GET declarebusinessgroup.ga/
200 OK 995 B URL User Request GET HTTP/1.1 IP
ASN #61969 Team Internet AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1bd10faf25c568bbdbffb85d1a301295
dc78acb97e3bb1369e226ca9a21dfcfb3214a0f9
fb26f3cd17b7e24892add28ee6df14ae90099dda079f64a9ad687d9b886bafa9
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ga domain
GET / HTTP/1.1
Host: declarebusinessgroup.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Redirect: skenzo
X-Buckets: bucket011
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_uamwNfSSSTDNyYytRF1CFZEt9RkaNFD9/AA+3SNUa0StnLs7H4tmgPrW33SB9W61WsXgweMm2hAklOEIYPmtLg==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: declarebusinessgroup.ga
X-Subdomain:
Content-Encoding: gzip
GET declarebusinessgroup.ga/favicon.ico
200 OK 0 B URL GET HTTP/1.1 declarebusinessgroup.ga/favicon.ico
IP
ASN #61969 Team Internet AG
Requested by http://declarebusinessgroup.ga/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ga domain
GET /favicon.ico HTTP/1.1
Host: declarebusinessgroup.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://declarebusinessgroup.ga/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:37 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
GET ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
200 OK 36 kB URL GET HTTP/1.1 ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://declarebusinessgroup.ga/
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10758), with CRLF, LF line terminators
Hash 7e0d33cd5ff195cd763955ca20647d81
e415668e857db6145a0a04b70828fa665812b74c
44d62b4cbba08bce288df56f9466d27824d589528fe8e0923be078f8ce2a8d2b
GET /?dn=declarebusinessgroup.ga&pid=9PO755G95 HTTP/1.1
Host: ifdnzact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://declarebusinessgroup.ga/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:37 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_K9pxlL6dRH+FXc/6Pp1jpNoBGO86nIAFZcYN54h4bQS3IB6KmTK2ISOIH2gljqJieESypSg773LTpXW6KOTmiQ==
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
GET ifdnzact.com/px.js?ch=1
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=1 HTTP/1.1
Host: ifdnzact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=124
Connection: Keep-Alive
Content-Type: application/javascript
GET a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&o=1700978322372
200 OK 594 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&o=1700978322372
IP
ASN #61157 PlusServer GmbH
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with CRLF line terminators
Hash ed44a67bedd73beaf695e8a7f0e6ebdb
39387db4afb276bfe88c60918d265b6ed0494a50
aa2f9ea7404615f7a20c5c4091d8ad6357543b783654dbe96f8982f9366ba787
GET /delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&o=1700978322372 HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 26 Nov 2023 05:58:39 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
GET ifdnzact.com/px.js?ch=2
200 OK 346 B IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=2 HTTP/1.1
Host: ifdnzact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=124
Connection: Keep-Alive
Content-Type: application/javascript
GET i1.cdn-image.com/__media__/js/min.js?v2.3
200 OK 8.4 kB URL GET HTTP/1.1 i1.cdn-image.com/__media__/js/min.js?v2.3
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type ASCII text, with very long lines (8349), with CRLF line terminators
Hash c16c3a4c0fad29106f34d00e89f6886e
6e11811ab8a98bb295b0916cdee68b302c33403d
097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:39 GMT
Content-Type: application/javascript
Content-Length: 8435
Last-Modified: Thu, 16 Feb 2023 20:41:01 GMT
Connection: keep-alive
ETag: "63ee94dd-20f3"
Expires: Sun, 10 Dec 2023 05:58:39 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
GET a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
200 OK 596 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with CRLF line terminators
Hash b2d1e78856628601b65a18581678f2b0
6f77bd59a0d83a7e5be49ba2f8a154f099373b51
7014d8293216d3066807ed9b2306028ddd59d2d89ff8095417171b7f61589170
GET /delivery/cmp.php?__cmpcc=1&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 26 Nov 2023 05:58:39 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
GET a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
200 OK 596 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with CRLF line terminators
Hash 8b82e021ca2a5d72f05453d571a6b919
7ae7461156c84db6c18269998301313e06dbddbf
5075801db186e222c79645e16bcec7cba615778c61a80563c7a4bb77ec8fc332
GET /delivery/cmp.php?__cmpcc=2&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 26 Nov 2023 05:58:39 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
GET ifdnzact.com/sk-logabpstatus.php?a=TDF3L3liL2diWVJ2N0ZNdGZYSFlUWS9SSlVocG5PMWlEVEFQUTlMOUpFQ2NxNWJVOG1YbE80VzFLWGhDVXl4QkRkK3UrSXQvYmhGeTRlSjBzUGIvMmR1SEpuTGxNU0s2SUVja3djTmdobkJ5UHNqeXlRRUorNC9LUlk4WnhBTkI=&b=true
200 OK 0 B URL GET HTTP/1.1 ifdnzact.com/sk-logabpstatus.php?a=TDF3L3liL2diWVJ2N0ZNdGZYSFlUWS9SSlVocG5PMWlEVEFQUTlMOUpFQ2NxNWJVOG1YbE80VzFLWGhDVXl4QkRkK3UrSXQvYmhGeTRlSjBzUGIvMmR1SEpuTGxNU0s2SUVja3djTmdobkJ5UHNqeXlRRUorNC9LUlk4WnhBTkI=&b=true
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sk-logabpstatus.php?a=TDF3L3liL2diWVJ2N0ZNdGZYSFlUWS9SSlVocG5PMWlEVEFQUTlMOUpFQ2NxNWJVOG1YbE80VzFLWGhDVXl4QkRkK3UrSXQvYmhGeTRlSjBzUGIvMmR1SEpuTGxNU0s2SUVja3djTmdobkJ5UHNqeXlRRUorNC9LUlk4WnhBTkI=&b=true HTTP/1.1
Host: ifdnzact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=3&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
200 OK 14 kB URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=3&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type ASCII text, with very long lines (45611), with CRLF, LF line terminators
Hash c5140c1ecf17e9f9cbb2db6586e72ea0
d16c5c25d43db5b03124935913aba1532a2bb0a4
944449045735e069eb4411dab51c665b56bb4f45f4d2e7fbbede75c364f28cf4
GET /delivery/cmp.php?__cmpcc=3&id=68884&o=1700978319&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:39 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 26 Nov 2023 05:58:39 GMT
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
GET i1.cdn-image.com/__media__/pics/28905/arrrow.png
200 OK 283 B URL GET HTTP/1.1 i1.cdn-image.com/__media__/pics/28905/arrrow.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type PNG image data, 17 x 27, 8-bit colormap, non-interlaced\012- data
Hash 80d42c82a6c37da90210fd60a2f36128
554ba7c84d2a27ecf3b1f29d03e62101936b54d8
a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:39 GMT
Content-Type: image/png
Content-Length: 283
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
Connection: keep-alive
ETag: "61d45d4b-11b"
Expires: Sun, 10 Dec 2023 05:58:39 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
GET i1.cdn-image.com/__media__/pics/29590/bg1.png
200 OK 18 kB URL GET HTTP/1.1 i1.cdn-image.com/__media__/pics/29590/bg1.png
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type PNG image data, 1730 x 988, 4-bit colormap, non-interlaced\012- data
Hash 825ccd29ac102fcadaf92b2343d5917b
24472e766cfac5b82a73b219796556a0a3702bd6
0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd
GET /__media__/pics/29590/bg1.png HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:39 GMT
Content-Type: image/png
Content-Length: 17986
Last-Modified: Fri, 25 Nov 2022 12:16:35 GMT
Connection: keep-alive
ETag: "6380b223-4642"
Expires: Sun, 10 Dec 2023 05:58:39 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
GET a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=26415&t=pv.d_ncs.d_ancs.d_bncs.cp.d_ds.cf.cfx.d_dnsx&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&o=1700978323432&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
200 OK 43 B URL GET HTTP/1.1 a.delivery.consentmanager.net/delivery/info/?id=68884&did=1&cfdid=26415&t=pv.d_ncs.d_ancs.d_bncs.cp.d_ds.cf.cfx.d_dnsx&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&o=1700978323432&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28&
IP
ASN #61157 PlusServer GmbH
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subjecta.delivery.consentmanager.net
Fingerprint44:49:A8:C0:AF:F7:D9:6E:D0:B5:35:77:3B:05:89:CC:80:9A:8D:50
ValidityWed, 15 Nov 2023 00:31:04 GMT - Tue, 13 Feb 2024 00:31:03 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=1&cfdid=26415&t=pv.d_ncs.d_ancs.d_bncs.cp.d_ds.cf.cfx.d_dnsx&h=http%3A%2F%2Fifdnzact.com%2F%3Fdn%3Ddeclarebusinessgroup.ga%26pid%3D9PO755G95&o=1700978323432&l=EN&lv=0&d=1&ct=14&e=&e2=&e3=&i=&sv=16&dv=28& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 05:58:40 GMT
Cache-Control: no-store, no-cache, must-revalidate
Edge-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Sun, 26 Nov 2023 05:58:40 GMT
Content-Length: 43
Content-Type: image/gif
GET i1.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
200 OK 17 kB URL GET HTTP/1.1 i1.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type Web Open Font Format, TrueType, length 17312, version 2.1\012- data
Hash bebe201d813feaad85a3e66607d0da3a
28b049502afa8e9db5340c1a92400591b39870e8
58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ifdnzact.com
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:39 GMT
Content-Type: application/font-woff
Content-Length: 17312
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-43a0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
GET i1.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
200 OK 17 kB URL GET HTTP/1.1 i1.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
IP
ASN #40034 CONFLUENCE-NETWORK-INC
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
File type Web Open Font Format, TrueType, length 17264, version 2.1\012- data
Hash a43b107861b42ce1335e41e43d4e4d00
99bdb1cec4a68ebe29249c46fefefb6880d009e5
a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: i1.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ifdnzact.com
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 26 Nov 2023 05:58:39 GMT
Content-Type: application/font-woff
Content-Length: 17264
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-4370"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
GET cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js
200 OK 72 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js
IP
ASN #60068 Datacamp Limited
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type ASCII text, with very long lines (41766)
Hash b1443f606c44cd759486074830775d3c
11043f465a5fdcc1292f1127aa81d7302c62a651
41d942361f38b705c882957b1b4705363aac4889347a0f283de907786a79ee80
GET /delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8yNjQxNS54XzI4LnYucC50XzI2NDE1Lnh0XzI4.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 05:58:39 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-xss-protection: 0
expires: Sun, 26 Nov 2023 06:07:53 GMT
cache-control: public, max-age=1800
edge-control: public, max-age=1800
last-modified: Sun, 26 Nov 2023 05:37:53 GMT
x-77-nzt: EwwBuUwJFAH3dwQAAAwBuUwKCQH3ZwAAAAwB1GY4EQGzCQcAAA
x-77-nzt-ray: af585630213f543f8fde62653e96b236
x-accel-expires: @1700978873
x-accel-date: 1700977176
x-77-cache: HIT
x-77-age: 3047
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 103, 1143
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET cdn.consentmanager.net/delivery/recall/logos/68884
301 Moved Permanently 4.2 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/recall/logos/68884
IP
ASN #60068 Datacamp Limited
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /delivery/recall/logos/68884 HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 26 Nov 2023 05:58:40 GMT
content-type: text/javascript; charset=utf-8
expires: Sun, 26 Nov 2023 17:55:30 GMT
cache-control: public, max-age=86400
edge-control: public, max-age=86400
location: /delivery/whitelabel/cmplogo.svg
x-77-nzt: EwwBuUwJFAH3c6kAAAwBuUwKCQH3CwAAAAgB1GY4nAFB
x-77-nzt-ray: af585630213f543f90de6265aa6b2f03
x-77-cache: HIT
x-accel-expires: @1701021330
x-accel-date: 1700934941
x-77-age: 43390
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 11, 43379
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
200 OK 4.2 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/whitelabel/cmplogo.svg
IP
ASN #60068 Datacamp Limited
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (4425), with no line terminators
Hash 46d40c431f8e14f71ab8f2f31eee942b
4f2140ab124f17c65f4a1d7998301b4747d1f87b
042c930c16842f0c1a14d5c16d23429d075c1ebdd16cad3ddd6f0d94ab0ae0ae
GET /delivery/whitelabel/cmplogo.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ifdnzact.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 05:58:40 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Wed, 03 May 2023 16:01:17 GMT
etag: W/"104c-5facc2a822d40"
cache-control: max-age=31536000
expires: Thu, 21 Nov 2024 17:54:52 GMT
x-77-nzt: EgwBuUwJFAH3JJ4EAAwBuUwKAQH3AAAAAA
x-77-nzt-ray: af585630213f543f90de62658e195632
x-accel-expires: @1732211692
x-accel-date: 1700675692
x-77-cache: HIT
x-77-age: 302628
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 302628
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET cdn.consentmanager.net/delivery/js/cmp_en.min.js
200 OK 410 kB URL GET HTTP/2 cdn.consentmanager.net/delivery/js/cmp_en.min.js
IP
ASN #60068 Datacamp Limited
Requested by http://ifdnzact.com/?dn=declarebusinessgroup.ga&pid=9PO755G95
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
Fingerprint40:27:9C:9D:30:35:40:79:7E:8D:6A:C2:06:C0:6F:B7:C6:8E:6A:2F
ValidityMon, 13 Nov 2023 17:00:32 GMT - Sun, 11 Feb 2024 17:00:31 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 410 kB (410261 bytes)
Hash 4ba8552f7f498044a9ab489599c6d822
9cf005a6a0c17fcb48c79f7538a5d02ec91289b2
3940ccea0b72a7b44facf779acf1176179145314bb5f7f5a68e8b13048e4ed1c
GET /delivery/js/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ifdnzact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 05:58:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 22 Nov 2023 17:42:52 GMT
etag: W/"64295-60ac13f959f00"
cache-control: max-age=86400
expires: Thu, 23 Nov 2023 17:54:51 GMT
edge-control: max-age=86400
x-77-nzt: EgwBuUwJFAH3ikABAAwBuUwKCQH3AAAAAA
x-77-nzt-ray: af585630213f543f8fde6265a4b7610c
x-accel-expires: @1700982661
x-accel-date: 1700896261
x-77-cache: HIT
x-77-age: 82058
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 82058
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
185.53.177.54
208.91.196.46
185.76.9.25