Report - blog.exatrack.com/melofee/

Report Overview

Visitedpublic

2025-07-10 01:18:55

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
blog.exatrack.com	unknown	unknown	No data	No data	6.8 kB	2.2 MB	141.95.149.126
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-09	3.5 kB	448 kB	142.250.178.99
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-07-09	1.0 kB	77 kB	142.250.74.10
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-07-09	459 B	6.6 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-07-10	medium	blog.exatrack.com/melofee/	Detects Generic ShellScript Downloader

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	blog.exatrack.com/melofee/	ScriptElement	226 B	2025-07-10	2025-07-25
URL blog.exatrack.com/melofee/ IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-10 Last Seen 2025-07-25 Times Seen 4 Size 226 B (226 bytes) MD5 acb0e1edaa953697296cc07938f7da04 SHA1 329223e85fb52be5ec5af01ea6148ff58a09a687 SHA256 ecfe642799b3d16fe21b48521a323b84340fec9618df008114f80fb2dc3d64b5 Format Code Loading...

	blog.exatrack.com/js/bootstrap.min.js	ScriptElement	37 kB	2023-03-07	2025-08-02
URL blog.exatrack.com/js/bootstrap.min.js IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 36363 Size 37 kB (37045 bytes) MD5 5869c96cc8f19086aee625d670d741f9 SHA1 430a443d74830fe9be26efca431f448c1b3740f9 SHA256 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Format Code Loading...

	blog.exatrack.com/js/jquery.min.js	ScriptElement	97 kB	2023-03-07	2025-08-02
URL blog.exatrack.com/js/jquery.min.js IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 36324 Size 97 kB (97163 bytes) MD5 4f252523d4af0b478c810c2547a63e19 SHA1 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb SHA256 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Format Code Loading...

	blog.exatrack.com/js/creative.min.js	ScriptElement	1.1 kB	2025-06-20	2025-07-25
URL blog.exatrack.com/js/creative.min.js IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-20 Last Seen 2025-07-25 Times Seen 5 Size 1.1 kB (1112 bytes) MD5 bb9d492fefd8959e8ff69b30bf2749e7 SHA1 7245c7adb05f05dcafc68724381dc35e641de0bc SHA256 3847b3624c24b667eed6742a6456060a415bc7ef6e5620d7e4744d5c11fa4d29 Format Code Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js	ScriptElement	5.6 kB	2023-03-07	2025-08-01
URL cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js IP / ASN 104.17.25.14 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 1743 Size 5.6 kB (5555 bytes) MD5 3eac3c72434a0945b92dd4a01f7b6b4e SHA1 7767b356530e39cd76ec259320b0b2774b4097a8 SHA256 ac3f3a757bfbfc9d92bc8f5e6e6362e5d4ae41dbf3cebacdda9b8f71afc82e5b Format Code Loading...

	blog.exatrack.com/js/scrollreveal.min.js	ScriptElement	8.5 kB	2023-03-07	2025-07-28
URL blog.exatrack.com/js/scrollreveal.min.js IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-28 Times Seen 156 Size 8.5 kB (8487 bytes) MD5 b8d4ede888d284c51cbf85d686e02da3 SHA1 aea504a314fcfdc65f3013e13219b8c92776ffdb SHA256 9140213f193f683ccee63ed57bb1e303d1e156af982fb15d4c1b03dc1eefdc60 Format Code Loading...

	blog.exatrack.com/js/jquery.magnific-popup.min.js	ScriptElement	20 kB	2023-03-07	2025-08-02
URL blog.exatrack.com/js/jquery.magnific-popup.min.js IP / ASN 141.95.149.126 #16276 OVH SAS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 16864 Size 20 kB (20216 bytes) MD5 ba6cf724c8bb1cf5b084e79ff230626e SHA1 f455c5f153f872e52265f87a644ff89fe14a6fb6 SHA256 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4 Format Code Loading...

HTTP Transactions (24)

URL IP Response Size

GET blog.exatrack.com/js/jquery.magnific-popup.min.js

141.95.149.126

200 OK

20 kB

URL

blog.exatrack.com/js/jquery.magnific-popup.min.js

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (20087)

First Seen2023-03-07

Last Seen2025-08-02

Times Seen16864

Size20 kB (20216 bytes)

MD5ba6cf724c8bb1cf5b084e79ff230626e

SHA1f455c5f153f872e52265f87a644ff89fe14a6fb6

SHA2563fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "4ef8-6297440980bf4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7346
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

GET blog.exatrack.com/js/creative.min.js

141.95.149.126

200 OK

1.1 kB

URL

blog.exatrack.com/js/creative.min.js

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (872)

First Seen2025-06-20

Last Seen2025-07-25

Times Seen5

Size1.1 kB (1112 bytes)

MD5bb9d492fefd8959e8ff69b30bf2749e7

SHA17245c7adb05f05dcafc68724381dc35e641de0bc

SHA2563847b3624c24b667eed6742a6456060a415bc7ef6e5620d7e4744d5c11fa4d29

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /js/creative.min.js HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "458-629744096c3d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 687
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

GET fonts.gstatic.com/s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2

142.250.178.99

200 OK

98 kB

URL

fonts.gstatic.com/s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 97776, version 1.0

First Seen2025-03-05

Last Seen2025-08-02

Times Seen1260

Size98 kB (97776 bytes)

MD5e6c9a38367c7a204d3cc630e657c5f98

SHA1f04e08b1d0f67f8a0e91a0695317caa49af1ab66

SHA256a851aa2bdd01adc4d11d1982670db59caf5dd13efb42d58e83191e61b532aaa8

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 97776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Jul 2025 17:36:15 GMT
expires: Tue, 07 Jul 2026 17:36:15 GMT
cache-control: public, max-age=31536000
age: 200524
last-modified: Thu, 29 May 2025 19:26:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.178.99

200 OK

48 kB

URL

fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48332, version 1.0

First Seen2025-05-29

Last Seen2025-08-02

Times Seen31352

Size48 kB (48332 bytes)

MD55734e133a619a6ae6ee21a6c00a95eba

SHA157c0ac17302d07bd4f968240098afe5ed53d4ad2

SHA256d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Jul 2025 15:48:00 GMT
expires: Fri, 03 Jul 2026 15:48:00 GMT
cache-control: public, max-age=31536000
age: 552619
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET blog.exatrack.com/js/jquery.min.js

141.95.149.126

200 OK

97 kB

URL

blog.exatrack.com/js/jquery.min.js

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32077)

First Seen2023-03-07

Last Seen2025-08-02

Times Seen36324

Size97 kB (97163 bytes)

MD54f252523d4af0b478c810c2547a63e19

SHA15a9dcfbef655a2668e78baebeaa8dc6f41d8dabb

SHA256668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:17 GMT
ETag: "17b8b-6297440997355-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33760
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET blog.exatrack.com/js/scrollreveal.min.js

141.95.149.126

200 OK

8.5 kB

URL

blog.exatrack.com/js/scrollreveal.min.js

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (8487), with no line terminators

First Seen2023-03-07

Last Seen2025-07-28

Times Seen156

Size8.5 kB (8487 bytes)

MD5b8d4ede888d284c51cbf85d686e02da3

SHA1aea504a314fcfdc65f3013e13219b8c92776ffdb

SHA2569140213f193f683ccee63ed57bb1e303d1e156af982fb15d4c1b03dc1eefdc60

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /js/scrollreveal.min.js HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:17 GMT
ETag: "2127-62974409a4e15-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2933
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

GET blog.exatrack.com/css/creative.css

141.95.149.126

200 OK

8.3 kB

URL

blog.exatrack.com/css/creative.css

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeassembler source, ASCII text

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size8.3 kB (8324 bytes)

MD5b5bd61c275f2473fcc90a2188afafaba

SHA1b877a15ff70ca0244b65aaee20d1e458ee322b6f

SHA256c1192be97fef4e3d4db1487434f0c62514bd6ab42520d6e5ff12e6b3cbf819c0

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /css/creative.css HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "2084-62974408c53eb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1730
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET blog.exatrack.com/css/style.css

141.95.149.126

200 OK

181 B

URL

blog.exatrack.com/css/style.css

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeASCII text

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size181 B (181 bytes)

MD5686ad0d35ed7b4ea50990a6a8097ebba

SHA1e807f2c00439bd003269230743fe45204af89d48

SHA256133a241e44191cd14de897cc8fb6f18ffcf0e5972d636ca13537dfc5b8640e43

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /css/style.css HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "b5-62974408d8c6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 137
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET blog.exatrack.com/js/bootstrap.min.js

141.95.149.126

200 OK

37 kB

URL

blog.exatrack.com/js/bootstrap.min.js

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32033)

First Seen2023-03-07

Last Seen2025-08-02

Times Seen36363

Size37 kB (37045 bytes)

MD55869c96cc8f19086aee625d670d741f9

SHA1430a443d74830fe9be26efca431f448c1b3740f9

SHA25653964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "90b5-6297440956c12-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9833
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET fonts.gstatic.com/s/opensans/v43/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.178.99

200 OK

50 kB

URL

fonts.gstatic.com/s/opensans/v43/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 50240, version 1.0

First Seen2025-05-29

Last Seen2025-08-02

Times Seen3172

Size50 kB (50240 bytes)

MD5dba569bdb53ca7d40993ce9cb3078f09

SHA128adc322e222b2f4776591584fe1798241c9f599

SHA256403c82a23b3fb81e55014f52bf33edac492e2b406c3e59652d3505e82311da32

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/opensans/v43/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Jul 2025 17:14:02 GMT
expires: Fri, 03 Jul 2026 17:14:02 GMT
cache-control: public, max-age=31536000
age: 547457
last-modified: Wed, 28 May 2025 17:52:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.178.99

200 OK

48 kB

URL

fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48332, version 1.0

First Seen2025-05-29

Last Seen2025-08-02

Times Seen31352

Size48 kB (48332 bytes)

MD55734e133a619a6ae6ee21a6c00a95eba

SHA157c0ac17302d07bd4f968240098afe5ed53d4ad2

SHA256d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Jul 2025 15:48:00 GMT
expires: Fri, 03 Jul 2026 15:48:00 GMT
cache-control: public, max-age=31536000
age: 552619
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET blog.exatrack.com/melofee/

141.95.149.126

200 OK

63 kB

URL

blog.exatrack.com/melofee/

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (597)

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size63 kB (62635 bytes)

MD5ea1a3e8ee4426d90a0ccc074ea9b456c

SHA1e1990b6c69ff8c9ee877f3ad99449d862f4528a7

SHA2560892301f6314bd2b2689b908a8b233fd01ac8b278679a04f6cbca631b38f9984

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detects Generic ShellScript Downloader

HTTP Headers

GET /melofee/ HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:17 GMT
ETag: "f4ab-6297440a01a7a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15041
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

GET blog.exatrack.com/css/bootstrap.min.css

141.95.149.126

200 OK

121 kB

URL

blog.exatrack.com/css/bootstrap.min.css

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeASCII text, with very long lines (65371)

First Seen2023-04-05

Last Seen2025-08-02

Times Seen26407

Size121 kB (121200 bytes)

MD5ec3bb52a00e176a7181d454dffaea219

SHA16527d8bf3e1e9368bab8c7b60f56bc01fa3afd68

SHA256f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "1d970-62974408bb7ab-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19744
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

GET blog.exatrack.com/melofee/img/invest_graph.png

141.95.149.126

200 OK

351 kB

URL

blog.exatrack.com/melofee/img/invest_graph.png

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typePNG image data, 3009 x 1266, 8-bit/color RGBA, non-interlaced

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size351 kB (351166 bytes)

MD5a37ad6cae355c42ac8194ab193832352

SHA10ed83e026a6f0e0adf797700861ee06e3c6c8dc6

SHA25637a93d2c644244a60ddedfc3ac191d24f385020b5604aa9834d009ab1ea21c0a

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /melofee/img/invest_graph.png HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:17 GMT
ETag: "55bbe-62974409c22d7"
Accept-Ranges: bytes
Content-Length: 351166
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

GET fonts.gstatic.com/s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2

142.250.178.99

200 OK

98 kB

URL

fonts.gstatic.com/s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 97776, version 1.0

First Seen2025-03-05

Last Seen2025-08-02

Times Seen1260

Size98 kB (97776 bytes)

MD5e6c9a38367c7a204d3cc630e657c5f98

SHA1f04e08b1d0f67f8a0e91a0695317caa49af1ab66

SHA256a851aa2bdd01adc4d11d1982670db59caf5dd13efb42d58e83191e61b532aaa8

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/merriweather/v32/u-4e0qyriQwlOrhSvowK_l5UcA6zuSYEqOzpPe3HOZJ5eX1WtLaQwmYiSeqqJ-mXrVGjziE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 97776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Jul 2025 17:36:15 GMT
expires: Tue, 07 Jul 2026 17:36:15 GMT
cache-control: public, max-age=31536000
age: 200524
last-modified: Thu, 29 May 2025 19:26:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/merriweather/v32/u-4c0qyriQwlOrhSvowK_l5-eTxCVx0ZbwLvKH2Gk9hLmp0v5yA-xXPqCzLvF-udrHOm7iHDFw.woff2

142.250.178.99

200 OK

101 kB

URL

fonts.gstatic.com/s/merriweather/v32/u-4c0qyriQwlOrhSvowK_l5-eTxCVx0ZbwLvKH2Gk9hLmp0v5yA-xXPqCzLvF-udrHOm7iHDFw.woff2

IP / ASN

142.250.178.99

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 100572, version 1.0

First Seen2025-03-05

Last Seen2025-08-02

Times Seen392

Size101 kB (100572 bytes)

MD5c22c80eb486b4608d1a4047864cfe83a

SHA1c3f3258c2c5ade50bf493e6b29cf75452a62bc4c

SHA256caa1da88ecea68d5d4b79881792675c76e691f5141ae3fef85bd472920436053

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint31:00:3B:00:14:9F:47:29:F3:46:E5:7C:57:30:CC:88:CC:DB:A8:07

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /s/merriweather/v32/u-4c0qyriQwlOrhSvowK_l5-eTxCVx0ZbwLvKH2Gk9hLmp0v5yA-xXPqCzLvF-udrHOm7iHDFw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.exatrack.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 100572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Jul 2025 17:36:15 GMT
expires: Tue, 07 Jul 2026 17:36:15 GMT
cache-control: public, max-age=31536000
age: 200524
last-modified: Thu, 29 May 2025 19:21:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET blog.exatrack.com/css/font-awesome.min.css

141.95.149.126

200 OK

29 kB

URL

blog.exatrack.com/css/font-awesome.min.css

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeASCII text, with very long lines (28900)

First Seen2023-04-05

Last Seen2025-08-02

Times Seen7207

Size29 kB (29063 bytes)

MD54083f5d376eb849a458cc790b53ba080

SHA1fb5b49426dee7f1508500e698d1b3c6b04c8fcce

SHA256008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /css/font-awesome.min.css HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "7187-62974408cffcc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6666
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET fonts.googleapis.com/css?family=Merriweather:400,300,300italic,400italic,700,700italic,900,900italic

142.250.74.10

200 OK

17 kB

URL

fonts.googleapis.com/css?family=Merriweather:400,300,300italic,400italic,700,700italic,900,900italic

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeASCII text

First Seen2025-06-03

Last Seen2025-08-01

Times Seen198

Size17 kB (17132 bytes)

MD5f6ee2a2c9bd2df6048a55547bb660b4d

SHA12188d528a813c539061421daf5999ce90b972b28

SHA256d60cdbd33f612c4edb1c2414f2fc64836c18cf885d89fde2071e21252a66dbd7

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

FingerprintB7:F0:7E:3A:46:13:9F:42:76:6A:5D:6E:85:25:78:85:99:EE:67:71

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /css?family=Merriweather:400,300,300italic,400italic,700,700italic,900,900italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Jul 2025 01:18:18 GMT
date: Thu, 10 Jul 2025 01:18:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET blog.exatrack.com/img/exatrack.png

141.95.149.126

200 OK

31 kB

URL

blog.exatrack.com/img/exatrack.png

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typePNG image data, 1297 x 336, 8-bit/color RGBA, non-interlaced

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size31 kB (31032 bytes)

MD50bbe022f88f1252fb9dabf8411199c3b

SHA13cd5ea522901fcdacc3f3b9f3516f6b254418265

SHA256e5b886ce752b85feef44debec5f87ed313db919f8edb7d635ed91069df2062e1

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /img/exatrack.png HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "7938-6297440926e70"
Accept-Ranges: bytes
Content-Length: 31032
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

GET blog.exatrack.com/melofee/img/panda.png

141.95.149.126

200 OK

1.4 MB

URL

blog.exatrack.com/melofee/img/panda.png

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typePNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size1.4 MB (1378961 bytes)

MD5df170fbb6892eb03b6daba7b95658a02

SHA1b11d94c206bedc62b50acebe9fe4bad16309bddb

SHA2565df7a28f63a28dc3d25a21e01ab0a4648815eff53f19594f55a6202e6d8ceba4

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /melofee/img/panda.png HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:18 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:17 GMT
ETag: "150a91-62974409eb319"
Accept-Ranges: bytes
Content-Length: 1378961
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

GET blog.exatrack.com/fonts/fontawesome-webfont.woff2?v=4.6.3

141.95.149.126

200 OK

72 kB

URL

blog.exatrack.com/fonts/fontawesome-webfont.woff2?v=4.6.3

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 71896, version 4.393

First Seen2023-04-05

Last Seen2025-08-02

Times Seen13356

Size72 kB (71896 bytes)

MD5e6cf7c6ec7c2d6f670ae9d762604cb0b

SHA197e438cc545714309882fbceadbf344fcaddcec5

SHA2567dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 10 Jul 2025 01:18:19 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Tue, 17 Dec 2024 09:52:16 GMT
ETag: "118d8-6297440906ace"
Accept-Ranges: bytes
Content-Length: 71896
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2

GET blog.exatrack.com/favicon.ico

141.95.149.126

404 Not Found

280 B

URL

blog.exatrack.com/favicon.ico

IP / ASN

141.95.149.126

#16276 OVH SAS

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeHTML document, ASCII text

First Seen2025-07-10

Last Seen2025-07-25

Times Seen4

Size280 B (280 bytes)

MD5f816c0d787545605c030bffc321afa2c

SHA1759bb0798259b5ed92e2eee31392010967f6f63d

SHA256d3b87525a8ae133fb0039527a543c3c50e384ef4827c6f0df3ec976d22e28be2

Certificate Info

IssuerLet's Encrypt

Subjectblog.exatrack.com

Fingerprint7D:E6:30:A1:13:AD:99:02:51:32:C1:64:49:B8:B4:A6:28:81:7A:DB

ValidityTue, 08 Jul 2025 07:58:05 GMT - Mon, 06 Oct 2025 07:58:04 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: blog.exatrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/melofee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 10 Jul 2025 01:18:19 GMT
Server: Apache/2.4.62 (Debian)
Content-Length: 280
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800

142.250.74.10

200 OK

58 kB

URL

fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeASCII text, with very long lines (1572)

First Seen2025-05-29

Last Seen2025-08-02

Times Seen2771

Size58 kB (58085 bytes)

MD52d3261e7a5630e984eec10236e590f89

SHA18316411c84a81f833ec925c9dbf713a6da45c655

SHA2560475157ed09f1ebac282855599ce11346539e288b07fc75710376236e9746b71

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

FingerprintB7:F0:7E:3A:46:13:9F:42:76:6A:5D:6E:85:25:78:85:99:EE:67:71

ValidityTue, 17 Jun 2025 20:02:59 GMT - Tue, 09 Sep 2025 20:02:58 GMT

HTTP Headers

GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Jul 2025 01:18:18 GMT
date: Thu, 10 Jul 2025 01:18:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js

104.17.25.14

200 OK

5.6 kB

URL

cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://blog.exatrack.com/melofee/

Resource Info

File typeUnicode text, UTF-8 text, with very long lines (3601)

First Seen2023-03-07

Last Seen2025-08-01

Times Seen1743

Size5.6 kB (5555 bytes)

MD53eac3c72434a0945b92dd4a01f7b6b4e

SHA17767b356530e39cd76ec259320b0b2774b4097a8

SHA256ac3f3a757bfbfc9d92bc8f5e6e6362e5d4ae41dbf3cebacdda9b8f71afc82e5b

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77

ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

HTTP Headers

GET /ajax/libs/jquery-easing/1.3/jquery.easing.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blog.exatrack.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 01:18:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 1507
cf-ray: 95cc39f5ed6756a5-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-15b3"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 674541
expires: Tue, 30 Jun 2026 01:18:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ebLuuByMOELcgHNt%2BDo17ew%2FpPjzEztL7E5O9mL8Fh5aYlCqa9rcWdS18Li4fu4GlA1Yt2oYW6xiGUpw1Sg9w2Fc1t%2FZbk3zn09RkMzGUv7d%2BnJZtSg0MPQv%2FqG7Tfl7EiZJ4nD3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2