Report - www.xn--sitead-u9a.com/virus.exe

Report Overview

Submitted URL
www.xn--sitead-u9a.com/virus.exe
IP
104.247.168.227
ASN
#42846 GNET Internet Telekomunikasyon A.S.
Submitted
2024-04-17 05:37:05
Access
public
Website Title
Teknoloji Dünyasından Haberler - Site Adı
Final URL
www.xn--sitead-u9a.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
four.startperfectsolutions.com	unknown	2023-10-26	2023-11-10	2024-03-21	427 B	43 kB	45.142.212.163
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-17	6.0 kB	452 kB	216.58.207.227
gate.getmygateway.com	unknown	2023-09-09	2023-09-09	2024-04-15	434 B	332 B	45.140.146.101
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-17	512 B	1.2 kB	35.244.181.201
cdn.specialtaskevents.com	unknown	2023-09-20	2023-09-21	2024-04-15	415 B	16 kB	45.140.146.101
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-17	608 B	36 kB	142.250.74.106
www.xn--sitead-u9a.com	unknown	unknown	No data	No data	15 kB	734 kB	104.247.168.227
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-17	891 B	161 kB	142.251.9.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	startperfectsolutions.com	Sinkholed
2024-04-17	medium	getmygateway.com	Sinkholed
2024-04-17	medium	specialtaskevents.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	www.xn--sitead-u9a.com/	3.3 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash c6d9efd6f720b180c2f8ca1feff3dae1 a06476c9b50652bcbaeb43820c6c5587c69e1bed ca58ce1a6d25bfa06988ff7a4dfcea62f611be6369390e920d1137681343f7c6 Loading...

	www.xn--sitead-u9a.com/	211 B	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 906a88d6273c38969c2d8543c55d4c63 d3099ac2c76ccd4451d3802dbd092ddfc8cf421c c682081ff2e5db1f61f694e8c3aab6646f464b8a50ca3c4d947937591611096a Loading...

	www.xn--sitead-u9a.com/	5.7 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash cb7366abc8a877e69d282e976b4ed390 46594a35c2b8ea1bc1a60ce9a341dcee3a3168ab f18e3a503bc26ccf0cc740bd163967e606bdba37b869fb8d1366f725bc828df0 Loading...

	www.xn--sitead-u9a.com/	155 B	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 764fe02ca625d8a5dd682a51326ac5de 7b08fdd96f2b88c2201fc544e95df968c36ceb3f 37ae3e5e9fd65f682e90d9c8177ba6ae6c52732d7d95f6039b938fdca7536313 Loading...

	www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c	242 kB	2024-04-17	2024-04-17
Pretty URL www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c IP 142.251.9.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:15 Times Seen2 Hash 4de95744a4677082e89f3366ef51ef0a 4b6b508ad8484a3cefb310c1eb183b0d169cf07c 48aafebb4c29e53165db64c8cfeac3d90b7195a2a8d320669f45518f4cd74c24 Loading...

	www.xn--sitead-u9a.com/	24 B	2023-11-21	2024-04-29
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-21 14:57:13 Last Seen2024-04-29 17:46:52 Times Seen180 Hash a83d617790b93171a3bcc237e5f54fcd 7303c45db03972a9f6809f60b5ad4ad97f2f3cbe 4c4c820440b1dd62ce13f5131314d51a3b7c1fc3bd46ee4bd9ee7afb7c6ec8b6 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	1.6 kB	2023-05-06	2024-04-30
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-04-30 01:57:51 Times Seen21143 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-04-30
Pretty URL www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-04-30 02:11:51 Times Seen42934 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	www.xn--sitead-u9a.com/	2.2 kB	2023-05-04	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-04 10:12:25 Last Seen2024-04-17 07:37:14 Times Seen2 Hash e64204c9fa563bfff8ee8a7f52fc336b 13fa83f7196f91aadc7386521923d4b930f3a96c 6460fd48514c1bb86bd3c25b5e600d26cee94908873db6f67fc8aa36eeed15fe Loading...

	www.xn--sitead-u9a.com/	1.6 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 140ef4f45098fb44a4d24034b7f42a5d a0fdb6abc3a70fc4610c37c0322ac292a74706a9 c0fbaebe171843d906902a3f75010e32180dabf53a99416ac48d5d30cb746ec4 Loading...

	www.xn--sitead-u9a.com/	4.0 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash ce0b41cf61d05c3c4d7cbd4575952136 b8b0eb65ac85d524a51ab88cb379e459c0e0719d a628d5231268f66408ab3b1ee02fac21ba2d7e834c074b2364b49b60d24b4faa Loading...

	www.googletagmanager.com/gtag/js?id=UA-68166856-44	202 kB	2024-04-17	2024-04-17
Pretty URL www.googletagmanager.com/gtag/js?id=UA-68166856-44 IP 142.251.9.97 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:15 Times Seen2 Hash a70944af3d299e47e69c5955c4271210 e447c80d580acc102a15480289d6c20f6b0726a8 1bf0a74552c932c44b9b2847ecc0b1d97ea28156ebdc99252273e6cf74ed3ec1 Loading...

	four.startperfectsolutions.com/scripts/sold.js	9.9 kB	2024-01-15	2024-04-29
Pretty URL four.startperfectsolutions.com/scripts/sold.js IP 45.142.212.163 ASN #44477 Stark Industries Solutions Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-15 21:20:43 Last Seen2024-04-29 23:32:18 Times Seen1282 Hash 1f50a5c345b32f00dac4cacdac6dee32 c9d7f3fbce7a52dee0707ea73a8a1c602a6a91c1 be94ab61751b7494ad15abe618c21824d31974ee0682c1470bf93236e01879f2 Loading...

	www.xn--sitead-u9a.com/	3.9 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 00981fbc38e7bc40c97dc356f06e1d19 95e0381f258633d8c5d510f0f6ed583618fe61cb 2b43c7f2f60383d55c8c45e6e34454282bb52b3caf308243a144cabfddaaf3ad Loading...

	www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2	3.0 kB	2023-03-07	2024-04-30
Pretty URL www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2 IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-30 01:37:08 Times Seen29467 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2	19 kB	2024-03-13	2024-04-30
Pretty URL www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02:37 Last Seen2024-04-30 01:45:02 Times Seen2096 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	cdn.specialtaskevents.com/JZFYbC	15 kB	2024-02-29	2024-04-29
Pretty URL cdn.specialtaskevents.com/JZFYbC IP 45.140.146.101 ASN #44477 Stark Industries Solutions Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-29 18:41:15 Last Seen2024-04-29 23:32:18 Times Seen202 Hash b0149465e313403016a11ea7df794a63 3818a94fc421c0788c7db55adc59d58318f26d4b 94b3871c5af9ca42f481e355e3183d28ba94ef16165db7b07873248898735dd0 Loading...

	www.xn--sitead-u9a.com/	3.0 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 9027e0dd67f531fe27e1a6c2e006cfb6 e39d55773642429203f96ba411288d8dca1112e7 be0827a1cfe3dccaf26166a42dc70f35d283b4cc3fff95a9782017bb94d4ebc0 Loading...

	www.xn--sitead-u9a.com/	2.9 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:14 Last Seen2024-04-17 07:37:14 Times Seen1 Hash 7ef4ac53617d07d03c7e46bf4a594b8c 4bfb86b7584161b3f3aac197bc810cac92258c46 75d8d933ba81c7cdf33137d12e88a0faecaa55d5ece524cc3639328ef6821aff Loading...

	www.xn--sitead-u9a.com/	242 B	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:15 Last Seen2024-04-17 07:37:15 Times Seen1 Hash 1eaa97eb08cba34c6d5c427bd168f7ab 1f5bc3c2d40a97526b269bb8031d20ff888caabf ee315e8c8180b76c7e7c1e2bb7bfe187582e96d7babd6e729f6ab6956da820b9 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-30
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-30 02:36:03 Times Seen342817 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-04-30
Pretty URL www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-04-30 02:11:51 Times Seen81441 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.xn--sitead-u9a.com/sandbox%20eval%20code	147 B	2023-04-11	2024-04-30
Pretty URL www.xn--sitead-u9a.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-30 02:36:03 Times Seen343318 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.xn--sitead-u9a.com/	263 B	2023-11-09	2024-04-29
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-09 15:56:19 Last Seen2024-04-29 01:39:17 Times Seen158 Hash 65b2a5e07ef0ef20fdde92c7b901af7b 8565b3f6cb9328e41910f0431959bf4eb15f55c5 adc33cca04b83d45c6962102f6e18d90e6a231c1e9b6967382f8e38bac0498ad Loading...

	www.xn--sitead-u9a.com/	2.8 kB	2024-04-17	2024-04-17
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 07:37:15 Last Seen2024-04-17 07:37:15 Times Seen1 Hash e06d3499bb965b7049784aae49dc47c0 1ea9fa8324625c7d3fd25dee359b99d324857baf 5cdd1fad29e04c34155c5d6a038738577be3f25cfbb80253ea382c9e86cce235 Loading...

	gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com	0 B	2023-03-07	2024-04-30
Pretty URL gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com IP 45.140.146.101 ASN #44477 Stark Industries Solutions Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-30 02:50:07 Times Seen37202961 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.xn--sitead-u9a.com/	6 B	2023-03-07	2024-04-29
Pretty URL www.xn--sitead-u9a.com/ IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:52 Last Seen2024-04-29 00:15:20 Times Seen3034 Hash e40805fa510c6622658de2086eb361d2 41d8e131233dceea1d0c9aed70774914965304ef da6bcc93436f9fde95a92d5412601949548490ad0290f355eb4a019eeac1e3f7 Loading...

	www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3	258 kB	2023-03-08	2024-04-17
Pretty URL www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3 IP 104.247.168.227 ASN #42846 GNET Internet Telekomunikasyon A.S. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:48:42 Last Seen2024-04-17 07:37:15 Times Seen160 Hash 45ccdf9918bda708a0e7593f433ea27b a5dc348c0566d56e359fbc624ca10d9e9ee54028 2d437cdc18650bb8097437dbae3deedd7a5a55a47d69559f3991843f0577ab22 Loading...

	www.xn--sitead-u9a.com/sandbox%20eval%20code	128 B	2023-05-06	2024-04-30
Pretty URL www.xn--sitead-u9a.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-04-30 01:57:51 Times Seen21280 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

HTTP Transactions (46)

URL IP Response Size

www.xn--sitead-u9a.com/virus.exe

104.247.168.227

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.xn--sitead-u9a.com/virus.exe
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /virus.exe HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
location: https://www.xn--sitead-u9a.com
content-length: 0
date: Wed, 17 Apr 2024 05:36:36 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

104.247.168.227

200 OK

14 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
ASCII text, with very long lines (59701)
Size
14 kB (14071 bytes)
Hash
51a8390b47aa0582cf2d9c96c5addee2
b16a640874025d085c38119a1a02a3460f83f2de
98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Wed, 03 Apr 2024 02:58:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14071
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3

104.247.168.227

200 OK

24 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
ASCII text, with very long lines (1412)
Size
24 kB (23506 bytes)
Hash
6f3a8575123828f07f6f04213344df73
54355d87108dea4c202217ee730dbacd4e8d149a
78b6dd5f13d0e3d5a5e8f91980e7a16653ef7292a06d8a69661a67c71521a08b

HTTP Headers

GET /wp-content/themes/Newsmag/style.css?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23506
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx

104.247.168.227

200 OK

64 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
ASCII text
Size
64 kB (63576 bytes)
Hash
2ed9f85069832c1e7a544eb147d8feab
0f2cee8c1d7fc9f378ab819848d4857593292dbb
ccb626016280bc57664e6ae0ba76f407eb79d9b4b0654c8fcfaefce3f325f74d

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newsmag/assets/css/td_legacy_main.css?ver=9051206d0908def74825384f6e829588xx HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 63576
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

104.247.168.227

200 OK

30 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
30 kB (29744 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 08 Nov 2023 03:00:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29744
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3

104.247.168.227

200 OK

100 B

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
ASCII text
Size
100 B (100 bytes)
Hash
d7c1e5e9e4cf67e01e3f04cf602f5d9a
2b7728e668d982326cefa0a58434bbdf0eed7ace
c54f72824f6edc24edc082b2d17a7f8cf2bef0bb8a2c3ddf000dcae5df3511e8

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newsmag/includes/demos/tech/demo_style.css?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: text/css
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-length: 100
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

104.247.168.227

200 OK

4.7 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
4.7 kB (4678 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 09 Aug 2023 03:03:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4678
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3

104.247.168.227

200 OK

56 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JavaScript source, ASCII text, with very long lines (670)
Size
56 kB (56005 bytes)
Hash
45ccdf9918bda708a0e7593f433ea27b
a5dc348c0566d56e359fbc624ca10d9e9ee54028
2d437cdc18650bb8097437dbae3deedd7a5a55a47d69559f3991843f0577ab22

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newsmag/js/tagdiv_theme.min.js?ver=5.2.3 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
last-modified: Mon, 13 Feb 2023 14:46:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 56005
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2

104.247.168.227

200 OK

1.2 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-includes/js/comment-reply.min.js?ver=6.5.2
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
ASCII text, with very long lines (2946)
Size
1.2 kB (1228 bytes)
Hash
492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 25 May 2022 03:00:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1228
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-logo-mobil2.png

104.247.168.227

200 OK

11 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-logo-mobil2.png
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
PNG image data, 240 x 51, 8-bit/color RGBA, non-interlaced
Size
11 kB (11013 bytes)
Hash
71ac30b2fd55d8db732d1212addaa5a0
c2de72a6da6482770c003105936defc0ad13a3c0
82c406019d93d07ba89b59475e3ece3d02d0e30cdaade62fdd797de86a014149

HTTP Headers

GET /wp-content/uploads/2021/12/siteadi-logo-mobil2.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 17:19:11 GMT
accept-ranges: bytes
content-length: 11013
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-reklam.png

104.247.168.227

200 OK

8.6 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2021/12/siteadi-reklam.png
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
8.6 kB (8626 bytes)
Hash
80ee98947514da88a8d02f489d606681
e2550e62836e6a8b427b324523667703f87a68d7
3190a6e49cd109f5d86c0d294098e01184bf366f2f60034df5be201776d071e5

HTTP Headers

GET /wp-content/uploads/2021/12/siteadi-reklam.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 15:28:25 GMT
accept-ranges: bytes
content-length: 8626
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-68166856-44

142.251.9.97

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-68166856-44
IP
142.251.9.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73077 bytes)
Hash
a70944af3d299e47e69c5955c4271210
e447c80d580acc102a15480289d6c20f6b0726a8
1bf0a74552c932c44b9b2847ecc0b1d97ea28156ebdc99252273e6cf74ed3ec1

HTTP Headers

GET /gtag/js?id=UA-68166856-44 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:39 GMT
expires: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73077
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c

142.251.9.97

200 OK

86 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c
IP
142.251.9.97:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D
ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
86 kB (86477 bytes)
Hash
4de95744a4677082e89f3366ef51ef0a
4b6b508ad8484a3cefb310c1eb183b0d169cf07c
48aafebb4c29e53165db64c8cfeac3d90b7195a2a8d320669f45518f4cd74c24

HTTP Headers

GET /gtag/js?id=G-BH4ZJTG2CG&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:39 GMT
expires: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

four.startperfectsolutions.com/scripts/sold.js

45.142.212.163

200 OK

43 kB

URL GET HTTP/2
four.startperfectsolutions.com/scripts/sold.js
IP
45.142.212.163:443
ASN
#44477 Stark Industries Solutions Ltd

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectone.startperfectsolutions.com
Fingerprint20:04:AC:E0:60:46:43:C2:48:A5:53:D2:4B:77:FE:DE:8F:62:24:EA
ValidityFri, 15 Mar 2024 04:15:26 GMT - Thu, 13 Jun 2024 04:15:25 GMT

File type
gzip compressed data, from Unix
Size
43 kB (43055 bytes)
Hash
08bd1030aaeedeaface3429b830b7a45
9c7777eb8c99d7e5d955c718fc17ae075e917ddc
ceade011757da6af61027b92451d85e0a7153d9c836d51d5fa560df073eb9280

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /scripts/sold.js HTTP/1.1
Host: four.startperfectsolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 15 Jan 2024 16:21:09 GMT
etag: W/"65a55b75-2690"
expires: Sat, 27 Apr 2024 05:36:39 GMT
cache-control: max-age=864000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/themes/Newsmag/images/icons/newsmag.woff?16

104.247.168.227

200 OK

24 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/themes/Newsmag/images/icons/newsmag.woff?16
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
Web Open Font Format, TrueType, length 23816, version 0.0
Size
24 kB (23816 bytes)
Hash
2c645a0b66cc091ea551375f2ba3b058
6b5f29da9636bccc7122ad5704b215fbdef79c03
e3619033670d012da540e2154524e4d1a05420a5064767239f5cd8911f75c9aa

HTTP Headers

GET /wp-content/themes/Newsmag/images/icons/newsmag.woff?16 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/wp-content/themes/Newsmag/style.css?ver=5.2.3
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: font/woff
last-modified: Mon, 13 Feb 2023 14:46:42 GMT
accept-ranges: bytes
content-length: 23816
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2

216.58.207.227

200 OK

30 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
Size
30 kB (29752 bytes)
Hash
ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:15:26 GMT
expires: Wed, 16 Apr 2025 03:15:26 GMT
cache-control: public, max-age=31536000
age: 94874
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37840, version 1.0
Size
38 kB (37840 bytes)
Hash
6957af42676a9a6104e7a8eee1cee92f
05a81c1de245f5abfda3e26e333753a98a90b77f
e4f50b8bf27fec2b2be5907a06a6579a355aa86542322a2434fac71a22c2ea6e

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjvmyNL4U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 01:10:25 GMT
expires: Tue, 15 Apr 2025 01:10:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:05:12 GMT
content-type: font/woff2
age: 188775
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46796, version 1.0
Size
47 kB (46796 bytes)
Hash
328da9d0efdf3626073910bfd379b2ff
e55f0b86555b18495045db12654779186c94f0a5
d9086c8c2ed7c9f988d63847cd89e81318c1e4ade2112969af26e5744a3bc7d7

HTTP Headers

GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:57:31 GMT
expires: Fri, 11 Apr 2025 02:57:31 GMT
cache-control: public, max-age=31536000
age: 527949
last-modified: Wed, 27 Apr 2022 16:31:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
Size
35 kB (34852 bytes)
Hash
0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a

HTTP Headers

GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:38:12 GMT
expires: Fri, 11 Apr 2025 02:38:12 GMT
cache-control: public, max-age=31536000
age: 529108
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20040, version 1.0
Size
20 kB (20040 bytes)
Hash
a61c670a24d6794a95a9712f0d12b656
c9b3114b27790109ec51508f51f1a033ccfe0812
a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6

HTTP Headers

GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 00:37:26 GMT
expires: Wed, 16 Apr 2025 00:37:26 GMT
cache-control: public, max-age=31536000
age: 104354
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2

216.58.207.227

200 OK

71 kB

URL GET HTTP/2
fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 71376, version 1.0
Size
71 kB (71376 bytes)
Hash
2fb5eb4936fe4dc468503a25750dc4cb
0566892f99cc55e3af27a2efa0a904e345e9ce0e
9ff1c898daf7b2f6d13ff63ee6b6921cd42e855ffc6dddb88dc029338833cbd7

HTTP Headers

GET /s/arimo/v29/P5sMzZCDf9_T_10XxCF8jA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 71376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 19:08:35 GMT
expires: Sun, 13 Apr 2025 19:08:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:06:30 GMT
content-type: font/woff2
age: 296885
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2

216.58.207.227

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22476, version 1.0
Size
22 kB (22476 bytes)
Hash
c221fd7b9d189773de5e54745a6dc28c
9a58a6bd08f6cda6acbfaaa160375d3e1c5c93f0
aee4051a20e975b9bb6fdc20984a091eb1f55c35ea87abe441db4cdbe8c116d0

HTTP Headers

GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:52:22 GMT
expires: Tue, 15 Apr 2025 21:52:22 GMT
cache-control: public, max-age=31536000
age: 114258
last-modified: Tue, 19 Apr 2022 19:19:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:35:00 GMT
expires: Fri, 11 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 529300
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35328, version 1.0
Size
35 kB (35328 bytes)
Hash
7670dba29aa2a1560c5d711ea6f6b369
6a2a620d2972f139c804c5a8363c91eb1a7595f6
adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xn--sitead-u9a.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:26:46 GMT
expires: Wed, 16 Apr 2025 07:26:46 GMT
cache-control: public, max-age=31536000
age: 79794
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2

104.247.168.227

200 OK

4.7 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
4.7 kB (4676 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
last-modified: Wed, 03 Apr 2024 02:58:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4676
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2021/12/favicon-1.png

104.247.168.227

200 OK

969 B

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2021/12/favicon-1.png
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
969 B (969 bytes)
Hash
4327409264b5bb2678c7be01b9044df4
ccc56442e90645983a037566560f13af2d26a0c9
ee013ba132e4defdaee4f1f5b8fb1230183e0d176d2b508fe8c7cd83a6f26540

HTTP Headers

GET /wp-content/uploads/2021/12/favicon-1.png HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/png
last-modified: Sun, 05 Dec 2021 15:16:54 GMT
accept-ranges: bytes
content-length: 969
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com

45.140.146.101

200 OK

0 B

URL GET HTTP/2
gate.getmygateway.com/KQGrXb?c=www.xn--sitead-u9a.com
IP
45.140.146.101:443
ASN
#44477 Stark Industries Solutions Ltd

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectgate.getmygateway.com
FingerprintF2:E0:B0:7B:1E:89:C9:4D:C8:55:A1:09:83:F6:7D:58:9F:98:0A:46
ValidityFri, 15 Mar 2024 02:12:16 GMT - Thu, 13 Jun 2024 02:12:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /KQGrXb?c=www.xn--sitead-u9a.com HTTP/1.1
Host: gate.getmygateway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
cache-control: no-cache, no-store, must-revalidate
expires: Wed, 17 Apr 2024 05:36:40 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg

104.247.168.227

200 OK

37 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 511x400, components 3
Size
37 kB (36983 bytes)
Hash
4a8b6d92e15629604068d8e91b201e30
d3fb8f7f1f9b9a61649a4af4f3efd3f3ba4f52b2
c7cfba39e7c33ad04fdb2f41dacfd186f0b2ece27be6dee2c14c979f724e6c25

HTTP Headers

GET /wp-content/uploads/2024/03/advice-work-and-travel-511x400.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:06 GMT
accept-ranges: bytes
content-length: 36983
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-511x400.jpg

104.247.168.227

200 OK

30 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-511x400.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 511x400, components 3
Size
30 kB (30235 bytes)
Hash
764231024f9be9253d5d1fb7becbda71
1f4a04d8ae19ab4b1e7af561372a5426c7304a93
49c78b32244c6196cee5631e622f1dfcb62dcabbe68e30e9ce6e3d69aa06a0a7

HTTP Headers

GET /wp-content/uploads/2024/03/mizalle-511x400.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:01 GMT
accept-ranges: bytes
content-length: 30235
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-341x220.jpg

104.247.168.227

200 OK

16 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-341x220.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3
Size
16 kB (16187 bytes)
Hash
521ed609629cb66b72805ae3147e95ed
a25b36e0f1006fa22014cf698cfb7780626d016b
de4ec4f726a74af41c3441b76722aec141bf3feea2d67f09c4b8d1932bf53b88

HTTP Headers

GET /wp-content/uploads/2024/02/Hipicon-1-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 28 Feb 2024 10:05:10 GMT
accept-ranges: bytes
content-length: 16187
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg

104.247.168.227

200 OK

18 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3
Size
18 kB (18399 bytes)
Hash
70c6ad0b22b77355111a16fd6dfdf389
63076e57ef9214950f468dd22aec9250bbc82219
29edcc49638f9bb1c0a66b1233b155bb58cc3b7e573133ff9dcb089dc785064f

HTTP Headers

GET /wp-content/uploads/2024/03/tv-sehbasi-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Thu, 07 Mar 2024 10:58:01 GMT
accept-ranges: bytes
content-length: 18399
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-341x220.jpg

104.247.168.227

200 OK

12 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-341x220.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 341x220, components 3
Size
12 kB (11635 bytes)
Hash
ad5acc8552a32bf6660a8d4bb15bb6dd
51f4d6a225d273bfb2c65cf120547ab981a400a6
38fae5ec5b80d3799274cc1e3db22b6714dd77e631af590701d989988a69d7df

HTTP Headers

GET /wp-content/uploads/2024/01/egen-etiket-341x220.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 31 Jan 2024 10:16:08 GMT
accept-ranges: bytes
content-length: 11635
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg

104.247.168.227

200 OK

15 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x194, components 3
Size
15 kB (15228 bytes)
Hash
9a584ca79d7a641cf822d2b537cf8d28
c55e4b6a9a3af4e54ff7f7b12eb352d018e82f3a
c4c67f882e45710f141df80abddf5c7d3c1c97409e0e4f6f7a4d3e254acf3c54

HTTP Headers

GET /wp-content/uploads/2024/03/advice-work-and-travel-300x194.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:05 GMT
accept-ranges: bytes
content-length: 15228
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-100x75.jpg

104.247.168.227

200 OK

2.9 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/mizalle-100x75.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3
Size
2.9 kB (2934 bytes)
Hash
6f868553fd3afedd24cb1b1903ff6af7
03f0534405f5bdf5e595f121337ad2af112cd744
23407a07a8e75aca6010b024cbea0a993da27ff975b713b7abcd440b89cb5933

HTTP Headers

GET /wp-content/uploads/2024/03/mizalle-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Tue, 05 Mar 2024 12:00:01 GMT
accept-ranges: bytes
content-length: 2934
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-100x75.jpg

104.247.168.227

200 OK

2.9 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/02/Hipicon-1-100x75.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3
Size
2.9 kB (2914 bytes)
Hash
ff1c62860d0202743ef52daa40a75d9e
0b955fcec715583a7dfa01f47c8dbeef187085ee
481bca6a2e3a839bc52535b161d1ae4515cb78af84f7ddac156ced84b4a0e4c0

HTTP Headers

GET /wp-content/uploads/2024/02/Hipicon-1-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 28 Feb 2024 10:05:10 GMT
accept-ranges: bytes
content-length: 2914
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg

104.247.168.227

200 OK

3.1 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3
Size
3.1 kB (3065 bytes)
Hash
a84d3e3af7b716ad482179f07bb5ed59
1103bcf86e22819c9d4bb32a1f988e827392cf01
1d5522d523ac57045ab38b0f83006f22dd647c618fd00399811a7258dfec8f89

HTTP Headers

GET /wp-content/uploads/2024/03/tv-sehbasi-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Thu, 07 Mar 2024 10:58:01 GMT
accept-ranges: bytes
content-length: 3065
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-100x75.jpg

104.247.168.227

200 OK

2.7 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2024/01/egen-etiket-100x75.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x75, components 3
Size
2.7 kB (2654 bytes)
Hash
56248dfe220f5b129254602ec028925a
d8354ef391c5853ae5226e3c67e09d2b539cafba
59a8e2f6243590b0c4b31a35b4933c539f136e3ab500eebff5f08a4071361d6f

HTTP Headers

GET /wp-content/uploads/2024/01/egen-etiket-100x75.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:39 GMT
content-type: image/jpeg
last-modified: Wed, 31 Jan 2024 10:16:08 GMT
accept-ranges: bytes
content-length: 2654
date: Wed, 17 Apr 2024 05:36:39 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg

104.247.168.227

200 OK

11 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x194, components 3
Size
11 kB (10726 bytes)
Hash
8868bfcdd7be835a9050ca6f0c0bd109
b21f52c76d4b5d8f5a21de27277a59defc84854c
002fbb1fafb99501c43b53d4277daa41c4e94e312171aade5966ea35963cf51a

HTTP Headers

GET /wp-content/uploads/2021/12/Samsung-Galaxy-Z-Fold-3-5G-300x194.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:40 GMT
content-type: image/jpeg
last-modified: Sat, 11 Dec 2021 11:56:38 GMT
accept-ranges: bytes
content-length: 10726
date: Wed, 17 Apr 2024 05:36:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=hLujivARv8w2ILmj2uOf5aKotK6KtAlEP5zQ-i9RVFmFA0fg9_jHOyKu-bXONAPXJMeVqqFN8LJMw_fMQhIHtY0wAL0n_cDmnp38bNdAeyJ9QpVxfYGsKhxRUZtcx_1M
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 17 Apr 2024 05:34:56 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 120
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

cdn.specialtaskevents.com/JZFYbC

45.140.146.101

200 OK

15 kB

URL GET HTTP/2
cdn.specialtaskevents.com/JZFYbC
IP
45.140.146.101:443
ASN
#44477 Stark Industries Solutions Ltd

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.specialtaskevents.com
FingerprintC7:57:A9:58:43:91:CF:C9:25:92:A5:7E:3A:17:9A:B8:B4:FD:00:FC
ValidityFri, 15 Mar 2024 02:16:35 GMT - Thu, 13 Jun 2024 02:16:34 GMT

File type
JavaScript source, ASCII text, with very long lines (15287), with no line terminators
Size
15 kB (15287 bytes)
Hash
b0149465e313403016a11ea7df794a63
3818a94fc421c0788c7db55adc59d58318f26d4b
94b3871c5af9ca42f481e355e3183d28ba94ef16165db7b07873248898735dd0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JZFYbC HTTP/1.1
Host: cdn.specialtaskevents.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 05:36:40 GMT
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: Wed, 17 Apr 2024 05:36:40 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/

104.247.168.227

200 OK

176 kB

URL User Request GET HTTP/2
www.xn--sitead-u9a.com/
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type

Size
176 kB (175545 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://www.xn--sitead-u9a.com/wp-json/>; rel="https://api.w.org/", <https://www.xn--sitead-u9a.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://www.xn--sitead-u9a.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:37 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/wp-content/uploads/2021/12/12.jpg

104.247.168.227

200 OK

39 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/wp-content/uploads/2021/12/12.jpg
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1021x663, components 3
Size
39 kB (38794 bytes)
Hash
55b67f973008bcffacc7f52a6c680396
5cb1818cbce5021d9c6291e3e8266255ac426d8c
b137f510d576c210a717b714d862b83ef97fddc2382abb76381f423fe6902ee9

HTTP Headers

GET /wp-content/uploads/2021/12/12.jpg HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 05:36:38 GMT
content-type: image/jpeg
last-modified: Sun, 05 Dec 2021 15:06:42 GMT
accept-ranges: bytes
content-length: 38794
date: Wed, 17 Apr 2024 05:36:38 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

www.xn--sitead-u9a.com/page/2/

104.247.168.227

200 OK

118 kB

URL GET HTTP/2
www.xn--sitead-u9a.com/page/2/
IP
104.247.168.227:443
ASN
#42846 GNET Internet Telekomunikasyon A.S.

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerLet's Encrypt
Subjectxn--sitead-u9a.com
Fingerprint0F:85:AC:BB:7B:C5:4B:38:4D:0D:EE:20:41:61:FB:D7:DC:6B:94:75
ValiditySat, 02 Mar 2024 09:36:56 GMT - Fri, 31 May 2024 09:36:55 GMT

File type

Size
118 kB (118441 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /page/2/ HTTP/1.1
Host: www.xn--sitead-u9a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Cookie: _ga_BH4ZJTG2CG=GS1.1.1713332199.1.0.1713332199.0.0.0; _ga=GA1.1.1455869093.1713332200
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://www.xn--sitead-u9a.com/wp-json/>; rel="https://api.w.org/", <https://www.xn--sitead-u9a.com/wp-json/wp/v2/pages/35>; rel="alternate"; type="application/json", <https://www.xn--sitead-u9a.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:36:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3

142.250.74.106

200 OK

35 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.xn--sitead-u9a.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1572)
Size
35 kB (35381 bytes)
Hash
9517ec657eee9fa658e7f3bc51f26e92
2ff26b1f13e96e7d70fca93944ed3391072a8f9a
2df4cb89ad84bf02997d1aa4b40759c501c24014a8a3342503738c2191c8690c

HTTP Headers

GET /css?family=Ubuntu%3A400%2C700%7CArimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7CTulpen+One%3A400%2C700%7COpen+Sans%3A400%2C600%2C700%7CRoboto+Condensed%3A400%2C500%2C700&display=swap&ver=5.2.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.xn--sitead-u9a.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 05:36:39 GMT
date: Wed, 17 Apr 2024 05:36:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML