| www.xn--sitead-u9a.com/virus.exe | 104.247.168.227 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/2www.xn--sitead-u9a.com/virus.exe IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /virus.exe HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
location: https://www.xn--sitead-u9a.com
content-length: 0
date: Wed, 17 Apr 2024 05:36:36 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 104.247.168.227 | 200 OK | 14 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Wed, 03 Apr 2024 02:58:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14071
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3 | 104.247.168.227 | 200 OK | 24 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeASCII text, with very long lines (1412) Hash6f3a8575123828f07f6f04213344df73 54355d87108dea4c202217ee730dbacd4e8d149a 78b6dd5f13d0e3d5a5e8f91980e7a16653ef7292a06d8a69661a67c71521a08b
GET /wp-content/themes/Newsmag/style.css?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23506
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx | 104.247.168.227 | 200 OK | 64 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
Hash2ed9f85069832c1e7a544eb147d8feab 0f2cee8c1d7fc9f378ab819848d4857593292dbb ccb626016280bc57664e6ae0ba76f407eb79d9b4b0654c8fcfaefce3f325f74d
GET /wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 63576
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 104.247.168.227 | 200 OK | 30 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 08 Nov 2023 03:00:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29744
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3 | 104.247.168.227 | 200 OK | 100 B |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
Hashd7c1e5e9e4cf67e01e3f04cf602f5d9a 2b7728e668d982326cefa0a58434bbdf0eed7ace c54f72824f6edc24edc082b2d17a7f8cf2bef0bb8a2c3ddf000dcae5df3511e8
GET /wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-length: 100
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 104.247.168.227 | 200 OK | 4.7 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 09 Aug 2023 03:03:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4678
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3 | 104.247.168.227 | 200 OK | 56 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJavaScript source, ASCII text, with very long lines (670) Hash45ccdf9918bda708a0e7593f433ea27b a5dc348c0566d56e359fbc624ca10d9e9ee54028 2d437cdc18650bb8097437dbae3deedd7a5a55a47d69559f3991843f0577ab22
GET /wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 56005
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2 | 104.247.168.227 | 200 OK | 1.2 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeASCII text, with very long lines (2946) Hash492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 25 May 2022 03:00:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1228
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-logo-mobil2.png | 104.247.168.227 | 200 OK | 11 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-logo-mobil2.png IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typePNG image data, 240 x 51, 8-bit/color RGBA, non-interlaced Hash71ac30b2fd55d8db732d1212addaa5a0 c2de72a6da6482770c003105936defc0ad13a3c0 82c406019d93d07ba89b59475e3ece3d02d0e30cdaade62fdd797de86a014149
GET /wp-content/uploads/2021/12/siteadi-logo-mobil2.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 17:19:11 GMT
accept-ranges: bytes
content-length: 11013
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-reklam.png | 104.247.168.227 | 200 OK | 8.6 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-reklam.png IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Hash80ee98947514da88a8d02f489d606681 e2550e62836e6a8b427b324523667703f87a68d7 3190a6e49cd109f5d86c0d294098e01184bf366f2f60034df5be201776d071e5
GET /wp-content/uploads/2021/12/siteadi-reklam.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 15:28:25 GMT
accept-ranges: bytes
content-length: 8626
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-68166856-44 | 142.251.9.97 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-68166856-44 IP142.251.9.97:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hasha70944af3d299e47e69c5955c4271210 e447c80d580acc102a15480289d6c20f6b0726a8 1bf0a74552c932c44b9b2847ecc0b1d97ea28156ebdc99252273e6cf74ed3ec1
GET /gtag/js?id=UA-68166856-44 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:39 GMT
expires: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c | 142.251.9.97 | 200 OK | 86 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c IP142.251.9.97:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash4de95744a4677082e89f3366ef51ef0a 4b6b508ad8484a3cefb310c1eb183b0d169cf07c 48aafebb4c29e53165db64c8cfeac3d90b7195a2a8d320669f45518f4cd74c24
GET /gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:39 GMT
expires: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| four.startperfectsolutions.com/scripts/sold.js | 45.142.212.163 | 200 OK | 43 kB |
URL GET HTTP/2four.startperfectsolutions.com/scripts/sold.js IP45.142.212.163:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectone.startperfectsolutions.com Fingerprint20:04:AC:E0:60:46:43:C2:48:A5:53:D2:4B:77:FE:DE:8F:62:24:EA ValidityFri, 15 Mar 2024 04:15:26 GMT - Thu, 13 Jun 2024 04:15:25 GMT
File typegzip compressed data, from Unix Hash08bd1030aaeedeaface3429b830b7a45 9c7777eb8c99d7e5d955c718fc17ae075e917ddc ceade011757da6af61027b92451d85e0a7153d9c836d51d5fa560df073eb9280
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /scripts/sold.js HTTP/1.1
Host: four.startperfectsolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 15 Jan 2024 16:21:09 GMT
etag: W/"65a55b75-2690"
expires: Sat, 27 Apr 2024 05:36:39 GMT
cache-control: max-age=864000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/themes/Newsmag/images/icons/newsmag.woff?16 | 104.247.168.227 | 200 OK | 24 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/themes/Newsmag/images/icons/newsmag.woff?16 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeWeb Open Font Format, TrueType, length 23816, version 0.0 Hash2c645a0b66cc091ea551375f2ba3b058 6b5f29da9636bccc7122ad5704b215fbdef79c03 e3619033670d012da540e2154524e4d1a05420a5064767239f5cd8911f75c9aa
GET /wp-content/themes/Newsmag/images/icons/newsmag.woff?16 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: font/woff
last-modified: Mon, 13 Feb 2023 14:46:42 GMT
accept-ranges: bytes
content-length: 23816
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 | 216.58.207.227 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29752, version 1.0 Hashab1fc8621287e4ea9319a3136812cf80 fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3 7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:15:26 GMT
expires: Wed, 16 Apr 2025 03:15:26 GMT
cache-control: public, max-age=31536000
age: 94874
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2 | 216.58.207.227 | 200 OK | 38 kB |
URL GET HTTP/2fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 37840, version 1.0 Hash6957af42676a9a6104e7a8eee1cee92f 05a81c1de245f5abfda3e26e333753a98a90b77f e4f50b8bf27fec2b2be5907a06a6579a355aa86542322a2434fac71a22c2ea6e
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 01:10:25 GMT
expires: Tue, 15 Apr 2025 01:10:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:05:12 GMT
content-type: font/woff2
age: 188775
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46796, version 1.0 Hash328da9d0efdf3626073910bfd379b2ff e55f0b86555b18495045db12654779186c94f0a5 d9086c8c2ed7c9f988d63847cd89e81318c1e4ade2112969af26e5744a3bc7d7
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:57:31 GMT
expires: Fri, 11 Apr 2025 02:57:31 GMT
cache-control: public, max-age=31536000
age: 527949
last-modified: Wed, 27 Apr 2022 16:31:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 | 216.58.207.227 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 34852, version 1.0 Hash0e8eefb4549a2edf26c560cb9845952e 8d0b1718aacad934fd0043c87cbc54aa091396bf 7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:38:12 GMT
expires: Fri, 11 Apr 2025 02:38:12 GMT
cache-control: public, max-age=31536000
age: 529108
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 | 216.58.207.227 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20040, version 1.0 Hasha61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6
GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:37:26 GMT
expires: Wed, 16 Apr 2025 00:37:26 GMT
cache-control: public, max-age=31536000
age: 104354
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2 | 216.58.207.227 | 200 OK | 71 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 71376, version 1.0 Hash2fb5eb4936fe4dc468503a25750dc4cb 0566892f99cc55e3af27a2efa0a904e345e9ce0e 9ff1c898daf7b2f6d13ff63ee6b6921cd42e855ffc6dddb88dc029338833cbd7
GET /s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 71376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 19:08:35 GMT
expires: Sun, 13 Apr 2025 19:08:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:06:30 GMT
content-type: font/woff2
age: 296885
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22476, version 1.0 Hashc221fd7b9d189773de5e54745a6dc28c 9a58a6bd08f6cda6acbfaaa160375d3e1c5c93f0 aee4051a20e975b9bb6fdc20984a091eb1f55c35ea87abe441db4cdbe8c116d0
GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:52:22 GMT
expires: Tue, 15 Apr 2025 21:52:22 GMT
cache-control: public, max-age=31536000
age: 114258
last-modified: Tue, 19 Apr 2022 19:19:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 216.58.207.227 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP216.58.207.227:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 79794
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 104.247.168.227 | 200 OK | 4.7 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 03 Apr 2024 02:58:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4676
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2021/12/favicon-1.png | 104.247.168.227 | 200 OK | 969 B |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2021/12/favicon-1.png IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash4327409264b5bb2678c7be01b9044df4 ccc56442e90645983a037566560f13af2d26a0c9 ee013ba132e4defdaee4f1f5b8fb1230183e0d176d2b508fe8c7cd83a6f26540
GET /wp-content/uploads/2021/12/favicon-1.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 15:16:54 GMT
accept-ranges: bytes
content-length: 969
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com | 45.140.146.101 | 200 OK | 0 B |
URL GET HTTP/2gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com IP45.140.146.101:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectgate.getmygateway.com FingerprintF2:E0:B0:7B:1E:89:C9:4D:C8:55:A1:09:83:F6:7D:58:9F:98:0A:46 ValidityFri, 15 Mar 2024 02:12:16 GMT - Thu, 13 Jun 2024 02:12:15 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /KQGrXb?c=www.xn--sitead-u9a.com HTTP/1.1
Host: gate.getmygateway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 17 Apr 2024 05:36:40 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg | 104.247.168.227 | 200 OK | 37 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 511x400, components 3 Hash4a8b6d92e15629604068d8e91b201e30 d3fb8f7f1f9b9a61649a4af4f3efd3f3ba4f52b2 c7cfba39e7c33ad04fdb2f41dacfd186f0b2ece27be6dee2c14c979f724e6c25
GET /wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:06 GMT
accept-ranges: bytes
content-length: 36983
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-511x400.jpg | 104.247.168.227 | 200 OK | 30 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-511x400.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 511x400, components 3 Hash764231024f9be9253d5d1fb7becbda71 1f4a04d8ae19ab4b1e7af561372a5426c7304a93 49c78b32244c6196cee5631e622f1dfcb62dcabbe68e30e9ce6e3d69aa06a0a7
GET /wp-content/uploads/2024/03/mizalle-511x400.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:01 GMT
accept-ranges: bytes
content-length: 30235
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-341x220.jpg | 104.247.168.227 | 200 OK | 16 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-341x220.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3 Hash521ed609629cb66b72805ae3147e95ed a25b36e0f1006fa22014cf698cfb7780626d016b de4ec4f726a74af41c3441b76722aec141bf3feea2d67f09c4b8d1932bf53b88
GET /wp-content/uploads/2024/02/Hipicon-1-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 28 Feb 2024 10:05:10 GMT
accept-ranges: bytes
content-length: 16187
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg | 104.247.168.227 | 200 OK | 18 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3 Hash70c6ad0b22b77355111a16fd6dfdf389 63076e57ef9214950f468dd22aec9250bbc82219 29edcc49638f9bb1c0a66b1233b155bb58cc3b7e573133ff9dcb089dc785064f
GET /wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Thu, 07 Mar 2024 10:58:01 GMT
accept-ranges: bytes
content-length: 18399
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-341x220.jpg | 104.247.168.227 | 200 OK | 12 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-341x220.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3 Hashad5acc8552a32bf6660a8d4bb15bb6dd 51f4d6a225d273bfb2c65cf120547ab981a400a6 38fae5ec5b80d3799274cc1e3db22b6714dd77e631af590701d989988a69d7df
GET /wp-content/uploads/2024/01/egen-etiket-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 31 Jan 2024 10:16:08 GMT
accept-ranges: bytes
content-length: 11635
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg | 104.247.168.227 | 200 OK | 15 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x194, components 3 Hash9a584ca79d7a641cf822d2b537cf8d28 c55e4b6a9a3af4e54ff7f7b12eb352d018e82f3a c4c67f882e45710f141df80abddf5c7d3c1c97409e0e4f6f7a4d3e254acf3c54
GET /wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:05 GMT
accept-ranges: bytes
content-length: 15228
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-100x75.jpg | 104.247.168.227 | 200 OK | 2.9 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-100x75.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3 Hash6f868553fd3afedd24cb1b1903ff6af7 03f0534405f5bdf5e595f121337ad2af112cd744 23407a07a8e75aca6010b024cbea0a993da27ff975b713b7abcd440b89cb5933
GET /wp-content/uploads/2024/03/mizalle-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:01 GMT
accept-ranges: bytes
content-length: 2934
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-100x75.jpg | 104.247.168.227 | 200 OK | 2.9 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-100x75.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3 Hashff1c62860d0202743ef52daa40a75d9e 0b955fcec715583a7dfa01f47c8dbeef187085ee 481bca6a2e3a839bc52535b161d1ae4515cb78af84f7ddac156ced84b4a0e4c0
GET /wp-content/uploads/2024/02/Hipicon-1-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 28 Feb 2024 10:05:10 GMT
accept-ranges: bytes
content-length: 2914
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg | 104.247.168.227 | 200 OK | 3.1 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3 Hasha84d3e3af7b716ad482179f07bb5ed59 1103bcf86e22819c9d4bb32a1f988e827392cf01 1d5522d523ac57045ab38b0f83006f22dd647c618fd00399811a7258dfec8f89
GET /wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Thu, 07 Mar 2024 10:58:01 GMT
accept-ranges: bytes
content-length: 3065
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-100x75.jpg | 104.247.168.227 | 200 OK | 2.7 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-100x75.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3 Hash56248dfe220f5b129254602ec028925a d8354ef391c5853ae5226e3c67e09d2b539cafba 59a8e2f6243590b0c4b31a35b4933c539f136e3ab500eebff5f08a4071361d6f
GET /wp-content/uploads/2024/01/egen-etiket-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 31 Jan 2024 10:16:08 GMT
accept-ranges: bytes
content-length: 2654
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg | 104.247.168.227 | 200 OK | 11 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x194, components 3 Hash8868bfcdd7be835a9050ca6f0c0bd109 b21f52c76d4b5d8f5a21de27277a59defc84854c 002fbb1fafb99501c43b53d4277daa41c4e94e312171aade5966ea35963cf51a
GET /wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:40 GMT
content-type: image/jpeg
last-modified: Sat, 11 Dec 2021 11:56:38 GMT
accept-ranges: bytes
content-length: 10726
date: Wed, 17 Apr 2024 05:36:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=hLujivARv8w2ILmj2uOf5aKotK6KtAlEP5zQ-i9RVFmFA0fg9_jHOyKu-bXONAPXJMeVqqFN8LJMw_fMQhIHtY0wAL0n_cDmnp38bNdAeyJ9QpVxfYGsKhxRUZtcx_1M
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 17 Apr 2024 05:34:56 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 120
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdn.specialtaskevents.com/JZFYbC | 45.140.146.101 | 200 OK | 15 kB |
URL GET HTTP/2cdn.specialtaskevents.com/JZFYbC IP45.140.146.101:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectcdn.specialtaskevents.com FingerprintC7:57:A9:58:43:91:CF:C9:25:92:A5:7E:3A:17:9A:B8:B4:FD:00:FC ValidityFri, 15 Mar 2024 02:16:35 GMT - Thu, 13 Jun 2024 02:16:34 GMT
File typeJavaScript source, ASCII text, with very long lines (15287), with no line terminators Hashb0149465e313403016a11ea7df794a63 3818a94fc421c0788c7db55adc59d58318f26d4b 94b3871c5af9ca42f481e355e3183d28ba94ef16165db7b07873248898735dd0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /JZFYbC HTTP/1.1
Host: cdn.specialtaskevents.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:40 GMT
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: Wed, 17 Apr 2024 05:36:40 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| | 104.247.168.227 | 200 OK | 176 kB |
URL User Request GET HTTP/2IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
Size176 kB (175545 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://www.xn--sitead-u9a.com/wp-json/>; rel="https://api.w.org/", <https://www.xn--sitead-u9a.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://www.xn--sitead-u9a.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:37 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/wp-content/uploads/2021/12/12.jpg | 104.247.168.227 | 200 OK | 39 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/wp-content/uploads/2021/12/12.jpg IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1021x663, components 3 Hash55b67f973008bcffacc7f52a6c680396 5cb1818cbce5021d9c6291e3e8266255ac426d8c b137f510d576c210a717b714d862b83ef97fddc2382abb76381f423fe6902ee9
GET /wp-content/uploads/2021/12/12.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/jpeg
last-modified: Sun, 05 Dec 2021 15:06:42 GMT
accept-ranges: bytes
content-length: 38794
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| www.xn--sitead-u9a.com/page/2/ | 104.247.168.227 | 200 OK | 118 kB |
URL GET HTTP/2www.xn--sitead-u9a.com/page/2/ IP104.247.168.227:443 ASN#42846 GNET Internet Telekomunikasyon A.S.
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerLet's Encrypt Subjectxn--sitead-u9a.com Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75 ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT
Size118 kB (118441 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /page/2/ HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://www.xn--sitead-u9a.com/wp-json/>; rel="https://api.w.org/", <https://www.xn--sitead-u9a.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://www.xn--sitead-u9a.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3 | 142.250.74.106 | 200 OK | 35 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3 IP142.250.74.106:443
Requested byhttps://www.xn--sitead-u9a.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1572) Hash9517ec657eee9fa658e7f3bc51f26e92 2ff26b1f13e96e7d70fca93944ed3391072a8f9a 2df4cb89ad84bf02997d1aa4b40759c501c24014a8a3342503738c2191c8690c
GET /css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 05:36:39 GMT
date: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|