Report - negainoastro.online.atlaq.com/

Report Overview

Visited public
2024-10-08 17:22:48
Tags
URL
negainoastro.online.atlaq.com/
Finishing URL
negainoastro.online.atlaq.com/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
Negai no Astro Manga Online

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2024-10-08 08:13:18	678 B	578 B	142.250.74.67
www.entsorgo.de	unknown	unknown	2017-02-27 21:47:47	2023-11-04 11:46:02	389 B	592 B	104.26.9.142
www.entsorgo.pro	unknown	unknown	No data	No data	390 B	838 B	0.0.0.0
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2024-10-07 19:38:19	885 B	857 B	216.239.32.36
entspowls.com	unknown	unknown	No data	No data	387 B	0 B	0.0.0.0
traffic.alexa.com	381412	1996-07-17	2012-05-20 23:46:11	2021-05-14 12:40:47	1.0 kB	0 B	0.0.0.0
atlaq.com	460385	2019-04-07	2019-04-10 14:32:55	2024-09-20 03:55:59	862 B	168 kB	104.21.64.58
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-10-07 19:37:47	1.6 kB	3.5 kB	216.58.211.3
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-10-08 11:33:55	904 B	181 kB	142.250.74.136
entsovietnam.club	unknown	unknown	No data	No data	403 B	737 B	99.83.138.213
entsorgungsbetrieb-bluhm.de	unknown	unknown	No data	No data	864 B	2.8 kB	45.144.185.71
entsorgo.de	unknown	unknown	No data	No data	385 B	596 B	104.26.9.142
t1.gstatic.com	unknown	2008-02-11	2013-05-07 00:57:20	2024-10-07 22:38:38	2.1 kB	6.5 kB	142.250.74.164
entsorgo.pro	unknown	unknown	No data	No data	386 B	609 B	0.0.0.0
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-10-07 19:37:44	1.3 kB	3.6 kB	23.36.76.226
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-10-07 19:37:45	654 B	1.8 kB	23.36.76.226
negainoastro.online.atlaq.com	unknown	unknown	No data	No data	923 B	55 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-08	medium	entspowls.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	unknown	154 B	2024-10-11 08:48	2024-10-11 08:48
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 3cf400624deceba5978a1341bb612cf9 78b8cc798ae7355840b2249ba1cdaa5e0e6e2f4a 52da459380265fe5deab6af2ed56ba436ee440981cebe8442e9193e4b421d6dc Loading...

	unknown	149 B	2024-10-11 08:48	2024-10-11 08:48
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 92445e0d87d3c41542f56edab52c7370 65ce880465a3d0ba5f73fa6ece238cee7877fff7 34c7baff95abe7acb991a8c704ab8bcb0e3bc35dd636a83d619b7cae7076d350 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11 21:07	2024-11-28 22:36
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2024-11-28 22:36 Times Seen281790 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c	305 kB	2024-10-11 08:48	2024-10-11 08:48
Pretty URL www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 84048a3098917ad34867ecdad5b98fe4 5dd2ebbef0cd4070d307946b459da974c32cc439 d9e147e9945cea8a3f29ad289ee762dd8ce3d94c139cbcb06196d9b53cc151b6 Loading...

	negainoastro.online.atlaq.com/	5.6 kB	2024-10-11 08:48	2024-10-11 08:48
Pretty URL negainoastro.online.atlaq.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 2ed7e5473b45d06b1915cb2064f3bf3e 9bd95ecb5a8d18030d6fccd2869d7c485425d79d 553ac8780d8fc52ba6e7bceddd639d01e3bb53441d8a38dc0d02aaf19ec9417d Loading...

	negainoastro.online.atlaq.com/	154 B	2023-03-10 11:07	2024-11-28 20:47
Pretty URL negainoastro.online.atlaq.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:07 Last Seen2024-11-28 20:47 Times Seen69 Hash 556aedec3c17b1047b6ea5b24555b6b3 bc98386bf7c5d5088b545befbe3f36738874ca18 25b0f8074b7996c02b28918d9dec52e00501eee8990db393f4a0624d136a828e Loading...

	unknown	150 B	2024-10-11 08:48	2024-10-11 08:48
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 0525adaff1ade4623b54d71dc9791592 0dafa7d668ed9fb806089cae10a4efa4373d39ad ad3a7d96265b5d31004f3116ee6fc4397a6e5b4a109eea256ef968746a68b6cd Loading...

	www.googletagmanager.com/gtag/js?id=UA-85346163-2	210 kB	2024-10-11 08:48	2024-10-11 08:48
Pretty URL www.googletagmanager.com/gtag/js?id=UA-85346163-2 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 38661d5481ca820364542748aa74fef8 1756994457c20b9ca28e4f7220eec25b29ad9615 44067d09338bdb285f7eb62000dff27567880c785752d530aaa7b35897717eb0 Loading...

	negainoastro.online.atlaq.com/sandbox%20eval%20code	147 B	2023-04-11 21:07	2024-11-28 22:36
Pretty URL negainoastro.online.atlaq.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2024-11-28 22:36 Times Seen282590 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

HTTP Transactions (33)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
92a230cb5218879a64fe719acf75881c
7f7635dedaaca6b4b4ecb370b51df9538d7a7d0d
14ffc94e6280a14388fda9745042b01144374fd782cf089b48025a1316ecbd24

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "14FFC94E6280A14388FDA9745042B01144374FD782CF089B48025A1316ECBD24"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3109
Expires: Tue, 08 Oct 2024 18:14:11 GMT
Date: Tue, 08 Oct 2024 17:22:22 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
aebd6eb47e8610e9a6dc1cb16df7bd70
7bc7e48d32a6cb662e28d63208773b86bdb6fe82
b2ebefcea7d3c9d4077c7a39ecb1d19ea142fef97156164fee2b4574c6df5b3b

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B2EBEFCEA7D3C9D4077C7A39ECB1D19EA142FEF97156164FEE2B4574C6DF5B3B"
Last-Modified: Mon, 07 Oct 2024 16:03:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12140
Expires: Tue, 08 Oct 2024 20:44:42 GMT
Date: Tue, 08 Oct 2024 17:22:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7338853386defad2f045b3bee05dd9c8
6aaf1269eb3b9e16629c1b20652ee2dbd12c7182
50b50dc294c0c33b05390bd82ad7a823a64b8c24a0de5b92b770e8cfd4e5259f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "50B50DC294C0C33B05390BD82AD7A823A64B8C24A0DE5B92B770E8CFD4E5259F"
Last-Modified: Tue, 08 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10329
Expires: Tue, 08 Oct 2024 20:14:31 GMT
Date: Tue, 08 Oct 2024 17:22:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
33985775df7b619cb33f4050d88c5fb9
cf0b2ff92cd2f7e12ce788a164a73d75dea5da83
b6db380f5eeb73aa56abf90afa43b52cc9f51b01f33ad1eefeccc473a41ffb86

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B6DB380F5EEB73AA56ABF90AFA43B52CC9F51B01F33AD1EEFECCC473A41FFB86"
Last-Modified: Tue, 08 Oct 2024 11:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19528
Expires: Tue, 08 Oct 2024 22:47:50 GMT
Date: Tue, 08 Oct 2024 17:22:22 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
31fc782bf1efb76a7251d3e45007b986
7cfef07644e0e4aad99bfa3dd10cf975f7c06f89
663061e811010828ed222146cbb81114a49ba635f6c6547f3601ae0c3de1409d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "663061E811010828ED222146CBB81114A49BA635F6C6547F3601AE0C3DE1409D"
Last-Modified: Tue, 08 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15634
Expires: Tue, 08 Oct 2024 21:42:56 GMT
Date: Tue, 08 Oct 2024 17:22:22 GMT
Connection: keep-alive

atlaq.com/logo.png

104.21.64.58

200 OK

117 kB

URL GET HTTP/2
atlaq.com/logo.png
IP
104.21.64.58:443
ASN
#13335 CLOUDFLARENET

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
PNG image data, 500 x 446, 8-bit/color RGBA, non-interlaced
Size
117 kB (117433 bytes)
Hash
792b74959e26cd37fd05dfcd0ef07770
c6e3ed2dd9771b077daf93eda5773cd10d621147
7ae2cb133588b7a2926b71630869d602c294840f6c1379666e82b25f3354623b

HTTP Headers

GET /logo.png HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: image/png
content-length: 117433
cache-control: public, max-age=31536000
expires: Wed, 01 Oct 2025 05:34:57 GMT
last-modified: Wed, 29 Jan 2020 11:21:42 GMT
vary: User-Agent,Origin, Accept-Encoding
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 647246
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xC7KzviTNYXT8safJsd5yl%2Byp%2FRPVM%2FOp%2BwCB%2F5CO8t8WkUZg9TochLjDIEH8NaIur4W6iDIGHykOmjjL6%2BAPxrhRDv%2Frq9uSVhNvJ4MwHcWyghTCKPS29A3Tek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7d0100dc1dbc1-FRA
X-Firefox-Spdy: h2

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b894963bba6d5ebd718630381c39a8bb
16daf68000d5ca111212e7bd66d9871c6c00c6b3
43fba7403c7c22a388bf82797ae22db214f19eee399682a78476bab09a3770af

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-85346163-2

142.250.74.136

200 OK

76 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-85346163-2
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2345)
Size
76 kB (75546 bytes)
Hash
38661d5481ca820364542748aa74fef8
1756994457c20b9ca28e4f7220eec25b29ad9615
44067d09338bdb285f7eb62000dff27567880c785752d530aaa7b35897717eb0

HTTP Headers

GET /gtag/js?id=UA-85346163-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:22:23 GMT
expires: Tue, 08 Oct 2024 17:22:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 75546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

negainoastro.online.atlaq.com/badk.txt

188.114.97.1

200 OK

14 kB

URL GET HTTP/2
negainoastro.online.atlaq.com/badk.txt
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint6E:C6:30:28:A8:E5:54:4D:1F:A5:9D:23:C6:BE:47:8C:63:06:AD:61
ValiditySat, 21 Sep 2024 23:29:57 GMT - Sat, 21 Dec 2024 00:29:25 GMT

File type
ASCII text
Size
14 kB (14502 bytes)
Hash
f4245877e1f9b8764acbac7b475ebf2d
7471a9d7354637651fa5d0200febe7ab162fb69a
bd300473a295a173716b1b182aed7c14e3551f7400360dd5f694115683ccd41c

HTTP Headers

GET /badk.txt HTTP/1.1
Host: negainoastro.online.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://negainoastro.online.atlaq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/plain; charset=UTF-8
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 17:22:23 GMT
last-modified: Mon, 13 Apr 2020 08:00:16 GMT
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tPEe32fGIKX7c2%2BmOnR%2FZ5z6h2BvW4h4Al%2BfX4Vyn3%2Bh%2BLdFqSTWsNykGJna%2FCDu2k%2BBHj%2BUpB5BEU3WgfADogSz2QMU441lNMjDfH7Jy7ApQh%2BWlYM9nWh3us3STX%2FKEjDBlEq0hh%2BG3eMfrzt0Lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7d011aad9568b-OSL
content-encoding: br
X-Firefox-Spdy: h2

entsovietnam.club/favicon.ico

99.83.138.213

410 Gone

616 B

URL GET HTTP/2
entsovietnam.club/favicon.ico
IP
99.83.138.213:443
ASN
#16509 AMAZON-02

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectentsovietnam.club
Fingerprint00:0C:9E:35:0A:7E:2B:4F:A4:C0:A2:BF:BE:B2:0A:E0:8E:65:51:A2
ValiditySun, 25 Aug 2024 12:11:08 GMT - Sat, 23 Nov 2024 12:11:07 GMT

File type
data
Size
616 B (616 bytes)
Hash
a8135cba613b86211089f9ce5ae557b9
29598dfe2c088b062ea290f34ca5770e4fe9c35a
247ee6fee2a247410907072e4bd457e1aef3d42e2ba3269130d0556b5af5b03e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: entsovietnam.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 410 Gone
server: openresty
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: image/x-icon
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c

142.250.74.136

200 OK

103 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
103 kB (103096 bytes)
Hash
84048a3098917ad34867ecdad5b98fe4
5dd2ebbef0cd4070d307946b459da974c32cc439
d9e147e9945cea8a3f29ad289ee762dd8ce3d94c139cbcb06196d9b53cc151b6

HTTP Headers

GET /gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:22:23 GMT
expires: Tue, 08 Oct 2024 17:22:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 103096
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

entsorgungsbetrieb-bluhm.de/favicon.ico

45.144.185.71

302 Found

0 B

URL GET HTTP/2
entsorgungsbetrieb-bluhm.de/favicon.ico
IP
45.144.185.71:443
ASN
#15817 Mittwald CM Service GmbH & Co. KG

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectentsorgungsbetrieb-bluhm.de
FingerprintC5:EA:F7:B1:B5:3C:D5:98:60:3B:29:C4:DF:0D:5B:84:7C:D7:E9:29
ValiditySat, 17 Aug 2024 00:16:54 GMT - Fri, 15 Nov 2024 00:16:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: entsorgungsbetrieb-bluhm.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://entsorgungsbetrieb-bluhm.de/wp-content/uploads/2022/05/cropped-cropped-Bluhm_Logo-32x32.png
link: <https://entsorgungsbetrieb-bluhm.de/wp-json/>; rel="https://api.w.org/"
set-cookie: uncode_privacy[consent_types]=%5B%5D; expires=Wed, 08 Oct 2025 17:22:23 GMT; Max-Age=31536000; path=/; secure; SameSite=Strict
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

entsorgungsbetrieb-bluhm.de/wp-content/uploads/2022/05/cropped-cropped-Bluhm_Logo-32x32.png

45.144.185.71

200 OK

2.0 kB

URL GET HTTP/2
entsorgungsbetrieb-bluhm.de/wp-content/uploads/2022/05/cropped-cropped-Bluhm_Logo-32x32.png
IP
45.144.185.71:443
ASN
#15817 Mittwald CM Service GmbH & Co. KG

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectentsorgungsbetrieb-bluhm.de
FingerprintC5:EA:F7:B1:B5:3C:D5:98:60:3B:29:C4:DF:0D:5B:84:7C:D7:E9:29
ValiditySat, 17 Aug 2024 00:16:54 GMT - Fri, 15 Nov 2024 00:16:53 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
2.0 kB (1952 bytes)
Hash
d6b843caa955e668d8b2624ee2491af0
90b6dc9a8c376a906909ec9f217407829ce3a337
2f4038f504fa0150cf6a3f10c19ccc71f075aa0529cf91a76570f5b08415866e

HTTP Headers

GET /wp-content/uploads/2022/05/cropped-cropped-Bluhm_Logo-32x32.png HTTP/1.1
Host: entsorgungsbetrieb-bluhm.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: image/png
content-length: 1952
last-modified: Wed, 11 May 2022 18:27:12 GMT
etag: "7a0-5dec097000000"
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f0fb8f657d774d6bcd3cbfe023c1b71
afcbd66dc0a108d90f9eeb17094a8c5c387dc623
69ae177bf04d90b904d73c7bddf813ff94569cb1891e2258b577cebdbadc192b

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:22:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entspowls.com

142.250.74.164

404 Not Found

726 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entspowls.com
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entspowls.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:22:24 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsovietnam.club

142.250.74.164

200 OK

492 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsovietnam.club
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Size
492 B (492 bytes)
Hash
472aa1f3cdcaf201729108d4cf0ecf8d
8095cbf0b2d10a0bd369bfc9b009caa6b009e2d3
46eaaa4c11090106bbfbbdf2604f0967841f7ec8ce827488522b1cd689b122b4

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsovietnam.club HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://cdn2.dan.com/assets/icons/touch-icon-ipad-1d2f55ab4a08e75d3231c071b0036c76861cabba73bda42cfd1fa49c826a6603.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 492
date: Tue, 08 Oct 2024 17:22:24 GMT
expires: Tue, 15 Oct 2024 17:22:24 GMT
cache-control: public, max-age=604800
last-modified: Tue, 17 Mar 2020 15:24:13 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://negainoastro.online

142.250.74.164

200 OK

1.3 kB

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://negainoastro.online
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3
Size
1.3 kB (1289 bytes)
Hash
da893f0896b9183218a35ed0883e0ed6
fa0ec1f81cabe704eeebe403fbb5ea831315ca93
8684a7c18bffd223f6539d67ab491b91af2bc936a7e9524f4a368ba4a2907db8

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://negainoastro.online HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
content-location: https://negainoastro.online/wp-content/uploads/2024/04/5946d195-d5db-4e1c-a2bc-b523a4839a43-1-140x140.jpg
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1289
date: Tue, 08 Oct 2024 17:22:24 GMT
expires: Tue, 15 Oct 2024 17:22:24 GMT
cache-control: public, max-age=604800
last-modified: Tue, 25 Jun 2024 21:47:30 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsorgo.de

142.250.74.164

200 OK

976 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsorgo.de
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3
Size
976 B (976 bytes)
Hash
7fce9b5ac0549208dd5b3663b73a8eed
7f5d0f643f00e22a69bfe9199480e44caf2e465d
f57d324f81b6a7c7e4bac804daffbef512df271a764e5920f7b0ee42e2b70f9c

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://entsorgo.de HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
content-location: https://www.entsorgo.de/wp-content/uploads/cropped-WhatsApp-Image-2023-03-13-at-16.34.27-180x180.jpeg
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 976
date: Tue, 08 Oct 2024 17:22:24 GMT
expires: Tue, 15 Oct 2024 17:22:24 GMT
cache-control: public, max-age=604800
last-modified: Mon, 13 Mar 2023 15:53:31 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408143607&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101529666~101671035~101747727&cid=1478525196.1728408144&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408144&sct=1&seg=0&dl=https%3A%2F%2Fnegainoastro.online.atlaq.com%2F&dt=Negai%20no%20Astro%20Manga%20Online&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1428

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408143607&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101529666~101671035~101747727&cid=1478525196.1728408144&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408144&sct=1&seg=0&dl=https%3A%2F%2Fnegainoastro.online.atlaq.com%2F&dt=Negai%20no%20Astro%20Manga%20Online&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1428
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408143607&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101529666~101671035~101747727&cid=1478525196.1728408144&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408144&sct=1&seg=0&dl=https%3A%2F%2Fnegainoastro.online.atlaq.com%2F&dt=Negai%20no%20Astro%20Manga%20Online&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1428 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://negainoastro.online.atlaq.com/
Origin: https://negainoastro.online.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://negainoastro.online.atlaq.com
date: Tue, 08 Oct 2024 17:22:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:136:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:136:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f0fb8f657d774d6bcd3cbfe023c1b71
afcbd66dc0a108d90f9eeb17094a8c5c387dc623
69ae177bf04d90b904d73c7bddf813ff94569cb1891e2258b577cebdbadc192b

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:22:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aefbc928f02a3df2f49965674117f0f4
a916e2c8da1d24527f7cfe57f9ca7b108240b0bc
e63dce477468251022b1ad33dbb661551a421e85b2e70e85a2369a8798d67b2c

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:22:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1478525196.1728408144&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101529666~101671035~101747727&tag_exp=101529666~101671035~101747727&z=986534591

142.250.74.67

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1478525196.1728408144&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101529666~101671035~101747727&tag_exp=101529666~101671035~101747727&z=986534591
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google.no
FingerprintC0:2E:17:2C:D7:EC:89:EE:05:CE:03:34:C1:BE:CF:D4:6A:33:13:1B
ValidityMon, 16 Sep 2024 09:43:12 GMT - Mon, 09 Dec 2024 09:43:11 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=1478525196.1728408144&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101529666~101671035~101747727&tag_exp=101529666~101671035~101747727&z=986534591 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Oct 2024 17:22:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aefbc928f02a3df2f49965674117f0f4
a916e2c8da1d24527f7cfe57f9ca7b108240b0bc
e63dce477468251022b1ad33dbb661551a421e85b2e70e85a2369a8798d67b2c

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:22:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Tue, 08 Oct 2024 20:12:34 GMT
Date: Tue, 08 Oct 2024 17:22:25 GMT
Connection: keep-alive

atlaq.com/style.css

104.21.64.58

200 OK

49 kB

URL GET HTTP/2
atlaq.com/style.css
IP
104.21.64.58:443
ASN
#13335 CLOUDFLARENET

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
ASCII text, with very long lines (49091), with no line terminators
Size
49 kB (49091 bytes)
Hash
1dc4998a41131ac5df41ae820c7f583c
227aa907d96a66d38f5073700d2d8c5e1262187c
1f807cd9d5d8475f4ec107c17a62318927277940eb8bfe1d386ec97ad4cb9f57

HTTP Headers

GET /style.css HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000
cf-bgj: minify
expires: Thu, 31 Oct 2024 05:34:57 GMT
last-modified: Tue, 25 Oct 2022 04:42:27 GMT
strict-transport-security: max-age=31536000;includeSubDomains
vary: Accept-Encoding,User-Agent,Origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 647246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZN2TNxCE9gU7QWDzXSMCPk%2BiqxZSGiowHCnh3lamWGkaM%2BSmYi4B5aDbNrjMEDLzpd7XzbUcSPBptvoyVnoGjBUGbGYbOnUQhrVt09F1Ij6P%2BAqlbH8oCh5YcTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7d0100dbbdbc1-FRA
content-encoding: br
X-Firefox-Spdy: h2

entsorgo.pro/favicon.ico

0.0.0.0

0 B

URL GET
entsorgo.pro/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectentsorgo.pro
Fingerprint3A:40:8D:A9:7A:4B:31:D9:BA:74:0C:EF:F2:CB:B7:D1:8D:77:39:DD
ValidityFri, 30 Aug 2024 17:07:43 GMT - Thu, 28 Nov 2024 17:07:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: entsorgo.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/html
location: https://www.entsorgo.pro/favicon.ico
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MI3TI8vnXkAU6tXBcZJPW6f3gb2%2FEHlrGaTvYtFCdtXtdBzMx8MLziGE46ZeW34A21keI9mP3s3uNYtzQpMM9a5o5NbBAqpFgucSUF%2FDbYJKebNyIsPd4qVfrUJEuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7d0108f2bb515-OSL
X-Firefox-Spdy: h2

www.entsorgo.de/favicon.ico

104.26.9.142

404 Not Found

0 B

URL GET HTTP/2
www.entsorgo.de/favicon.ico
IP
104.26.9.142:443
ASN
#13335 CLOUDFLARENET

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectentsorgo.de
Fingerprint46:96:1F:67:C1:D5:3C:FE:CC:C0:9C:E8:EF:09:3B:14:B5:C0:1F:C5
ValidityMon, 09 Sep 2024 02:34:51 GMT - Sun, 08 Dec 2024 02:34:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.entsorgo.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YswVVcCTlVkhFoS32JSaXlqbX21lEflOlAfU52DtcNTkMOvxMyAkHOTrn6PDO8xmSeOAJTR6Fbug2uS4IwDNEZ9f0sXxNEZe7oXXVCte1cotwCYTMc%2BcR5yuw2TBnQ5PRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7d011c806712b-OSL
content-encoding: br
X-Firefox-Spdy: h2

entspowls.com/favicon.ico

0.0.0.0

0 B

URL GET
entspowls.com/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://negainoastro.online.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: entspowls.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

www.entsorgo.pro/favicon.ico

0.0.0.0

0 B

URL GET
www.entsorgo.pro/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectentsorgo.pro
Fingerprint3A:40:8D:A9:7A:4B:31:D9:BA:74:0C:EF:F2:CB:B7:D1:8D:77:39:DD
ValidityFri, 30 Aug 2024 17:07:43 GMT - Thu, 28 Nov 2024 17:07:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.entsorgo.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: image/x-icon
last-modified: Thu, 29 Aug 2024 13:09:44 GMT
etag: W/"66d07318-103e"
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eMJxo0vkwZ%2Bu80rFLrTAqtRrUCg6LlSKYASaixgfEMhTW1SyA6bTK7DNsdTBGSTN7d1Al0oO3MeyhvvTULsuDPwSWpPFH%2FaK%2FZmtKSir5uLmwhmb0auWli%2FAuAE11E4i5zQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7d0125af2b515-OSL
content-encoding: br
X-Firefox-Spdy: h2

negainoastro.online.atlaq.com/

188.114.97.1

200 OK

39 kB

URL User Request GET HTTP/2
negainoastro.online.atlaq.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint6E:C6:30:28:A8:E5:54:4D:1F:A5:9D:23:C6:BE:47:8C:63:06:AD:61
ValiditySat, 21 Sep 2024 23:29:57 GMT - Sat, 21 Dec 2024 00:29:25 GMT

File type

Size
39 kB (38608 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: negainoastro.online.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:22:22 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 15:04:04 GMT
x-litespeed-cache: hit
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qUvzPlyBCMVcGxvPqj%2B6%2Fpu4S20KGOQNOwZ%2BmV%2BmHU8I1J3HhVdEf1zK5k1N3mX2M4fx1fgJ7ROPz%2BDT2vU4FVLKbB18vbsoFW1V92riMLT4yyXq45JPkQc7HLy7NLZJFoMHIvRlq5%2FvUq6MgY4hJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf7d00c1e92568b-OSL
content-encoding: br
X-Firefox-Spdy: h2

entsorgo.de/favicon.ico

104.26.9.142

301 Moved Permanently

0 B

URL GET HTTP/2
entsorgo.de/favicon.ico
IP
104.26.9.142:443
ASN
#13335 CLOUDFLARENET

Requested by
https://negainoastro.online.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectentsorgo.de
Fingerprint46:96:1F:67:C1:D5:3C:FE:CC:C0:9C:E8:EF:09:3B:14:B5:C0:1F:C5
ValidityMon, 09 Sep 2024 02:34:51 GMT - Sun, 08 Dec 2024 02:34:50 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: entsorgo.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 08 Oct 2024 17:22:23 GMT
content-type: text/html
location: https://www.entsorgo.de/favicon.ico
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2CIFkhXYaApPJwQvPzgeVEDBknRXmrLD81gB8HPxAIKDJaAIGJBZd5dhsq329a3ZrbIq9EkZCnE0aBt4MxZrMWF384dw3geG4BOF1NRhC3ylV7172jEAvtvD1kaP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7d0105d1b712b-OSL
X-Firefox-Spdy: h2

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=negainoastro.online

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=negainoastro.online
IP
0.0.0.0:0
ASN
#0

Requested by
https://negainoastro.online.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=negainoastro.online HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=negainoastro.online

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=negainoastro.online
IP
0.0.0.0:0
ASN
#0

Requested by
https://negainoastro.online.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=negainoastro.online HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://negainoastro.online.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (33)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size