true IP / ASN 104.22.75.216 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-05-01 Times Seen 8 Size 117 kB (117238 bytes) MD5 352610e9aeda99b7c99d853d5a625fe7 SHA1 9412c23f683e80ddca447be576827146ffbc2d5d SHA256 b4837f6c4dc2a65d7888f3bd5b46ab25928e0c390ac8a8b67f42211edd829593 Format Code Loading...

	www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit	ScriptElement	970 B	2025-05-01	2025-05-14
URL www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit IP / ASN 142.250.74.68 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-05-14 Times Seen 49 Size 970 B (970 bytes) MD5 5c828d00486b2b42b2a60393e516e112 SHA1 4713a7f0f862a0271804acccd564d3e2152175f4 SHA256 73b1ccc0cd20760bdafc86fb9c2a8d8ceda78d66b1605af0dd7395754bea52d0 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	121 B	2024-08-24	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-24 Last Seen 2025-08-06 Times Seen 401 Size 121 B (121 bytes) MD5 7aec6c1b4412c79f969bf87ff6a9c427 SHA1 c843a7ae05a096213b0c199143860ac1b0b02ec1 SHA256 fa0742dfa56fdfabe39c7d722d4c9ada7715ff3cc324ee788b23914d28d185d3 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	344 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 414 Size 344 B (344 bytes) MD5 795d4a10bf12ede873d4b1c05daa219a SHA1 862e9ee44aa4f65fbdb28d888f83196b49ec50d0 SHA256 5937175bef409cdefca15840e19730e5027205b89fbf17112a7763cc9880e868 Format Code Loading...

	content.overwolf.com/web/wowace/wowacenpinit.js	ScriptElement	1.7 kB	2025-02-11	2025-08-06
URL content.overwolf.com/web/wowace/wowacenpinit.js IP / ASN 54.240.174.9 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-02-11 Last Seen 2025-08-06 Times Seen 227 Size 1.7 kB (1707 bytes) MD5 299b4e777394fb4024a20d51a1cf8d82 SHA1 8776cf21388117f1fb376098663106e3e1368a37 SHA256 27d3fda73be03332b39d53f5e6c1d27880680629fa68a8b1ac9c9086ce0a3f1e Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	361 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 414 Size 361 B (361 bytes) MD5 797c546eb85e4e0d3b87b269c3a591c6 SHA1 377d363730692634cacac501e336860f644faf1f SHA256 dca4791443d3d7d05a999467c4eb2243f71ef13b1984308abc484c37d29a0044 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	453 B	2025-02-11	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-02-11 Last Seen 2025-08-06 Times Seen 222 Size 453 B (453 bytes) MD5 c5857b8705d91b3500ef0cb560cfb9e5 SHA1 a77683e9d5f97bd7d3b907ff3e07fe2b91366dfb SHA256 120ffbe522c0f5a8068f9c26cf9dcea2ecd2ab71cfb109a760797cc5dfc72b5f Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	69 B	2025-02-11	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-02-11 Last Seen 2025-08-06 Times Seen 221 Size 69 B (69 bytes) MD5 7a63b8445e2e56dcf4bba4d13921751c SHA1 5d27f6b156957deb16c3fc51e427b734091388d6 SHA256 4b9c8096523ff6979e7da5bad5d522d5af22c983f567140cc353dfb017fabab3 Format Code Loading...

	elerium-static.curseforge.com/js/Elerium	ScriptElement	561 kB	2024-02-18	2025-05-18
URL elerium-static.curseforge.com/js/Elerium IP / ASN 3.167.2.91 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-02-18 Last Seen 2025-05-18 Times Seen 207 Size 561 kB (561226 bytes) MD5 a9a534882fb36b6d3ca719b134ad58c5 SHA1 a76c49f9010c1977d3b7fbf777b3858cfd8efacc SHA256 7f16b741dcd161b07b369d3dfdd9eaf9dd12054f7019ce5b63942c205e73a79a Format Code Loading...

	configs.forgecdn.net/ow.min.js	ScriptElement	22 kB	2023-11-10	2025-08-06
URL configs.forgecdn.net/ow.min.js IP / ASN 3.167.2.115 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 423 Size 22 kB (21521 bytes) MD5 c4ba4285cce95fc0c4afd41c17f73e39 SHA1 461034da34efd79de7b72ea73c5fd03de44a50b3 SHA256 054ef57790c1506bcb5ecc4f16f897e0ff1cdfdef695d2d6e3e9d76c6897b377 Format Code Loading...

	ats-wrapper.privacymanager.io/ats-modules/438cb908-ed61-41e9-b716-05d5f4122a64/ats.js	ScriptElement	105 kB	2025-03-08	2025-07-06
URL ats-wrapper.privacymanager.io/ats-modules/438cb908-ed61-41e9-b716-05d5f4122a64/ats.js IP / ASN 3.167.2.72 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-03-08 Last Seen 2025-07-06 Times Seen 275 Size 105 kB (105318 bytes) MD5 63c8f2f5e5242fecdfd2f7a54332dc08 SHA1 6d512f464899147ef5e0492edcd306001cc71a6b SHA256 99b67a27cdad284ac44f963b556719a40c36fcf327b846ba1af86c8ed209ae8d Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	670 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 286 Size 670 B (670 bytes) MD5 16fe8eabb827e76ce3eddbb7fd45f019 SHA1 be5d1ba9b107a7c73e36ea36b26160d972917885 SHA256 a61060334e8a9b7cefed6e2c6f8b54c296013309339f83b8342a0684915d11a3 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	16 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 414 Size 16 B (16 bytes) MD5 0aa2e8dade246f583e08dbf4dd191cf4 SHA1 bee3f62b747590758f1c778f77fc4a734af1cd7c SHA256 b0111a1a90b9c55c8f8bd8b6f0f95d747b9b7cd068028c1267a3b1bf6bea3d19 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	2.1 kB	2025-05-01	2025-05-01
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-05-01 Last Seen 2025-05-01 Times Seen 1 Size 2.1 kB (2111 bytes) MD5 89e3549b0f269bf0bfe4dfab8f56a76e SHA1 6ab4f462627a5688fdf58bf2fd5917f539c73f9f SHA256 fcc7ab6767ea27aa7ff46f64cbee69043d6f0df009e3a079860f5c178d64fbc0 Format Code Loading...

	www.wowace.com/js/jquery-migration?v=GjyiFSP641QXo5QcmpaUW1L8laD5rKWzPP0n7lEpHPo1	ScriptElement	108 kB	2023-04-17	2025-08-06
URL www.wowace.com/js/jquery-migration?v=GjyiFSP641QXo5QcmpaUW1L8laD5rKWzPP0n7lEpHPo1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-17 Last Seen 2025-08-06 Times Seen 431 Size 108 kB (107478 bytes) MD5 1c8c0b098b912c4b97f3618ed916637e SHA1 5a171b7b3d0ccda66c9189356d9beb5998ee5ec5 SHA256 bdeac806a882905df5b64d3ef2592b09a740e272cd006e735c23e74aa7868adc Format Code Loading...

	www.wowace.com/paste/sandbox%20eval%20code		136 B	2023-04-11	2025-08-07
URL www.wowace.com/paste/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-07 Times Seen 58741 Size 136 B (136 bytes) MD5 fb4eb094524daea58bf7f82331598541 SHA1 f5ca39eb98fa1685f8647514a627d3d7f216f7ef SHA256 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Format Code Loading...

	rumcdn.geoedge.be/b0b01868-2045-4a3d-b8b0-db8e6cd0649d/grumi-ip.js	ScriptElement	17 kB	2025-04-22	2025-06-01
URL rumcdn.geoedge.be/b0b01868-2045-4a3d-b8b0-db8e6cd0649d/grumi-ip.js IP / ASN 54.240.174.7 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-22 Last Seen 2025-06-01 Times Seen 43 Size 17 kB (16974 bytes) MD5 e4d7489649cbbe3b394eed3af6032ef5 SHA1 e0d76f9e987e9dbdbe5417a902a0ee8c2eaf1350 SHA256 eef68dc1b08e99637dc1ec3cfa848934163ba36e4a641a28e79d3b91763e3d53 Format Code Loading...

	c.amazon-adsystem.com/aax2/apstag.js	ScriptElement	1.6 kB	2023-05-05	2025-08-07
URL c.amazon-adsystem.com/aax2/apstag.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-05-05 Last Seen 2025-08-07 Times Seen 18020 Size 1.6 kB (1585 bytes) MD5 7099d0c144c906961206e41b26b23c05 SHA1 59a67da2d27d4e5fc0e183bb2baeebe39404f553 SHA256 3f19f9cf504b435adb7e62aac1b420facfc0048d6a4950910fd6f126548cc69e Format Code Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	ScriptElement	13 kB	2023-04-05	2025-08-07
URL securepubads.g.doubleclick.net/tag/js/gpt.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-05 Last Seen 2025-08-07 Times Seen 55055 Size 13 kB (13104 bytes) MD5 0c9ed134ae3d5ffe972da2a3e59dc428 SHA1 620df222551395592e46e4c5f425cf23dcdad891 SHA256 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Format Code Loading...

	www.wowace.com/js/jquery?v=-l4Om55ehZs1gYrKtDvYMCO02R2CD_KZGhdbRy2UTxw1	ScriptElement	527 kB	2023-11-10	2025-08-06
URL www.wowace.com/js/jquery?v=-l4Om55ehZs1gYrKtDvYMCO02R2CD_KZGhdbRy2UTxw1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 421 Size 527 kB (527171 bytes) MD5 053140c63d76a30276e82c96c3620424 SHA1 91633ae3ed6e26c59c270642ad75eafdf47614c7 SHA256 783dff648c360cefbe2c8bb9931bad4aba6ed13381424f1e3a0ade80c6556198 Format Code Loading...

	www.wowace.com/js/cobalt?v=6jYBwDuKJogccYdURuqrnHftT32m265OtHGmCW8-cGk1	ScriptElement	412 kB	2023-11-10	2025-08-06
URL www.wowace.com/js/cobalt?v=6jYBwDuKJogccYdURuqrnHftT32m265OtHGmCW8-cGk1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 422 Size 412 kB (411979 bytes) MD5 ae4ac7b882ecd7ec19d7a90e86aa2497 SHA1 25e1f2e73277750fa3ab634c83c655d057884c7b SHA256 ee7fb772737aab516328e8ef0418ddb8db1bc6b6a354d570e1d63a30e7bcc9bf Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-N8BTN266HQ&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424	ScriptElement	440 kB	2025-05-01	2025-05-01
URL www.googletagmanager.com/gtag/js?id=G-N8BTN266HQ&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-05-01 Times Seen 1 Size 440 kB (439806 bytes) MD5 f79b54c7797869227a69d7fd2513bb35 SHA1 a78685c103c8474c34f88f869c229a42fd8918bc SHA256 2919169b1bac8b3df127bbf70eb23c2a7903f17ac61d68120f321ba7d4983251 Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	23 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 408 Size 23 B (23 bytes) MD5 072518383e323b8929f7e2c342dfc078 SHA1 54af11359c4850ff10cf8d6a464ffe18613f0722 SHA256 8014ac2fe3b0fa14029ed368f39b45611f4f1da137d93e378347f13a62d5f0f3 Format Code Loading...

	s.nitropay.com/gpp-b4dfd58.min.js	ScriptElement	233 kB	2025-05-01	2025-07-07
URL s.nitropay.com/gpp-b4dfd58.min.js IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-05-01 Last Seen 2025-07-07 Times Seen 237 Size 233 kB (232719 bytes) MD5 28eaf81ebc3e0d291f96d41af2efba56 SHA1 b5e84ea58f0f2050211826cad725af6a55d4b93a SHA256 1ce3637b40728b8bacc69f6256fc5ed1a0cb4bb7dcbbb9411de0df11a1134d4f Format Code Loading...

	www.wowace.com/paste/248c0ee6	ScriptElement	30 B	2023-11-10	2025-08-06
URL www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-10 Last Seen 2025-08-06 Times Seen 399 Size 30 B (30 bytes) MD5 98394e75277e23a8f6d8af99a9a029e4 SHA1 c4ac39a3df16c1790816adaefcaad18bd6fddf3b SHA256 23c23562307efc0357b41135ed5846e81b749c2f2362ffba61e55ee843af94f6 Format Code Loading...

	www.wowace.com/paste/sandbox%20eval%20code		148 B	2023-05-05	2025-08-07
URL www.wowace.com/paste/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-05-05 Last Seen 2025-08-07 Times Seen 18691 Size 148 B (148 bytes) MD5 f019f144761e15f741f6ab1e4cf566a5 SHA1 1c73bccb222e44ae4633750eda7c357460a81a03 SHA256 4cacaf0fd3e370c4840c87c79f923f1ffb69ff7ce5d8172390783c8f83861d62 Format Code Loading...

	www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js	ScriptElement	653 kB	2025-04-30	2025-07-01
URL www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js IP / ASN 142.250.74.99 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-30 Last Seen 2025-07-01 Times Seen 3130 Size 653 kB (652680 bytes) MD5 cded17fc3b606bf50119ef5425541a3a SHA1 e11985d3bbce813e0349e732e24cd757b5a8ea2f SHA256 31ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c Format Code Loading...

HTTP Transactions (48)

	URL	IP	Response	Size
	GET content.overwolf.com/web/wowace/wowacenpinit.js	54.240.174.9	200 OK	1.7 kB
URL GET HTTPS content.overwolf.com/web/wowace/wowacenpinit.js IP / ASN 54.240.174.9 #16509 AMAZON-02 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text, with CRLF line terminators First Seen2025-02-11 Last Seen2025-08-06 Times Seen227 Size1.7 kB (1707 bytes) MD5299b4e777394fb4024a20d51a1cf8d82 SHA18776cf21388117f1fb376098663106e3e1368a37 SHA25627d3fda73be03332b39d53f5e6c1d27880680629fa68a8b1ac9c9086ce0a3f1e Certificate Info IssuerAmazon Subject.overwolf.com Fingerprint05:93:F1:64:AB:40:9A:C2:F7:97:19:37:FE:30:EF:94:E7:33:C2:24 ValiditySat, 25 Jan 2025 00:00:00 GMT - Mon, 23 Feb 2026 23:59:59 GMT HTTP Headers `GET /web/wowace/wowacenpinit.js HTTP/1.1 Host: content.overwolf.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 30 Jul 2024 15:08:55 GMT Content-Encoding: gzip x-amz-server-side-encryption: AES256 x-amz-meta-cb-modifiedtime: Tue, 30 Jul 2024 15:07:21 GMT Server: AmazonS3 Date: Thu, 01 May 2025 01:18:12 GMT ETag: W/"299b4e777394fb4024a20d51a1cf8d82" X-Cache: Hit from cloudfront Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: gbbtBRTnmnS3XAr877yoQEGFVV3Favfz4B4izCQ_nkZFHhBjDLL-Qw== Age: 27992 Cache-Control: max-age=86400 Vary: accept-encoding, Origin

	GET fonts.googleapis.com/css?family=Open+Sans:400,600,300	142.250.74.10	200 OK	17 kB
URL GET HTTPS fonts.googleapis.com/css?family=Open+Sans:400,600,300 IP / ASN 142.250.74.10 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text, with very long lines (1572) First Seen2024-10-16 Last Seen2025-05-29 Times Seen461 Size17 kB (17382 bytes) MD53fe04f45a9151b22ccf35bb1a1e8acc5 SHA1bd541ee340254ba736e78b016deb16a8d3dde31d SHA256b23b6310a08210e419467a311655b3523cfc1cfbca32a998a994525892b0d4ef Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00 ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT HTTP Headers `GET /css?family=Open+Sans:400,600,300 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 May 2025 09:04:43 GMT date: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET tracker.nitropay.com/a/1950?d=eyJocmVmIjoiaHR0cHM6Ly93d3cud293YWNlLmNvbS9wYXN0ZS8yNDhjMGVlNiIsInYiOjgsImEiOmZhbHNlLCJzIjp0cnVlLCJjIjoiTk8iLCJyIjoiMDMifQ%3D%3D	35.244.144.25	204 No Content	0 B
URL GET HTTPS tracker.nitropay.com/a/1950?d=eyJocmVmIjoiaHR0cHM6Ly93d3cud293YWNlLmNvbS9wYXN0ZS8yNDhjMGVlNiIsInYiOjgsImEiOmZhbHNlLCJzIjp0cnVlLCJjIjoiTk8iLCJyIjoiMDMifQ%3D%3D IP / ASN 35.244.144.25 #396982 GOOGLE-CLOUD-PLATFORM Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-07 Times Seen5706475 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services Subject.nitropay.com FingerprintBF:2B:22:7A:59:BC:7D:01:D7:92:F7:E4:87:83:01:05:EB:29:17:A0 ValidityFri, 28 Mar 2025 04:30:22 GMT - Thu, 26 Jun 2025 05:26:17 GMT HTTP Headers GET /a/1950?d=eyJocmVmIjoiaHR0cHM6Ly93d3cud293YWNlLmNvbS9wYXN0ZS8yNDhjMGVlNiIsInYiOjgsImEiOmZhbHNlLCJzIjp0cnVlLCJjIjoiTk8iLCJyIjoiMDMifQ%3D%3D HTTP/1.1 Host: tracker.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wowace.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content server: nginx/1.27.0 date: Thu, 01 May 2025 09:04:45 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	GET apis.google.com/js/platform.js	142.250.74.110	200 OK	64 kB
URL GET HTTPS apis.google.com/js/platform.js IP / ASN 142.250.74.110 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (1863) First Seen2025-04-28 Last Seen2025-05-27 Times Seen251 Size64 kB (64240 bytes) MD5cb6aefccc07d078c24cf452ca9fd504d SHA1e4305acb32e891eb61a09472876304ec3780275e SHA256d19d81dabdfa027655bcc408d7be4690d441ea1f702fbeb975e94b787be5aa2b Certificate Info IssuerGoogle Trust Services Subject.apis.google.com Fingerprint97:0E:7C:79:C9:69:13:3F:C7:DF:CD:BA:98:07:27:C4:43:67:8D:D5 ValidityMon, 31 Mar 2025 08:56:37 GMT - Mon, 23 Jun 2025 08:56:36 GMT HTTP Headers `GET /js/platform.js HTTP/1.1 Host: apis.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-type: text/javascript access-control-allow-origin: * content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="gapi-team" report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]} timing-allow-origin: * content-length: 24163 date: Thu, 01 May 2025 09:04:43 GMT expires: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=1800, stale-while-revalidate=1800 etag: "5fc9f03e5c39a877" x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET fonts.googleapis.com/css?family=Noto+Sans:400,700	142.250.74.10	200 OK	6.0 kB
URL GET HTTPS fonts.googleapis.com/css?family=Noto+Sans:400,700 IP / ASN 142.250.74.10 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text First Seen2025-04-08 Last Seen2025-08-06 Times Seen432 Size6.0 kB (5988 bytes) MD5d76b8c5f5c402e2c399b54486c5e9b0e SHA16d043de8375d7cbb743c3e5319e30f63896c7baa SHA256d64d3e05306588ac671bfe7dd3122c03190017869c56c4f7ecaaec225f9433d0 Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00 ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT HTTP Headers `GET /css?family=Noto+Sans:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 May 2025 09:04:43 GMT date: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/notosans/v39/o-0ZIpQlx3QUlC5A4PNr4C5OaxRsfNNlKbCePevtuXOmHSl1igg0.woff2	142.250.74.35	200 OK	40 kB
URL GET HTTPS fonts.gstatic.com/s/notosans/v39/o-0ZIpQlx3QUlC5A4PNr4C5OaxRsfNNlKbCePevtuXOmHSl1igg0.woff2 IP / ASN 142.250.74.35 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 39536, version 1.0 First Seen2025-01-28 Last Seen2025-08-06 Times Seen430 Size40 kB (39536 bytes) MD5d03b293e1f94f73b04632a95ae72e785 SHA1a03b38e11f36bb8edbb4e7c82dbdde4e416512cb SHA256d6a01e0e085d0ca698b267ba379cb5b481de398a08fab2c282bf8784b1293354 Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1 ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT HTTP Headers GET /s/notosans/v39/o-0ZIpQlx3QUlC5A4PNr4C5OaxRsfNNlKbCePevtuXOmHSl1igg0.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 39536 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Apr 2025 09:26:50 GMT expires: Fri, 24 Apr 2026 09:26:50 GMT cache-control: public, max-age=31536000 age: 603474 last-modified: Tue, 11 Mar 2025 01:09:14 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/Blocks/css/compiled.css	104.17.64.160	200 OK	31 kB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/Blocks/css/compiled.css IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text, with very long lines (16135) First Seen2023-11-10 Last Seen2025-08-06 Times Seen383 Size31 kB (31384 bytes) MD5091eaab17d3097612345df5771e1c350 SHA142b95b9ee5e4ba3f75e3bdcbac3d090db60c3a7a SHA2567dfde27c429ab934f07188477f53ebc4782f381eaba97e7320315d735ed4433e Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/Blocks/css/compiled.css HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/paste/248c0ee6 Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/css last-modified: Mon, 28 Apr 2025 08:23:30 GMT etag: W/"02d9fd216b8db1:0" x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: FQRtxzXP4TIFt3nkUAiwM01nBfzQvKfe0xIAhqeSXuw97N0cgdx5vQ== cf-cache-status: HIT expires: Thu, 01 May 2025 13:04:43 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 938e1cef6f4e1bfa-OSL X-Firefox-Spdy: h2

	GET www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit	142.250.74.68	200 OK	970 B
URL GET HTTPS www.google.com/recaptcha/api.js?onload=onloadCallback&render=explicit IP / ASN 142.250.74.68 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (970), with no line terminators First Seen2025-05-01 Last Seen2025-05-14 Times Seen49 Size970 B (970 bytes) MD55c828d00486b2b42b2a60393e516e112 SHA14713a7f0f862a0271804acccd564d3e2152175f4 SHA25673b1ccc0cd20760bdafc86fb9c2a8d8ceda78d66b1605af0dd7395754bea52d0 Certificate Info IssuerGoogle Trust Services Subjectwww.google.com FingerprintD0:D7:4C:27:9F:7B:15:26:DB:1E:8C:54:8C:59:28:47:E4:A8:63:68 ValidityMon, 31 Mar 2025 08:56:27 GMT - Mon, 23 Jun 2025 08:56:26 GMT HTTP Headers `GET /recaptcha/api.js?onload=onloadCallback&render=explicit HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 expires: Thu, 01 May 2025 09:04:43 GMT date: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=300 cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d" report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]} content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET t.nit.ro/p?d=QiVodHRwczovL3d3dy53b3dhY2UuY29tL3Bhc3RlLzI0OGMwZWU2WiQwMTk2OGIxNy01YWY0LTdjMTctOGNhYy04MzI1OWUxN2VkZGRiAk5PagIwM4oBEAoLX2V4cC5mbG9vcnMSATGSAQCaAQdjNWRlNTg5uAEA0AGeD9gBAQ%3D%3D	35.244.144.25	204 No Content	0 B
URL GET HTTPS t.nit.ro/p?d=QiVodHRwczovL3d3dy53b3dhY2UuY29tL3Bhc3RlLzI0OGMwZWU2WiQwMTk2OGIxNy01YWY0LTdjMTctOGNhYy04MzI1OWUxN2VkZGRiAk5PagIwM4oBEAoLX2V4cC5mbG9vcnMSATGSAQCaAQdjNWRlNTg5uAEA0AGeD9gBAQ%3D%3D IP / ASN 35.244.144.25 #396982 GOOGLE-CLOUD-PLATFORM Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-07 Times Seen5706475 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services Subject.nit.ro FingerprintFB:B2:58:CE:4B:1E:18:3C:69:45:BB:93:AB:AB:97:5D:9C:8F:EC:DD ValidityTue, 11 Mar 2025 22:26:20 GMT - Mon, 09 Jun 2025 23:22:15 GMT HTTP Headers GET /p?d=QiVodHRwczovL3d3dy53b3dhY2UuY29tL3Bhc3RlLzI0OGMwZWU2WiQwMTk2OGIxNy01YWY0LTdjMTctOGNhYy04MzI1OWUxN2VkZGRiAk5PagIwM4oBEAoLX2V4cC5mbG9vcnMSATGSAQCaAQdjNWRlNTg5uAEA0AGeD9gBAQ%3D%3D HTTP/1.1 Host: t.nit.ro User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wowace.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content vary: Origin date: Thu, 01 May 2025 09:04:46 GMT via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	GET ag.dns-finder.com/px.gif	0.0.0.0		0 B
URL GET HTTP ag.dns-finder.com/px.gif IP / ASN 0.0.0.0 #0 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-07 Times Seen5706475 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /px.gif HTTP/1.1 Host: ag.dns-finder.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wowace.com/ Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	GET s.nitropay.com/cmp/lang.png	104.18.3.78	200 OK	1.9 kB
URL GET HTTPS s.nitropay.com/cmp/lang.png IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typePNG image data, 20 x 23, 8-bit/color RGBA, non-interlaced First Seen2023-04-16 Last Seen2025-08-06 Times Seen2338 Size1.9 kB (1887 bytes) MD5ca072a3965f49a2c242c45d535163a53 SHA1365e8c94931edd4bb5548861d856390662fc39bb SHA256eda5ec1c59939f001bdc15f557f3a905110aac0a60afc5a1eb92d8cdc2d2cbb5 Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers GET /cmp/lang.png HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: image/png content-length: 1887 x-goog-generation: 1666344058779792 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 1887 x-goog-hash: crc32c=7x+tRA==, md5=ygcqOWX0miwkLEXVNRY6Uw== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type x-guploader-uploadid: AAO2VwqT3Nam2L_1nRSHJFSFm1BYl9Lu9PA9DcoJ25no2MavFUwLMI_xTQVx1OqCBjjrSoaO expires: Thu, 01 May 2025 09:58:41 GMT cache-control: public, max-age=3600 last-modified: Fri, 21 Oct 2022 09:20:58 GMT etag: "ca072a3965f49a2c242c45d535163a53" alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 181 accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains server: cloudflare cf-ray: 938e1d023fce5689-OSL server-timing: cfExtPri

	GET www.wowace.com/js/jquery-migration?v=GjyiFSP641QXo5QcmpaUW1L8laD5rKWzPP0n7lEpHPo1	104.17.64.160	200 OK	108 kB
URL GET HTTPS www.wowace.com/js/jquery-migration?v=GjyiFSP641QXo5QcmpaUW1L8laD5rKWzPP0n7lEpHPo1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2023-04-17 Last Seen2025-08-06 Times Seen431 Size108 kB (107478 bytes) MD51c8c0b098b912c4b97f3618ed916637e SHA15a171b7b3d0ccda66c9189356d9beb5998ee5ec5 SHA256bdeac806a882905df5b64d3ef2592b09a740e272cd006e735c23e74aa7868adc Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /js/jquery-migration?v=GjyiFSP641QXo5QcmpaUW1L8laD5rKWzPP0n7lEpHPo1 HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/paste/248c0ee6 Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/javascript; charset=utf-8 cache-control: public, max-age=31509730 expires: Fri, 01 May 2026 01:46:53 GMT last-modified: Thu, 01 May 2025 01:46:53 GMT x-aspnet-version: 4.0.30319 x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 760a29e891ec10bba1274911260e1fc8.cloudfront.net (CloudFront) x-amz-cf-pop: FRA60-P4 x-amz-cf-id: kja1IRcSkOmDmUEmy0RpHnLnvpmZOzfCoRxpvC9gXhx2rQyTbjLtYg== cf-cache-status: HIT server: cloudflare cf-ray: 938e1cef6f571bfa-OSL X-Firefox-Spdy: h2

	GET s.nitropay.com/gpp-b4dfd58.min.js	104.18.3.78	200 OK	233 kB
URL GET HTTPS s.nitropay.com/gpp-b4dfd58.min.js IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (65471) First Seen2025-05-01 Last Seen2025-07-07 Times Seen237 Size233 kB (232719 bytes) MD528eaf81ebc3e0d291f96d41af2efba56 SHA1b5e84ea58f0f2050211826cad725af6a55d4b93a SHA2561ce3637b40728b8bacc69f6256fc5ed1a0cb4bb7dcbbb9411de0df11a1134d4f Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers GET /gpp-b4dfd58.min.js HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 01 May 2025 09:04:45 GMT content-type: text/javascript x-guploader-uploadid: AAO2VwoFHOhakaD0I2uxs5o1dnt_rO13D1nfrT763Obb6J1jjiF9strptozuTC3lO9z12FtTc5O2mYU x-goog-generation: 1745942858331930 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 232719 x-goog-hash: crc32c=H1qBHw==, md5=KOr4Hrw+DSkfltQa8u+6Vg== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type expires: Wed, 07 May 2025 18:58:10 GMT cache-control: public, max-age=604800 last-modified: Tue, 29 Apr 2025 16:07:38 GMT etag: W/"28eaf81ebc3e0d291f96d41af2efba56" alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 50794 priority: u=3,i=?0 vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains server: cloudflare cf-ray: 938e1cfe2a335689-OSL content-encoding: gzip server-timing: cfExtPri

	GET www.googletagmanager.com/gtag/js?id=AW-807668235&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424	142.250.74.136	200 OK	344 kB
URL GET HTTPS www.googletagmanager.com/gtag/js?id=AW-807668235&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (5436) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size344 kB (344436 bytes) MD5f88bf3882aa4d55a82150daec6024b91 SHA17d17c0ee8c08b139500b982af77ba8c858530005 SHA25650eeecd1d96e457a8b09938535e2cf41941ff17bcf99972788515a648eb3ca46 Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com FingerprintE4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24 ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT HTTP Headers GET /gtag/js?id=AW-807668235&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 01 May 2025 09:04:44 GMT expires: Thu, 01 May 2025 09:04:44 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0 report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],} server: Google Tag Manager content-length: 117124 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET fonts.gstatic.com/s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2	142.250.74.35	200 OK	36 kB
URL GET HTTPS fonts.gstatic.com/s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 IP / ASN 142.250.74.35 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 35832, version 1.0 First Seen2025-01-20 Last Seen2025-08-07 Times Seen4895 Size36 kB (35832 bytes) MD55b90942f3d9d6636cc70a2d56ef84663 SHA1ae7aacfc3258d2c84f8ff49a90afcd121b4d4d37 SHA256bf9245342d2e64845487ebd41dbbe26d52952292e4fbdad99a82ce9365db337b Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1 ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT HTTP Headers GET /s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 35832 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Apr 2025 09:21:49 GMT expires: Fri, 24 Apr 2026 09:21:49 GMT cache-control: public, max-age=31536000 age: 603775 last-modified: Tue, 11 Mar 2025 01:08:13 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET ad-delivery.net/px.gif?ch=1&e=0.18424843153693216	104.22.5.65	200 OK	43 B
URL GET HTTPS ad-delivery.net/px.gif?ch=1&e=0.18424843153693216 IP / ASN 104.22.5.65 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-07 Times Seen177259 Size43 B (43 bytes) MD5ad4b0f606e0f8465bc4c4c170b37e1a3 SHA150b30fd5f87c85fe5cba2635cb83316ca71250d7 SHA256cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda Certificate Info IssuerGoogle Trust Services Subjectad-delivery.net Fingerprint20:0F:7D:7C:51:CC:97:6D:13:7E:DB:53:E1:F3:79:22:C6:CB:75:96 ValiditySat, 08 Mar 2025 14:39:59 GMT - Fri, 06 Jun 2025 15:39:58 GMT HTTP Headers `GET /px.gif?ch=1&e=0.18424843153693216 HTTP/1.1 Host: ad-delivery.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: image/gif content-length: 43 x-guploader-uploadid: AKDAyIsF8WjCUu1i8PGJdJ1kDI7Kgf3sj1GjqTQx6eEXEt7zwyyoAO7BY3_R3uvYr8At2PRO x-goog-generation: 1620242732037093 x-goog-metageneration: 5 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 43 x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Wed, 16 Apr 2025 17:19:48 GMT cache-control: public, max-age=86400 age: 1267402 last-modified: Wed, 05 May 2021 19:25:32 GMT etag: "ad4b0f606e0f8465bc4c4c170b37e1a3" cf-cache-status: HIT accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1d003bb456b1-OSL X-Firefox-Spdy: h2

	GET www.wowace.com/js/cobalt?v=6jYBwDuKJogccYdURuqrnHftT32m265OtHGmCW8-cGk1	104.17.64.160	200 OK	412 kB
URL GET HTTPS www.wowace.com/js/cobalt?v=6jYBwDuKJogccYdURuqrnHftT32m265OtHGmCW8-cGk1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2023-11-10 Last Seen2025-08-06 Times Seen422 Size412 kB (411979 bytes) MD5ae4ac7b882ecd7ec19d7a90e86aa2497 SHA125e1f2e73277750fa3ab634c83c655d057884c7b SHA256ee7fb772737aab516328e8ef0418ddb8db1bc6b6a354d570e1d63a30e7bcc9bf Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /js/cobalt?v=6jYBwDuKJogccYdURuqrnHftT32m265OtHGmCW8-cGk1 HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/paste/248c0ee6 Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/javascript; charset=utf-8 cache-control: public, max-age=16167286 expires: Tue, 04 Nov 2025 11:59:29 GMT last-modified: Mon, 04 Nov 2024 11:59:29 GMT x-aspnet-version: 4.0.30319 x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 87fae571c6ea0d7d1101b71cc2131bba.cloudfront.net (CloudFront) x-amz-cf-pop: FRA60-P4 x-amz-cf-id: EdK_zbjkzP2Vx8iXVTONxO8nxm0yr1lRlaTBtSylYgOEPlF3hjiP0g== cf-cache-status: HIT age: 15333208 server: cloudflare cf-ray: 938e1cef6f5c1bfa-OSL X-Firefox-Spdy: h2

	GET fonts.googleapis.com/css?family=Noto+Sans:400,700,400italic,700italic	142.250.74.10	200 OK	12 kB
URL GET HTTPS fonts.googleapis.com/css?family=Noto+Sans:400,700,400italic,700italic IP / ASN 142.250.74.10 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text First Seen2025-03-12 Last Seen2025-08-07 Times Seen320 Size12 kB (12022 bytes) MD588bace3139f2a25a1c7ee04a31c07b74 SHA178bce139405e387c3bee3ef0c14512a1eb53ae12 SHA25616f25ecc67e44ab06b724d498e2fd23acf56394217da88c76fd5b579c2e85a46 Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00 ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT HTTP Headers `GET /css?family=Noto+Sans:400,700,400italic,700italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 May 2025 09:04:43 GMT date: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/Elerium/fonts/CurseForgeUI/CurseForgeUI.woff?eo69io	104.17.64.160	200 OK	5.7 kB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/Elerium/fonts/CurseForgeUI/CurseForgeUI.woff?eo69io IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeWeb Open Font Format, TrueType, length 5680, version 1.0 First Seen2023-05-03 Last Seen2025-08-06 Times Seen416 Size5.7 kB (5680 bytes) MD5f605075e9fff4ad635d19bd850a6c10b SHA1869147747f317b0708cffd6e89c45a59694e0fc8 SHA256be64f3da3845ab9a1babccf0d01a3befa9036d39998ff6450db40eeffde41732 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/Elerium/fonts/CurseForgeUI/CurseForgeUI.woff?eo69io HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI; ResponsiveSwitch.DesktopMode=1 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:44 GMT content-type: font/x-woff content-length: 5680 last-modified: Tue, 22 Dec 2020 14:28:58 GMT etag: "071bfc86ed8d61:0" x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 x-cache: Miss from cloudfront via: 1.1 b95ed1d5d7e6929d372a45770a7d5778.cloudfront.net (CloudFront) x-amz-cf-pop: HEL51-P2 x-amz-cf-id: kqLt7y31dHWmz7ljGa53sWd8Nkl80JyiouTuVp5rQegZzbWbjt25TQ== cf-cache-status: HIT expires: Thu, 01 May 2025 13:04:44 GMT cache-control: public, max-age=14400 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1cf56eec1bfa-OSL X-Firefox-Spdy: h2

	GET s.nitropay.com/1.gif?x=1&adslot=	104.18.3.78	200 OK	42 B
URL GET HTTPS s.nitropay.com/1.gif?x=1&adslot= IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-07 Times Seen324709 Size42 B (42 bytes) MD5d89746888da2d9510b64a9f031eaecd5 SHA1d5fceb6532643d0d84ffe09c40c481ecdf59e15a SHA256ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers GET /1.gif?x=1&adslot= HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 01 May 2025 09:04:45 GMT content-type: image/gif content-length: 42 x-guploader-uploadid: AAO2VwqbUde9vhipaIiuicUFZYRnHW5MJ_-3HSDVzb0VTfPOQDY6d27JTk1HbhNhnoaW48Zf cache-control: public, max-age=604800 expires: Wed, 07 May 2025 18:58:02 GMT last-modified: Fri, 22 Jan 2021 08:58:45 GMT etag: "d89746888da2d9510b64a9f031eaecd5" x-goog-generation: 1611305925409947 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 42 x-goog-meta-: x-goog-custom-time: 1970-01-01T00:00:00Z x-goog-hash: crc32c=ljrbyA==, md5=2JdGiI2i2VELZKnwMers1Q== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 50802 accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains server: cloudflare cf-ray: 938e1cfa2ce55689-OSL server-timing: cfExtPri

	GET floors.nitropay.com/f?s=1950&c=NO	35.244.144.25	200 OK	2 B
URL GET HTTPS floors.nitropay.com/f?s=1950&c=NO IP / ASN 35.244.144.25 #396982 GOOGLE-CLOUD-PLATFORM Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJSON text data First Seen2023-03-07 Last Seen2025-08-07 Times Seen261050 Size2 B (2 bytes) MD599914b932bd37a50b983c5e7c90ae93b SHA1bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f SHA25644136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a Certificate Info IssuerGoogle Trust Services Subject.nitropay.com FingerprintBF:2B:22:7A:59:BC:7D:01:D7:92:F7:E4:87:83:01:05:EB:29:17:A0 ValidityFri, 28 Mar 2025 04:30:22 GMT - Thu, 26 Jun 2025 05:26:17 GMT HTTP Headers `GET /f?s=1950&c=NO HTTP/1.1 Host: floors.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wowace.com/ Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK access-control-allow-origin: * content-encoding: gzip content-type: application/json vary: Origin date: Thu, 01 May 2025 09:04:45 GMT content-length: 26 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	GET rumcdn.geoedge.be/65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js	54.240.174.7	200 OK	245 kB
URL GET HTTPS rumcdn.geoedge.be/65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js IP / ASN 54.240.174.7 #16509 AMAZON-02 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65434) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size245 kB (244944 bytes) MD5fb2ad394387ccc25d7f07eb0e11970b8 SHA1d8731af8b7bdc546fba07f4bb64b1baa8cf04593 SHA2568e51db18ce8ae9a5ee369dca3abe427586c37be435a4fb81805cb7e6bf5c8f70 Certificate Info IssuerAmazon Subjectgw.geoedge.be Fingerprint19:21:12:16:42:00:A7:21:CE:28:3D:7F:C7:0E:96:AC:C5:BF:B3:AB ValidityFri, 12 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT HTTP Headers `GET /65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js HTTP/1.1 Host: rumcdn.geoedge.be User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript date: Thu, 01 May 2025 08:35:00 GMT last-modified: Thu, 01 May 2025 08:25:40 GMT content-encoding: br x-amz-server-side-encryption: AES256 cache-control: public,max-age=3600,stale-while-revalidate=3600,immutable,must-revalidate x-amz-version-id: HFvh1lcI20I7QxO6dtefMwHLwiTJ9Ge_ server: AmazonS3 etag: W/"fb2ad394387ccc25d7f07eb0e11970b8" vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: qAeUwHHXKpt-WBgKrTy3Y8m94LxJQsP3uA-lIv5goonIcH1_D2xfoQ== age: 1787 timing-allow-origin: * X-Firefox-Spdy: h2

	GET s.nitropay.com/cmp/logo.png	104.18.3.78	200 OK	2.6 kB
URL GET HTTPS s.nitropay.com/cmp/logo.png IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typePNG image data, 80 x 62, 8-bit/color RGBA, non-interlaced First Seen2023-04-16 Last Seen2025-08-06 Times Seen2336 Size2.6 kB (2592 bytes) MD5940aa5b81e99bbb7414acc474a89bad9 SHA1e19998a580400a11fe57b72acb87e6eb27fbf1ee SHA2566d8fea63a817b75ec9bfbc153b60b576dd31392e4d2afbec0d83cc813f8aca4d Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers GET /cmp/logo.png HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: image/png content-length: 2592 x-guploader-uploadid: AAO2Vwr9phU-QpX8EG79WQakN0XiZOcKSurxraT_sRatsOQkyS6f6mXVi1uLcTdWhP3oP-qd x-goog-generation: 1666344058842900 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 2592 x-goog-hash: crc32c=naGVVg==, md5=lAqluB6Zu7dBSsxHSom62Q== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Type expires: Thu, 01 May 2025 09:58:41 GMT cache-control: public, max-age=3600 last-modified: Fri, 21 Oct 2022 09:20:58 GMT etag: "940aa5b81e99bbb7414acc474a89bad9" alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 181 accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains server: cloudflare cf-ray: 938e1d023fd35689-OSL server-timing: cfExtPri

	GET www.wowace.com/js/jquery?v=-l4Om55ehZs1gYrKtDvYMCO02R2CD_KZGhdbRy2UTxw1	104.17.64.160	200 OK	527 kB
URL GET HTTPS www.wowace.com/js/jquery?v=-l4Om55ehZs1gYrKtDvYMCO02R2CD_KZGhdbRy2UTxw1 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2023-11-10 Last Seen2025-08-06 Times Seen421 Size527 kB (527171 bytes) MD5053140c63d76a30276e82c96c3620424 SHA191633ae3ed6e26c59c270642ad75eafdf47614c7 SHA256783dff648c360cefbe2c8bb9931bad4aba6ed13381424f1e3a0ade80c6556198 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /js/jquery?v=-l4Om55ehZs1gYrKtDvYMCO02R2CD_KZGhdbRy2UTxw1 HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/paste/248c0ee6 Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/javascript; charset=utf-8 cache-control: public, max-age=25472022 expires: Fri, 20 Feb 2026 04:38:25 GMT last-modified: Thu, 20 Feb 2025 04:38:25 GMT x-aspnet-version: 4.0.30319 x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 b47ba5841a54cf2d19fc521c78e94514.cloudfront.net (CloudFront) x-amz-cf-pop: FRA60-P4 x-amz-cf-id: DwiSxXf0qEeCmnZuiMV3KvRJ7_BLoPFDXsmhNSNGpo0vdJjYfURjyw== cf-cache-status: HIT age: 6020015 server: cloudflare cf-ray: 938e1cef6f5a1bfa-OSL X-Firefox-Spdy: h2

	GET elerium-static.curseforge.com/js/Elerium	3.167.2.91	200 OK	561 kB
URL GET HTTPS elerium-static.curseforge.com/js/Elerium IP / ASN 3.167.2.91 #0 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (5396), with CRLF line terminators First Seen2024-02-18 Last Seen2025-05-18 Times Seen207 Size561 kB (561226 bytes) MD5a9a534882fb36b6d3ca719b134ad58c5 SHA1a76c49f9010c1977d3b7fbf777b3858cfd8efacc SHA2567f16b741dcd161b07b369d3dfdd9eaf9dd12054f7019ce5b63942c205e73a79a Certificate Info IssuerAmazon Subjectcurseforge.com FingerprintB8:9D:D1:C7:0B:53:C7:B2:C8:CC:B2:DF:DA:4A:9F:9F:6E:9D:93:4A ValidityFri, 11 Apr 2025 00:00:00 GMT - Sat, 09 May 2026 23:59:59 GMT HTTP Headers `GET /js/Elerium HTTP/1.1 Host: elerium-static.curseforge.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 expires: Fri, 01 May 2026 01:58:32 GMT last-modified: Thu, 01 May 2025 01:58:32 GMT server: Microsoft-IIS/10.0 x-aspnet-version: 4.0.30319 x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip date: Thu, 01 May 2025 09:04:43 GMT cache-control: private,max-age=14400 vary: accept-encoding x-cache: RefreshHit from cloudfront via: 1.1 c66a2f390287242c7df16dd5190aa68e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P2 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: gWEsPISXPKtzQLbsoXoBImSP9Yk8Z8IZnfkyVts4ftWHTV9UjdksIQ== X-Firefox-Spdy: h2

	GET rumcdn.geoedge.be/65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js	54.240.174.7	200 OK	245 kB
URL GET HTTPS rumcdn.geoedge.be/65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js IP / ASN 54.240.174.7 #16509 AMAZON-02 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65434) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size245 kB (244944 bytes) MD5fb2ad394387ccc25d7f07eb0e11970b8 SHA1d8731af8b7bdc546fba07f4bb64b1baa8cf04593 SHA2568e51db18ce8ae9a5ee369dca3abe427586c37be435a4fb81805cb7e6bf5c8f70 Certificate Info IssuerAmazon Subjectgw.geoedge.be Fingerprint19:21:12:16:42:00:A7:21:CE:28:3D:7F:C7:0E:96:AC:C5:BF:B3:AB ValidityFri, 12 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT HTTP Headers `GET /65feb8a3-8f42-4cd5-8115-51b0d028cd41/grumi.js HTTP/1.1 Host: rumcdn.geoedge.be User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript date: Thu, 01 May 2025 08:35:00 GMT last-modified: Thu, 01 May 2025 08:25:40 GMT content-encoding: br x-amz-server-side-encryption: AES256 cache-control: public,max-age=3600,stale-while-revalidate=3600,immutable,must-revalidate x-amz-version-id: HFvh1lcI20I7QxO6dtefMwHLwiTJ9Ge_ server: AmazonS3 etag: W/"fb2ad394387ccc25d7f07eb0e11970b8" vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: O2_HXViKEeEqU3fdPy3nLjOczmZGUe9AiZXIwtOpqFTvcMOVB4FhXA== age: 1786 timing-allow-origin: * X-Firefox-Spdy: h2

	GET consent.nitrocnct.com/vendor-list-v3.json	104.21.32.1	200 OK	706 kB
URL GET HTTPS consent.nitrocnct.com/vendor-list-v3.json IP / ASN 104.21.32.1 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJSON text data First Seen2025-04-20 Last Seen2025-05-05 Times Seen33 Size706 kB (706184 bytes) MD5fa206172303fa981cb866cfaeb941b33 SHA14cd62c5e65e4c388bf3bc02521f0f3ac41354142 SHA2566f855190c0d4893fea4f48098a61c51a25a99da6a347ff870407b1497d0f7328 Certificate Info IssuerGoogle Trust Services Subjectnitrocnct.com FingerprintC9:8E:E0:C9:BA:DC:3C:E9:2A:D3:C1:52:BA:34:4B:6F:F5:ED:1C:65 ValidityWed, 09 Apr 2025 21:05:20 GMT - Tue, 08 Jul 2025 22:04:00 GMT HTTP Headers `GET /vendor-list-v3.json HTTP/1.1 Host: consent.nitrocnct.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: application/json x-guploader-uploadid: AAO2VwqgN6r6Xq4GOgB3vGw_pBRfzoBjMue-0d_37O3vUvaVR-giair0Bl_tKq77PN-rwHai-re2Q1E x-goog-generation: 1745511308602509 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 706184 x-goog-hash: crc32c=wGjpiQ==, md5=+iBhcjA/qYHLhmz665QbMw== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Date, Origin, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Wed, 07 May 2025 07:05:22 GMT cache-control: public, max-age=604800 last-modified: Thu, 24 Apr 2025 16:15:08 GMT etag: W/"fa206172303fa981cb866cfaeb941b33" age: 92532 alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qiKGuUaKLlqbnmVdET26SQqlo0%2FVe73XTIvi1R1WFEA3EupUn76tvWgjWj1mnpu7hrpyC8biQo107rma%2FA6xuRJvV2f35ZPrkakkMuI8L3VlY3Qxbrw8fDuuwSIsOitbfgrhdnLVYCM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 938e1d006a03568f-OSL content-encoding: br server-timing: cfL4;desc="?proto=TCP&rtt=838&min_rtt=581&rtt_var=461&sent=55&recv=11&lost=0&retrans=0&sent_bytes=67408&recv_bytes=1323&delivery_rate=7264214&cwnd=254&unsent_bytes=31856&cid=e91a7eb828e4d99e&ts=45&x=0" X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css	104.17.64.160	200 OK	1.3 MB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text, with very long lines (65438) First Seen2025-05-01 Last Seen2025-07-26 Times Seen196 Size1.3 MB (1268780 bytes) MD5fc0e323ab80fd9ee4c260c3b040fe994 SHA1264715fc91ae4186764b79f5d8c93fd67479d4c3 SHA256d39e9a1a88d42ec6187ae2299afe8ffcdc6ec71d5029459ac5f0bebde51b6da7 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/WowAce/css/compiled.css HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/paste/248c0ee6 Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/css last-modified: Mon, 28 Apr 2025 08:28:56 GMT etag: W/"0d4ee9417b8db1:0" x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 2WAxgVu4XdO6fDJYdVpWK2FgwNhPlOzmOra1r-fHThKh5B9xspFzRA== cf-cache-status: HIT expires: Thu, 01 May 2025 13:04:43 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 938e1cef6f4f1bfa-OSL X-Firefox-Spdy: h2

	GET btloader.com/tag?o=6278260873756672&upapi=true	104.22.75.216	200 OK	117 kB
URL GET HTTPS btloader.com/tag?o=6278260873756672&upapi=true IP / ASN 104.22.75.216 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators First Seen2025-05-01 Last Seen2025-05-01 Times Seen8 Size117 kB (117238 bytes) MD5352610e9aeda99b7c99d853d5a625fe7 SHA19412c23f683e80ddca447be576827146ffbc2d5d SHA256b4837f6c4dc2a65d7888f3bd5b46ab25928e0c390ac8a8b67f42211edd829593 Certificate Info IssuerGoogle Trust Services Subjectbtloader.com FingerprintD0:99:6F:E4:64:6D:11:7F:EF:24:CE:0A:36:B9:43:D7:19:64:22:B5 ValidityThu, 03 Apr 2025 16:10:07 GMT - Wed, 02 Jul 2025 17:09:04 GMT HTTP Headers `GET /tag?o=6278260873756672&upapi=true HTTP/1.1 Host: btloader.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:45 GMT content-type: application/javascript content-length: 33126 access-control-allow-origin: * cache-control: public, max-age=300, stale-if-error=3600, stale-while-revalidate=300 content-encoding: gzip etag: "8f142fc9deb4c4ba5534cfe8abe02ec5" last-modified: Thu, 01 May 2025 08:08:25 GMT x-robots-tag: noindex, nofollow via: 1.1 google cf-cache-status: HIT accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1cfafe05eb54-CPH X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/generic-header-background.jpg	104.17.64.160	200 OK	56 kB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/generic-header-background.jpg IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1903x175, components 3 First Seen2024-08-24 Last Seen2025-08-06 Times Seen291 Size56 kB (56258 bytes) MD5b2c68dae2fdc493714f13ff06fe98912 SHA1be53a83deaefdd7a43214a098b21dabfe056e78c SHA256b472dc7024134b52d5c59b55bae33642c93fcf45021f344a1d7e936d19951fe5 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/WowAce/images/generic-header-background.jpg HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI; ResponsiveSwitch.DesktopMode=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:44 GMT content-type: image/jpeg content-length: 56258 cf-bgj: h2pri etag: "09ef0c96ed8d61:0" last-modified: Tue, 22 Dec 2020 14:29:00 GMT strict-transport-security: max-age=15768000 via: 1.1 b346b3370501b6371a77d76d7adba23e.cloudfront.net (CloudFront) x-amz-cf-id: tx-MFj1QRp1ponaR2TpuxXxJvNJKkzpSJALO_IBorve3c5dufPyOzQ== x-amz-cf-pop: ARN53-P1 x-cache: Miss from cloudfront x-frame-options: SAMEORIGIN x-ua-compatible: IE=edge,chrome=1 cf-cache-status: HIT age: 5850 expires: Thu, 01 May 2025 13:04:44 GMT cache-control: public, max-age=14400 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1cf50e771bfa-OSL X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-N8BTN266HQ&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424	142.250.74.136	200 OK	440 kB
URL GET HTTPS www.googletagmanager.com/gtag/js?id=G-N8BTN266HQ&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (8013) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size440 kB (439806 bytes) MD5f79b54c7797869227a69d7fd2513bb35 SHA1a78685c103c8474c34f88f869c229a42fd8918bc SHA2562919169b1bac8b3df127bbf70eb23c2a7903f17ac61d68120f321ba7d4983251 Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com FingerprintE4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24 ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT HTTP Headers GET /gtag/js?id=G-N8BTN266HQ&l=dataLayer&cx=c&gtm=45je54t1za200&tag_exp=101509156~102015666~103051953~103077950~103106314~103106316~103116026~103200004~103233424 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 01 May 2025 09:04:44 GMT expires: Thu, 01 May 2025 09:04:44 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0 report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],} server: Google Tag Manager content-length: 143482 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET rumcdn.geoedge.be/b0b01868-2045-4a3d-b8b0-db8e6cd0649d/grumi-ip.js	54.240.174.7	200 OK	17 kB
URL GET HTTPS rumcdn.geoedge.be/b0b01868-2045-4a3d-b8b0-db8e6cd0649d/grumi-ip.js IP / ASN 54.240.174.7 #16509 AMAZON-02 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (16974), with no line terminators First Seen2025-04-22 Last Seen2025-06-01 Times Seen43 Size17 kB (16974 bytes) MD5e4d7489649cbbe3b394eed3af6032ef5 SHA1e0d76f9e987e9dbdbe5417a902a0ee8c2eaf1350 SHA256eef68dc1b08e99637dc1ec3cfa848934163ba36e4a641a28e79d3b91763e3d53 Certificate Info IssuerAmazon Subjectgw.geoedge.be Fingerprint19:21:12:16:42:00:A7:21:CE:28:3D:7F:C7:0E:96:AC:C5:BF:B3:AB ValidityFri, 12 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT HTTP Headers `GET /b0b01868-2045-4a3d-b8b0-db8e6cd0649d/grumi-ip.js HTTP/1.1 Host: rumcdn.geoedge.be User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Thu, 01 May 2025 08:35:01 GMT last-modified: Sun, 27 Apr 2025 10:04:40 GMT content-encoding: br x-amz-server-side-encryption: AES256 cache-control: public, max-age=14400, stale-while-revalidate=14400, immutable x-amz-version-id: Jo_InD5EKAegqAAx8H7uvgqKePdKOgfh server: AmazonS3 etag: W/"e4d7489649cbbe3b394eed3af6032ef5" vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 5-ImPrNvUttmuNsk6KcHrQ3MsHbF2K0Myx_JK17czTLIPO-l3v20pw== age: 1785 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtm.js?id=GTM-PMP4WSG	142.250.74.136	404 Not Found	0 B
URL GET HTTPS www.googletagmanager.com/gtm.js?id=GTM-PMP4WSG IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-07 Times Seen5706475 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com FingerprintE4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24 ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT HTTP Headers `GET /gtm.js?id=GTM-PMP4WSG HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 404 Not Found cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1314:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1314:0 report-to: {"group":"ascgcycc:1314:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1314:0"}],} date: Thu, 01 May 2025 09:04:43 GMT content-type: text/html; charset=UTF-8 server: Google Tag Manager content-length: 1582 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET s.nitropay.com/ads-1950.js	104.18.3.78	200 OK	739 kB
URL GET HTTPS s.nitropay.com/ads-1950.js IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (60347) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size739 kB (739353 bytes) MD5241f13ba1bc66b0ad0899ef5a049c557 SHA1c390dcd0d81d8cf9c703d4508803eadeffe40b28 SHA256c09ad1033028c765b5927e39b242d799a5de6ba04ce6f6aabfec353e9e2509b1 Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers `GET /ads-1950.js HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:44 GMT content-type: text/javascript cf-ray: 938e1cf6cbfe569c-OSL cf-cache-status: HIT access-control-allow-origin: * age: 8226 cache-control: private, max-age=600 etag: W/"6c9149b1c742f3a1fdc1d1d1516e565b:1746069848000:NO" expires: Fri, 01 May 2026 03:25:41 GMT last-modified: Thu, 01 May 2025 03:24:08 GMT strict-transport-security: max-age=2592000; includeSubDomains access-control-expose-headers: Content-Type alt-svc: h3=":443"; ma=86400 x-goog-generation: 1746039309661227 x-goog-hash: crc32c=nRbAmg==, md5=bJFJscdC86H9wdHRUW5WWw== x-goog-meta-goog-reserved-file-mtime: 1746038833 x-goog-metageneration: 1 x-goog-storage-class: MULTI_REGIONAL x-goog-stored-content-encoding: identity x-goog-stored-content-length: 734230 x-guploader-uploadid: AAO2VwpTBkMplIbpEMnYw6U5Ih2dlJ7zcvEhWfWGtryophpff9ClFevgs16Zb0NJsrkFFeLe set-cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc; path=/; expires=Thu, 01-May-25 09:34:44 GMT; domain=.nitropay.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	GET www.wowace.com/paste/248c0ee6	104.17.64.160	200 OK	39 kB
URL User Request GET HTTPS www.wowace.com/paste/248c0ee6 IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byN/A Resource Info File typeJavaScript source, ASCII text, with very long lines (2688), with CRLF, LF line terminators First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size39 kB (38891 bytes) MD59a3d85cd861955624f471528ced3f99e SHA14aadace26e6961ef839d592ce7c1f3e06e848084 SHA2569fd5b3d5579d5077e596cdc6ffeed98eeef763999189a256a9894b11f13e59e2 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers `GET /paste/248c0ee6 HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:43 GMT content-type: text/html; charset=utf-8 x-ua-compatible: IE=edge,chrome=1 strict-transport-security: max-age=15768000 cache-control: no-cache pragma: no-cache expires: -1 x-aspnetmvc-version: 5.2 x-frame-options: SAMEORIGIN, SAMEORIGIN x-mvc-supplant-cachable: true x-aspnet-version: 4.0.30319 vary: accept-encoding x-cache: Miss from cloudfront via: 1.1 300b37db84213522f613ff36077caa62.cloudfront.net (CloudFront) x-amz-cf-pop: HEL51-P2 x-amz-cf-id: lO1n2-XN9IKhfpSMhUhbDy_Eee0eR3tG6VfLdy2LTQCUqf_7kVnxuQ== cf-cache-status: DYNAMIC set-cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Expires=Thu, 08 May 2025 09:04:42 GMT; Path=/ AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Expires=Thu, 08 May 2025 09:04:42 GMT; Path=/; SameSite=None; Secure Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; domain=.wowace.com; expires=Tue, 01-May-2035 09:04:42 GMT; path=/ __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI; path=/; expires=Thu, 01-May-25 09:34:43 GMT; domain=.wowace.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 938e1ce97f801bfa-OSL content-encoding: gzip X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/logo.svg	104.17.64.160	200 OK	10 kB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/logo.svg IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeSVG Scalable Vector Graphics image First Seen2023-11-10 Last Seen2025-08-06 Times Seen311 Size10 kB (10472 bytes) MD51f99d411837c7a3e28940d3fa936c383 SHA17ea4b5edc32e63580d05e538fa2b9a6e41b62426 SHA256c140dd87be7946aa697d70cba404d56b1a56c50f5ddc474c99b7f9ff52c445da Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/WowAce/images/logo.svg HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI; ResponsiveSwitch.DesktopMode=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:44 GMT content-type: image/svg+xml last-modified: Tue, 22 Dec 2020 14:29:00 GMT etag: W/"09ef0c96ed8d61:0" x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 1482b445efd5d8838c6d75e9af1c7238.cloudfront.net (CloudFront) x-amz-cf-pop: FCO50-P6 x-amz-cf-id: jeRezuArZ9QQURsg_iB5nHTRWcb3jfahmhxEf8Oz9rtaCoHUjlKeNQ== cf-cache-status: HIT age: 5850 expires: Thu, 01 May 2025 13:04:44 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 938e1cf50e711bfa-OSL X-Firefox-Spdy: h2

	GET www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/generic-header-logo.png	104.17.64.160	200 OK	24 kB
URL GET HTTPS www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/images/generic-header-logo.png IP / ASN 104.17.64.160 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typePNG image data, 387 x 156, 8-bit/color RGBA, non-interlaced First Seen2024-08-24 Last Seen2025-08-06 Times Seen290 Size24 kB (23504 bytes) MD53a0b1046fccd52717a5c1eecd73d9e63 SHA1e0e352521dea8ba396c1eeab7ab4e26a41282fb4 SHA2560a0c44384a45b9c07291d756be28cef62c0b93df98272c1575cec5f5936ea976 Certificate Info IssuerGoogle Trust Services Subjectwowace.com Fingerprint08:30:AD:72:B9:3D:AD:86:9F:41:63:83:CF:AA:02:45:A2:AC:7E:79 ValiditySun, 23 Mar 2025 04:38:45 GMT - Sat, 21 Jun 2025 05:38:42 GMT HTTP Headers GET /Content/2-0-9249-15100/Skins/WowAce/images/generic-header-logo.png HTTP/1.1 Host: www.wowace.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/Content/2-0-9249-15100/Skins/WowAce/css/compiled.css Cookie: AWSALB=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; AWSALBCORS=3Ogf/OZ12ADQFxIfkwEFew1cdNawXopbqBT4rN6aJFekgBQeb8SFp+2aL5dMpoO1d1cqKKoB3kJWxFXfMOG8qwwasf0wFknwKAUrMyHhhozDL/h3SgnRoKi847Ho; Unique_ID_v2=1baae1b526a040b18bf545cdb2198741; __cf_bm=5JVOHZgICHaFkwMq67DNeJze1ehTr0mMf3EC7eMFrbg-1746090283-1.0.1.1-9uvPLbNcQR2OmHfajSatnI4WvJT.01rWRSeq3jPxQF4dMMHfMUSC7Tw88qpmG1akiXB8hlEF2ngvbDRUl08.scn2.jEsfyi2eKYZgLgWKiI; ResponsiveSwitch.DesktopMode=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 01 May 2025 09:04:44 GMT content-type: image/png content-length: 23504 last-modified: Tue, 22 Dec 2020 14:29:00 GMT etag: "09ef0c96ed8d61:0" x-ua-compatible: IE=edge,chrome=1 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15768000 x-cache: Miss from cloudfront via: 1.1 d69f68bdb59268bebbaddc94da429b1a.cloudfront.net (CloudFront) x-amz-cf-pop: MXP64-P2 x-amz-cf-id: a0_n2fBQRMYFfIlN-EGouho70iAGnLWzcIjZ8mEoA9iUWIDtQZs3Lw== cf-cache-status: HIT age: 5850 expires: Thu, 01 May 2025 13:04:44 GMT cache-control: public, max-age=14400 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1cf50e801bfa-OSL X-Firefox-Spdy: h2

	GET media.forgecdn.net/avatars/97/683/636293447935662430.png	54.240.174.85	200 OK	1.6 kB
URL GET HTTPS media.forgecdn.net/avatars/97/683/636293447935662430.png IP / ASN 54.240.174.85 #16509 AMAZON-02 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typePNG image data, 16 x 16, 8-bit/color RGB, non-interlaced First Seen2023-11-10 Last Seen2025-08-06 Times Seen291 Size1.6 kB (1649 bytes) MD54cb43d658437b3c9939424880abf9b25 SHA172189825d131b111d46b1a22c4ab293948fb94ca SHA2560ef6e748104f8c84bae0c4c2fc645f0997a98d254162aca76b96293d598cdfbd Certificate Info IssuerAmazon Subjectcurseforge.com FingerprintB8:9D:D1:C7:0B:53:C7:B2:C8:CC:B2:DF:DA:4A:9F:9F:6E:9D:93:4A ValidityFri, 11 Apr 2025 00:00:00 GMT - Sat, 09 May 2026 23:59:59 GMT HTTP Headers `GET /avatars/97/683/636293447935662430.png HTTP/1.1 Host: media.forgecdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png content-length: 1649 last-modified: Fri, 28 Aug 2020 22:29:49 GMT x-amz-version-id: null accept-ranges: bytes server: AmazonS3 date: Thu, 01 May 2025 08:25:36 GMT cache-control: max-age=3600 etag: "4cb43d658437b3c9939424880abf9b25" vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 7B0h2SOnqQYAOER_opyJ6RpKmhltC0zupPmMYkutL22Pp2c4kGY7Og== age: 2349 X-Firefox-Spdy: h2

	GET configs.forgecdn.net/ow.min.js	3.167.2.115	200 OK	22 kB
URL GET HTTPS configs.forgecdn.net/ow.min.js IP / ASN 3.167.2.115 #0 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeHTML document, Unicode text, UTF-8 text, with very long lines (10101) First Seen2023-11-10 Last Seen2025-08-06 Times Seen423 Size22 kB (21521 bytes) MD5c4ba4285cce95fc0c4afd41c17f73e39 SHA1461034da34efd79de7b72ea73c5fd03de44a50b3 SHA256054ef57790c1506bcb5ecc4f16f897e0ff1cdfdef695d2d6e3e9d76c6897b377 Certificate Info IssuerAmazon Subjectcurseforge.com FingerprintB8:9D:D1:C7:0B:53:C7:B2:C8:CC:B2:DF:DA:4A:9F:9F:6E:9D:93:4A ValidityFri, 11 Apr 2025 00:00:00 GMT - Sat, 09 May 2026 23:59:59 GMT HTTP Headers `GET /ow.min.js HTTP/1.1 Host: configs.forgecdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/x-javascript content-length: 21521 date: Wed, 30 Apr 2025 09:57:21 GMT last-modified: Tue, 03 Oct 2023 10:41:45 GMT etag: "c4ba4285cce95fc0c4afd41c17f73e39" x-amz-server-side-encryption: AES256 x-amz-meta-cb-modifiedtime: Thu, 22 Jun 2023 14:45:05 GMT x-amz-version-id: HDRZdbuUXWf4KTsYncl_f77KNglrR9.7 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 094188bf05865a3d323dcbfb7173f1f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P2 x-amz-cf-id: KjnEWhXHvNvLXzbT6vQ4sMWwgHumiG-APnQ-ojNlwgQblo4WtZoM1w== age: 83243 X-Firefox-Spdy: h2

	GET fonts.googleapis.com/css?family=Open+Sans:400,700	142.250.74.10	200 OK	12 kB
URL GET HTTPS fonts.googleapis.com/css?family=Open+Sans:400,700 IP / ASN 142.250.74.10 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeASCII text, with very long lines (1572) First Seen2024-10-16 Last Seen2025-05-29 Times Seen1485 Size12 kB (11588 bytes) MD5b630d8ec59b107e15a64cb2e8236b144 SHA1246e8eb4235d443936f3aa35e329e7f8e5da82fc SHA2564099d0dc74ea892bf49fd78a729c8ed5528e6d5f885786575ab525ae54e33978 Certificate Info IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00 ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT HTTP Headers `GET /css?family=Open+Sans:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 01 May 2025 09:04:43 GMT date: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-3N8RVEG29S	142.250.74.136	200 OK	291 kB
URL GET HTTPS www.googletagmanager.com/gtag/js?id=G-3N8RVEG29S IP / ASN 142.250.74.136 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (2361) First Seen2025-05-01 Last Seen2025-05-01 Times Seen1 Size291 kB (291079 bytes) MD50a5542f529eb31175c996c5ace25fc2d SHA1fe300153b52bc0f84f11f4a1bcb0c52a1b7b92f2 SHA256c1dc178d2e990eedc70367051e3a5d671a68b7cbd440909eb19a4a6550e1f74c Certificate Info IssuerGoogle Trust Services Subject.google-analytics.com FingerprintE4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24 ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT HTTP Headers `GET /gtag/js?id=G-3N8RVEG29S HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 01 May 2025 09:04:43 GMT expires: Thu, 01 May 2025 09:04:43 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0 report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],} server: Google Tag Manager content-length: 104811 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET consent.nitrocnct.com/additional-consent-providers.csv	104.21.32.1	200 OK	109 kB
URL GET HTTPS consent.nitrocnct.com/additional-consent-providers.csv IP / ASN 104.21.32.1 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeCSV Unicode text, UTF-8 text First Seen2025-03-01 Last Seen2025-08-06 Times Seen2087 Size109 kB (109172 bytes) MD50b979ba6ea29782938b148b8fdad1d82 SHA17bca27fc650b8d19ca89858e78db11884b0440b5 SHA256e476ab4a8be9030adc26a696199faae8701289ba6c25a9c9465bfda00987f705 Certificate Info IssuerGoogle Trust Services Subjectnitrocnct.com FingerprintC9:8E:E0:C9:BA:DC:3C:E9:2A:D3:C1:52:BA:34:4B:6F:F5:ED:1C:65 ValidityWed, 09 Apr 2025 21:05:20 GMT - Tue, 08 Jul 2025 22:04:00 GMT HTTP Headers `GET /additional-consent-providers.csv HTTP/1.1 Host: consent.nitrocnct.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: text/csv content-length: 109172 x-guploader-uploadid: AHMx-iHiW_Wz8QEd2B2mXA4G8rzdZAnaCN3UewZHUEs8p68TJlA7Db4VHEBmiNNwJW3C94JA x-goog-generation: 1740499050366347 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 109172 x-goog-hash: crc32c=46FWvA==, md5=C5ebpuopeCk4sUi4/a0dgg== x-goog-storage-class: STANDARD access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Date, Origin, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Thu, 01 May 2025 08:56:20 GMT cache-control: public, max-age=3600 age: 1533 last-modified: Tue, 25 Feb 2025 15:57:30 GMT etag: "0b979ba6ea29782938b148b8fdad1d82" alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mnId61bYKsD5%2B3VK1VTkyTCzPBlTk4XcfPlPRgoP3ym2cCV8bnW%2FrJdvvrC3%2B0zfjOZ4bV4jejxuuP1W6J9XK%2B1Atpw7MmspK4yN6BOj7E3km%2Fa1Nxxn0geJe68DK4hsTkVUFGyY4Zs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 938e1d0059fb568f-OSL server-timing: cfL4;desc="?proto=TCP&rtt=838&min_rtt=581&rtt_var=461&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3280&recv_bytes=1323&delivery_rate=7264214&cwnd=254&unsent_bytes=0&cid=e91a7eb828e4d99e&ts=44&x=0" X-Firefox-Spdy: h2

	GET ad-delivery.net/px.gif?ch=2	104.22.5.65	200 OK	43 B
URL GET HTTPS ad-delivery.net/px.gif?ch=2 IP / ASN 104.22.5.65 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-07 Times Seen177259 Size43 B (43 bytes) MD5ad4b0f606e0f8465bc4c4c170b37e1a3 SHA150b30fd5f87c85fe5cba2635cb83316ca71250d7 SHA256cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda Certificate Info IssuerGoogle Trust Services Subjectad-delivery.net Fingerprint20:0F:7D:7C:51:CC:97:6D:13:7E:DB:53:E1:F3:79:22:C6:CB:75:96 ValiditySat, 08 Mar 2025 14:39:59 GMT - Fri, 06 Jun 2025 15:39:58 GMT HTTP Headers `GET /px.gif?ch=2 HTTP/1.1 Host: ad-delivery.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: image/gif content-length: 43 x-guploader-uploadid: AKDAyIsF8WjCUu1i8PGJdJ1kDI7Kgf3sj1GjqTQx6eEXEt7zwyyoAO7BY3_R3uvYr8At2PRO x-goog-generation: 1620242732037093 x-goog-metageneration: 5 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 43 x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Wed, 16 Apr 2025 17:19:48 GMT cache-control: public, max-age=86400 age: 1267402 last-modified: Wed, 05 May 2021 19:25:32 GMT etag: "ad4b0f606e0f8465bc4c4c170b37e1a3" cf-cache-status: HIT accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 938e1d003bbd56b1-OSL X-Firefox-Spdy: h2

	GET www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js	142.250.74.99	200 OK	653 kB
URL GET HTTPS www.gstatic.com/recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js IP / ASN 142.250.74.99 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (671) First Seen2025-04-30 Last Seen2025-07-01 Times Seen3130 Size653 kB (652680 bytes) MD5cded17fc3b606bf50119ef5425541a3a SHA1e11985d3bbce813e0349e732e24cd757b5a8ea2f SHA25631ab798a14c43a7608cd4eaa6026f4cf209371762263b6d1b0e562a264c00f4c Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1 ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT HTTP Headers `GET /recaptcha/releases/Hi8UmRMnhdOBM3IuViTkapUP/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} timing-allow-origin: * content-length: 276859 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 30 Apr 2025 13:55:10 GMT expires: Thu, 30 Apr 2026 13:55:10 GMT cache-control: public, max-age=31536000 last-modified: Tue, 29 Apr 2025 17:05:42 GMT content-type: text/javascript vary: Accept-Encoding age: 68974 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET wrappers.geoedge.be/wrapper.html	3.167.2.71	200 OK	3.5 kB
URL GET HTTPS wrappers.geoedge.be/wrapper.html IP / ASN 3.167.2.71 #0 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, ASCII text, with very long lines (3527), with no line terminators First Seen2023-12-21 Last Seen2025-08-06 Times Seen408 Size3.5 kB (3527 bytes) MD56a6d57dbabaa297544a761a67d32156f SHA1053214c312a3d876eb345e4779640f1228d9f9a1 SHA25668de9947c014ba26a1d48132dc5a94697f4c575972d2944da8e496f5780fd7b2 Certificate Info IssuerAmazon Subjectgw.geoedge.be Fingerprint19:21:12:16:42:00:A7:21:CE:28:3D:7F:C7:0E:96:AC:C5:BF:B3:AB ValidityFri, 12 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT HTTP Headers `GET /wrapper.html HTTP/1.1 Host: wrappers.geoedge.be User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.wowace.com/ content-type: text/plain Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html content-length: 3527 access-control-allow-origin: * access-control-allow-methods: GET last-modified: Tue, 19 Dec 2023 13:15:23 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: SIv.6LiuODikErkt8hGkZr.zJWI3NFp8 accept-ranges: bytes server: AmazonS3 date: Thu, 01 May 2025 04:22:58 GMT etag: "6a6d57dbabaa297544a761a67d32156f" x-cache: Hit from cloudfront via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P2 x-amz-cf-id: _frbeCcP7G-a33Ou8qpyfeWSnMTPtqmNrdBgxDlZx7oYeELd-SCZAA== age: 72176 X-Firefox-Spdy: h2

	GET ats-wrapper.privacymanager.io/ats-modules/438cb908-ed61-41e9-b716-05d5f4122a64/ats.js	3.167.2.72	200 OK	105 kB
URL GET HTTPS ats-wrapper.privacymanager.io/ats-modules/438cb908-ed61-41e9-b716-05d5f4122a64/ats.js IP / ASN 3.167.2.72 #0 Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators First Seen2025-03-08 Last Seen2025-07-06 Times Seen275 Size105 kB (105318 bytes) MD563c8f2f5e5242fecdfd2f7a54332dc08 SHA16d512f464899147ef5e0492edcd306001cc71a6b SHA25699b67a27cdad284ac44f963b556719a40c36fcf327b846ba1af86c8ed209ae8d Certificate Info IssuerAmazon Subject.privacymanager.io Fingerprint9A:76:71:40:30:D3:76:51:77:55:E5:E4:A1:7F:44:77:8F:EB:51:38 ValidityWed, 26 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT HTTP Headers `GET /ats-modules/438cb908-ed61-41e9-b716-05d5f4122a64/ats.js HTTP/1.1 Host: ats-wrapper.privacymanager.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Thu, 06 Mar 2025 14:56:19 GMT content-encoding: gzip x-amz-server-side-encryption: AES256 x-amz-version-id: fBhAou__CuxEO6eqr7YsxkszRASr.mGH server: AmazonS3 date: Thu, 01 May 2025 08:43:49 GMT cache-control: must-revalidate,public,max-age=3600 etag: W/"63c8f2f5e5242fecdfd2f7a54332dc08" vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 dfa43a17d6715f83d8bb6aa560e80366.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P2 x-amz-cf-id: CXOhloLF-v0sIrEpcNxHe3VKoldJOINVI_WdlstMDxWXMGPygTcW9w== age: 1257 X-Firefox-Spdy: h2

	GET s.nitropay.com/cmp/cancel.png	104.18.3.78	200 OK	1.3 kB
URL GET HTTPS s.nitropay.com/cmp/cancel.png IP / ASN 104.18.3.78 #13335 CLOUDFLARENET Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typePNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced First Seen2023-04-16 Last Seen2025-08-06 Times Seen2338 Size1.3 kB (1302 bytes) MD5c707b2d501a53bc2c66e98e4e5cabefb SHA1428a51cba1d520eae0c90de0cf367fd0ea0b9622 SHA25689863d0411e5273c7c2befe50bceeab57034e26b5df8751cc13c3bd78c73511d Certificate Info IssuerGoogle Trust Services Subjectnitropay.com Fingerprint7B:D5:3B:51:41:27:16:44:D4:3C:55:EE:D9:85:B8:A6:A9:BC:B5:C5 ValidityWed, 05 Mar 2025 04:54:07 GMT - Tue, 03 Jun 2025 05:54:04 GMT HTTP Headers GET /cmp/cancel.png HTTP/1.1 Host: s.nitropay.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.wowace.com/ Cookie: __cf_bm=V8D011DgNUnuHmtORFpIJ0IvlUnzGL7hzyLnJNfF81E-1746090284-1.0.1.1-RRJQo9FimdJkwusDVspyoL.7CruKp52FZdLxSHHXCHaYPMbm4qrmVzJgrm.r9tIDt1b6uV6lzFz6qyYYbM8PZlRTpia5tRtKDOYwiCdpawc Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 01 May 2025 09:04:46 GMT content-type: image/png content-length: 1302 x-guploader-uploadid: AAO2VwoltmpzpJCV-wdfPbt0lokoqe1S7WXRho2uD_TmDu1G8Q812DFXMK0OkGIybaziA0Pr x-goog-generation: 1666344058825998 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 1302 x-goog-hash: crc32c=QrhBNA==, md5=xwey1QGlO8LGbpjk5cq++w== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Thu, 01 May 2025 09:58:50 GMT cache-control: public, max-age=3600 last-modified: Fri, 21 Oct 2022 09:20:58 GMT etag: "c707b2d501a53bc2c66e98e4e5cabefb" alt-svc: h3=":443"; ma=86400 cf-cache-status: HIT age: 181 accept-ranges: bytes priority: u=4,i=?0 vary: Accept-Encoding strict-transport-security: max-age=2592000; includeSubDomains server: cloudflare cf-ray: 938e1d023fd25689-OSL server-timing: cfExtPri

	GET fonts.gstatic.com/s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2	142.250.74.35	200 OK	36 kB
URL GET HTTPS fonts.gstatic.com/s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 IP / ASN 142.250.74.35 #15169 GOOGLE Requested byhttps://www.wowace.com/paste/248c0ee6 Resource Info File typeWeb Open Font Format (Version 2), TrueType, length 35832, version 1.0 First Seen2025-01-20 Last Seen2025-08-07 Times Seen4895 Size36 kB (35832 bytes) MD55b90942f3d9d6636cc70a2d56ef84663 SHA1ae7aacfc3258d2c84f8ff49a90afcd121b4d4d37 SHA256bf9245342d2e64845487ebd41dbbe26d52952292e4fbdad99a82ce9365db337b Certificate Info IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1 ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT HTTP Headers GET /s/notosans/v39/o-0bIpQlx3QUlC5A4PNB6Ryti20_6n1iPHjc5a7du3mnPyxVig.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.wowace.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 35832 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Apr 2025 09:21:49 GMT expires: Fri, 24 Apr 2026 09:21:49 GMT cache-control: public, max-age=31536000 age: 603775 last-modified: Tue, 11 Mar 2025 01:08:13 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (34)

HTTP Transactions (48)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers