| galyqaz.com/Print_Services.cfm?fp=SW2zOGluRjzYOmr3oBHHfKLjoB3z/hRVuwyTtS+UGtvcjygvs8wWaej6mNiuCzbSnQzQQs/YNc2mC6UiZmFxFjvD6XkcC91S/wU+J2SRybe5U0dt0L5oguhH0SeRVnltp/dR0STx1lO4GLGf/82vTFclqAZwCCQTvNFtY6O9+F/4epZCV8k3QFsHUNhSuqMR/3iJ2pF+157UAZHn+O8wFlBcBfXxyYfy/l/igA9ydhfzmJ4xFq7SXBh4JJfxz9k1d+BYD3KwSpcinr/MVuGnnpJ0X8j2c8ftewAJJUK2+Z33erz74d+BT4qsrCwZ/uFu&yep=bANeoS1Ucvwzy+pq/uLsIwUKniK3mG/xVu94SSPrE3cucynQFj13yVIriiGJrzXhrbOEmMTvRN7gIEH+vKQICobIpkzx/Gf2K/RDAWqm7uLFN1tljngoKays27nWGgRCrkqy2JQg3SUuFsaT/69OS6bYg+Lni+/e6U64xJkOM2N/0WXReRGPvG7x7tIq4LFNm8J4nLsKUgWyx2hN8QYdybOTs084KHhWKy8aYN3cH5o07e9yThWuOyyKV7hAfncThLiOhiqVIpZdOZpAz8ZHGLpbJKzXYing6ZsfAZVmBmjqOLgpHRK8cUg6cumQMlGdbsOJvUezQVwGsq0CPNjs9rn8GmJlrA9D0elKySd+PlLUpWuVFuVdax8eZgnBnRyKt50VLOMhUgfDBuHtvFyzvuucV3aS7hLs2S6gSyoSKQtnkLbeO8xMZWZUzqZv4WcS5iS1aY9/RRR7tOuQ+y0Twt72Cs/5aOHxbSKA9BWY78gl5P8Osd4Dw0PXbTnvBGLhnf4ozzD/w71vXo5ZSWRv8v7rGKVgDGAw0idWRa0PYH4Y57x0BLDYPKegkd28Dp77mc5aqC4iGGnyAAiMshlDbWRzhiy+e35y0x8S6V+ftt0jhmDJEtKPdGgbNTVXwo1k+A1mOqaj2j4y+BYJNipuIG1uUD49RsaWkuDI03b3n7D7fYXjtoRWU+3aXRpie1Cq8oTqNB4NlpIIL4hMYfzLTPirZ1Ts4cPlh7shWBxCT6vifht0I1tg90KVbYgwlXMKplXy3VUEpzGTLOtVGAzV+2wR09VKemUxdjul0vAKpixWN+okI4w9f9Wb9q0YC7M+4g4ptfBNCiWYfB3KJLt1d9q3CbZRr0BcXNpiaUalPL51h/RksJTntnpxNTG00Vo2SEiszPAsQ9hBgN8FQf5LIKrZcTGNdX/KPZFhwcDdiK0VGRiS4fR9EGgVonQ8j4RrIutHl8UCgEoQUEyG9TJmB8/7yCYqJh4gX4tqt3U/h+cU4kADgv+zkdAXt+BMhVzvw92GtC8xnWJW0ALWXGSE6RmzcIV7/kEuMgvyM35Y3VBqsQi34W6wzDuuUXCTIIhB7KrJzWuxUraTBGB5YZBQh/+Mod0KeBLm5OETpuRqVdBjNb7TLRWfvwwbc5WuHLh2V1I6XqOFoL//LabgBof/yYoUl9Vep8ZTghnHzbQN5saLPft4YECDdqrxnmEHhchwlo1LzINLizPP5op+mP/U+c3UOx6fwDMkRQw5SCJnBy46SsfiBffZaEMOg2Wk1uzhhN9MtDmpBL0yStv61ojMpJc4/xEHvxqLu2DXpO+cI2EeTZc+aEmLezzz4ClTGnzRHRuGuKPoJHBX5gXr04OmCuzwtglUQVJ1SPU+sS189+T/GlYSp/VcFB+d4HD2KzMXkTSCSEWADuIckIJ7dYKf99yHrpTMM0tjDQQ6AqtXHbu6df7H5+d0QHHNHRGdONby75n6tcMdVGnNEFHSPJ8jeSntSC8eOr2GSUwzfxetLZwiEDY/8iDwFSwxmWTi9jOIVQLYXYAvhwv/iEtJzQwNRRhL0NTSRQjOrm1RAKgFGMOhYuj9G0Q1zKvvKZ6FUnyZPGxgja6NoCcay5v9egxPKx0yG7+7kNC0nIKs0vG47cL1S1qzBBu8OSo1Ecu7fwKd86ljvFjWDuMph+wxW5PP0mWfw | 199.191.50.83 | 302 Found | 0 B |
URL User Request GET HTTP/1.1galyqaz.com/Print_Services.cfm?fp=SW2zOGluRjzYOmr3oBHHfKLjoB3z/hRVuwyTtS+UGtvcjygvs8wWaej6mNiuCzbSnQzQQs/YNc2mC6UiZmFxFjvD6XkcC91S/wU+J2SRybe5U0dt0L5oguhH0SeRVnltp/dR0STx1lO4GLGf/82vTFclqAZwCCQTvNFtY6O9+F/4epZCV8k3QFsHUNhSuqMR/3iJ2pF+157UAZHn+O8wFlBcBfXxyYfy/l/igA9ydhfzmJ4xFq7SXBh4JJfxz9k1d+BYD3KwSpcinr/MVuGnnpJ0X8j2c8ftewAJJUK2+Z33erz74d+BT4qsrCwZ/uFu&yep=bANeoS1Ucvwzy+pq/uLsIwUKniK3mG/xVu94SSPrE3cucynQFj13yVIriiGJrzXhrbOEmMTvRN7gIEH+vKQICobIpkzx/Gf2K/RDAWqm7uLFN1tljngoKays27nWGgRCrkqy2JQg3SUuFsaT/69OS6bYg+Lni+/e6U64xJkOM2N/0WXReRGPvG7x7tIq4LFNm8J4nLsKUgWyx2hN8QYdybOTs084KHhWKy8aYN3cH5o07e9yThWuOyyKV7hAfncThLiOhiqVIpZdOZpAz8ZHGLpbJKzXYing6ZsfAZVmBmjqOLgpHRK8cUg6cumQMlGdbsOJvUezQVwGsq0CPNjs9rn8GmJlrA9D0elKySd+PlLUpWuVFuVdax8eZgnBnRyKt50VLOMhUgfDBuHtvFyzvuucV3aS7hLs2S6gSyoSKQtnkLbeO8xMZWZUzqZv4WcS5iS1aY9/RRR7tOuQ+y0Twt72Cs/5aOHxbSKA9BWY78gl5P8Osd4Dw0PXbTnvBGLhnf4ozzD/w71vXo5ZSWRv8v7rGKVgDGAw0idWRa0PYH4Y57x0BLDYPKegkd28Dp77mc5aqC4iGGnyAAiMshlDbWRzhiy+e35y0x8S6V+ftt0jhmDJEtKPdGgbNTVXwo1k+A1mOqaj2j4y+BYJNipuIG1uUD49RsaWkuDI03b3n7D7fYXjtoRWU+3aXRpie1Cq8oTqNB4NlpIIL4hMYfzLTPirZ1Ts4cPlh7shWBxCT6vifht0I1tg90KVbYgwlXMKplXy3VUEpzGTLOtVGAzV+2wR09VKemUxdjul0vAKpixWN+okI4w9f9Wb9q0YC7M+4g4ptfBNCiWYfB3KJLt1d9q3CbZRr0BcXNpiaUalPL51h/RksJTntnpxNTG00Vo2SEiszPAsQ9hBgN8FQf5LIKrZcTGNdX/KPZFhwcDdiK0VGRiS4fR9EGgVonQ8j4RrIutHl8UCgEoQUEyG9TJmB8/7yCYqJh4gX4tqt3U/h+cU4kADgv+zkdAXt+BMhVzvw92GtC8xnWJW0ALWXGSE6RmzcIV7/kEuMgvyM35Y3VBqsQi34W6wzDuuUXCTIIhB7KrJzWuxUraTBGB5YZBQh/+Mod0KeBLm5OETpuRqVdBjNb7TLRWfvwwbc5WuHLh2V1I6XqOFoL//LabgBof/yYoUl9Vep8ZTghnHzbQN5saLPft4YECDdqrxnmEHhchwlo1LzINLizPP5op+mP/U+c3UOx6fwDMkRQw5SCJnBy46SsfiBffZaEMOg2Wk1uzhhN9MtDmpBL0yStv61ojMpJc4/xEHvxqLu2DXpO+cI2EeTZc+aEmLezzz4ClTGnzRHRuGuKPoJHBX5gXr04OmCuzwtglUQVJ1SPU+sS189+T/GlYSp/VcFB+d4HD2KzMXkTSCSEWADuIckIJ7dYKf99yHrpTMM0tjDQQ6AqtXHbu6df7H5+d0QHHNHRGdONby75n6tcMdVGnNEFHSPJ8jeSntSC8eOr2GSUwzfxetLZwiEDY/8iDwFSwxmWTi9jOIVQLYXYAvhwv/iEtJzQwNRRhL0NTSRQjOrm1RAKgFGMOhYuj9G0Q1zKvvKZ6FUnyZPGxgja6NoCcay5v9egxPKx0yG7+7kNC0nIKs0vG47cL1S1qzBBu8OSo1Ecu7fwKd86ljvFjWDuMph+wxW5PP0mWfw IP199.191.50.83:443 ASN#40034 CONFLUENCE-NETWORK-INC
CertificateIssuerZeroSSL Subjectgalyqaz.com FingerprintD1:EE:4B:CF:91:73:02:48:C0:F3:26:83:08:69:E3:56:0D:DA:A7:44 ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Print_Services.cfm?fp=SW2zOGluRjzYOmr3oBHHfKLjoB3z/hRVuwyTtS+UGtvcjygvs8wWaej6mNiuCzbSnQzQQs/YNc2mC6UiZmFxFjvD6XkcC91S/wU+J2SRybe5U0dt0L5oguhH0SeRVnltp/dR0STx1lO4GLGf/82vTFclqAZwCCQTvNFtY6O9+F/4epZCV8k3QFsHUNhSuqMR/3iJ2pF+157UAZHn+O8wFlBcBfXxyYfy/l/igA9ydhfzmJ4xFq7SXBh4JJfxz9k1d+BYD3KwSpcinr/MVuGnnpJ0X8j2c8ftewAJJUK2+Z33erz74d+BT4qsrCwZ/uFu&yep=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 HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: openresty
Date: Fri, 10 May 2024 22:17:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Location: http://galyqaz.com/
|
|
| | 199.191.50.83 | 200 OK | 40 kB |
URL User Request GET HTTP/1.1IP199.191.50.83:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeHTML document, Unicode text, UTF-8 text, with very long lines (10731), with CRLF, LF line terminators Hasha78cde96a1f937417b9cae928ef8e06e e57bb9c18e2106c529d6cf2afef9cd380c60f365 7a75dbb6e72a76f634b903e02721a72bc6377e791df198e21f1dd4b1ebebfca3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 22:17:43 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_kdLjRa2HgoiNW6utOh3OEfEURYdkxaGC7Dcf3Q/h8X87WzpySYx3vJHpmfJsVphwCgnxrp2bQR8iEfw0xwKIBQ==
Keep-Alive: timeout=5, max=127
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| galyqaz.com/px.js?ch=1 | 199.191.50.83 | 200 OK | 346 B |
IP199.191.50.83:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeASCII text, with very long lines (346), with no line terminators Hashf84f931c0dd37448e03f0dabf4e4ca9f 9c2c50edcf576453ccc07bf65668bd23c76e8663 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /px.js?ch=1 HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 22:17:45 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=127
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| cdn.consentmanager.net/delivery/js/cmp_en.min.js | 185.76.9.22 | 200 OK | 94 kB |
URL GET HTTP/2cdn.consentmanager.net/delivery/js/cmp_en.min.js IP185.76.9.22:443 ASN#60068 Datacamp Limited
CertificateIssuerLet's Encrypt Subject1376624012.rsc.cdn77.org Fingerprint87:A7:6F:22:26:60:66:88:EF:24:3A:3C:5F:C3:B4:5D:03:F7:88:7B ValidityFri, 26 Apr 2024 11:50:47 GMT - Thu, 25 Jul 2024 11:50:46 GMT
File typegzip compressed data, from Unix Hash72387890d892820106a61459600392e2 bd7eb8aad6e5f4f6465aece502d5357aaf47c3b3 7fb75430bfda19a2c1cd3c2f4a89eb2db869491209d8a95b520db7e653e06a1b
GET /delivery/js/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 24 Apr 2024 09:35:32 GMT
etag: W/"68f99-616d4644e6100"
cache-control: max-age=86400
expires: Thu, 25 Apr 2024 09:41:22 GMT
edge-control: max-age=86400
x-77-nzt: EwwBuUwJFAH3OLEAAAgBuUwKDAGhDAGKxyXBAfdJFAAA
x-77-nzt-ray: af585630ef01d04c0a9d3e669114c01b
x-accel-expires: @1715420498
x-accel-date: 1715334098
x-77-cache: HIT
x-77-age: 45368
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 45368
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| galyqaz.com/px.js?ch=2 | 199.191.50.83 | 200 OK | 346 B |
IP199.191.50.83:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeASCII text, with very long lines (346), with no line terminators Hashf84f931c0dd37448e03f0dabf4e4ca9f 9c2c50edcf576453ccc07bf65668bd23c76e8663 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /px.js?ch=2 HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 22:17:45 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=111
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| i4.cdn-image.com/__media__/js/min.js?v2.3 | 208.91.196.253 | 200 OK | 8.4 kB |
URL GET HTTP/1.1i4.cdn-image.com/__media__/js/min.js?v2.3 IP208.91.196.253:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeJavaScript source, ASCII text, with very long lines (8349), with CRLF line terminators Hashc16c3a4c0fad29106f34d00e89f6886e 6e11811ab8a98bb295b0916cdee68b302c33403d 097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 22:17:45 GMT
Content-Type: application/javascript
Content-Length: 8435
Last-Modified: Thu, 16 Feb 2023 20:25:57 GMT
Connection: keep-alive
ETag: "63ee9155-20f3"
Expires: Fri, 24 May 2024 22:17:45 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
|
|
| a.delivery.consentmanager.net/delivery/info/?id=68884&did=2&cfdid=19735&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466687&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& | 87.230.98.78 | 200 OK | 43 B |
URL GET HTTP/2a.delivery.consentmanager.net/delivery/info/?id=68884&did=2&cfdid=19735&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466687&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& IP87.230.98.78:443 ASN#61157 PlusServer GmbH
CertificateIssuerLet's Encrypt Subjecta.delivery.consentmanager.net Fingerprint69:B9:38:2C:D2:98:EE:BC:2E:9B:83:33:E4:2F:BC:73:04:51:C8:79 ValidityThu, 14 Mar 2024 00:37:17 GMT - Wed, 12 Jun 2024 00:37:16 GMT
File typeGIF image data, version 89a, 1 x 1 Hash6f81c41597d3f5a336f458822cc0c32a 8cd77a54b38f1fb376b45af2eaab8f5982523b8d 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=2&cfdid=19735&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466687&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
x-xss-protection: 0
last-modified: Fri, 10 May 2024 22:17:46 GMT
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2
|
|
| cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8zMzY2NC54XzMzLnYucC50XzMzNjY0Lnh0XzMz.js | 185.76.9.22 | 200 OK | 26 kB |
URL GET HTTP/2cdn.consentmanager.net/delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8zMzY2NC54XzMzLnYucC50XzMzNjY0Lnh0XzMz.js IP185.76.9.22:443 ASN#60068 Datacamp Limited
CertificateIssuerLet's Encrypt Subject1376624012.rsc.cdn77.org Fingerprint87:A7:6F:22:26:60:66:88:EF:24:3A:3C:5F:C3:B4:5D:03:F7:88:7B ValidityFri, 26 Apr 2024 11:50:47 GMT - Thu, 25 Jul 2024 11:50:46 GMT
File typegzip compressed data, from Unix Hashfec1bfa67adce3ae8c318af6b9f9192b f86163c35d309976104e7bd14f17f0fedbc0e927 8adbfeae40494f926aadbbfcf1a30befc21a8b3ae2f275818e496a3633723457
GET /delivery/customdata/bV8xLndfNjg4ODQucl9HRFBSLmxfZW4uZF8zMzY2NC54XzMzLnYucC50XzMzNjY0Lnh0XzMz.js HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-xss-protection: 0
expires: Fri, 10 May 2024 22:37:47 GMT
cache-control: public, max-age=1800
edge-control: public, max-age=1800
last-modified: Fri, 10 May 2024 22:07:47 GMT
x-77-nzt: EwwBuUwJFAH3TQIAAAwBuUwKAQH3CgAAAAwBJRPCLgGzCwcAAA
x-77-nzt-ray: af585630ef01d04c0a9d3e666ca2b426
x-accel-expires: @1715380667
x-accel-date: 1715378877
x-77-cache: HIT
x-77-age: 589
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 589
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| galyqaz.com/sk-logabpstatus.php?a=RXNmOHVaQ3lkTXRaNGZRV21Gd2tCdnVMaVFyYUg3T2ZobmNPS05ZUVNBei8zUDBYcHk3OEVyU3E3TE5VUUxLd3FJcSs2aXI3RElid1N0bStpMjZ0b05FMG9yNjZSYXBsYld3aVVNbEs1MlJGbWtDejFoOE9XZlkyWjVScmxjNk4=&b=true | 199.191.50.83 | 200 OK | 0 B |
URL GET HTTP/1.1galyqaz.com/sk-logabpstatus.php?a=RXNmOHVaQ3lkTXRaNGZRV21Gd2tCdnVMaVFyYUg3T2ZobmNPS05ZUVNBei8zUDBYcHk3OEVyU3E3TE5VUUxLd3FJcSs2aXI3RElid1N0bStpMjZ0b05FMG9yNjZSYXBsYld3aVVNbEs1MlJGbWtDejFoOE9XZlkyWjVScmxjNk4=&b=true IP199.191.50.83:80 ASN#40034 CONFLUENCE-NETWORK-INC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sk-logabpstatus.php?a=RXNmOHVaQ3lkTXRaNGZRV21Gd2tCdnVMaVFyYUg3T2ZobmNPS05ZUVNBei8zUDBYcHk3OEVyU3E3TE5VUUxLd3FJcSs2aXI3RElid1N0bStpMjZ0b05FMG9yNjZSYXBsYld3aVVNbEs1MlJGbWtDejFoOE9XZlkyWjVScmxjNk4=&b=true HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Cookie: __cmpcc=1; __cmpconsentx68884=CP-ZeMAP-ZeMAAfN0CENA0EgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP-ciJqAAADgAXACCAE0ALwDiQIOAqIADWzstn1bhY
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 22:17:45 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=116
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| i4.cdn-image.com/__media__/pics/29590/bg1.png | 208.91.196.253 | 200 OK | 18 kB |
URL GET HTTP/1.1i4.cdn-image.com/__media__/pics/29590/bg1.png IP208.91.196.253:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typePNG image data, 1730 x 988, 4-bit colormap, non-interlaced Hash825ccd29ac102fcadaf92b2343d5917b 24472e766cfac5b82a73b219796556a0a3702bd6 0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd
GET /__media__/pics/29590/bg1.png HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 22:17:45 GMT
Content-Type: image/png
Content-Length: 17986
Last-Modified: Fri, 25 Nov 2022 12:16:35 GMT
Connection: keep-alive
ETag: "6380b223-4642"
Expires: Fri, 24 May 2024 22:17:45 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
|
|
| a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&o=1715379466341 | 87.230.98.78 | 200 OK | 6.5 kB |
URL GET HTTP/2a.delivery.consentmanager.net/delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&o=1715379466341 IP87.230.98.78:443 ASN#61157 PlusServer GmbH
CertificateIssuerLet's Encrypt Subjecta.delivery.consentmanager.net Fingerprint69:B9:38:2C:D2:98:EE:BC:2E:9B:83:33:E4:2F:BC:73:04:51:C8:79 ValidityThu, 14 Mar 2024 00:37:17 GMT - Wed, 12 Jun 2024 00:37:16 GMT
File typegzip compressed data, max speed, from Unix Hash72d8ce9efff54554383aae734ca6ee27 f4ab0213cd0e193313109d8db3ca35324642af56 a2849bb7842bb93eeac52970427764c02fafe5c95fe8736e94be2201770fafc9
GET /delivery/cmp.php?&cdid=21fdca2281833&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&o=1715379466341 HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
x-xss-protection: 0
last-modified: Fri, 10 May 2024 22:17:46 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| i4.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff | 208.91.196.253 | 200 OK | 17 kB |
URL GET HTTP/1.1i4.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff IP208.91.196.253:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeWeb Open Font Format, TrueType, length 17312, version 2.1 Hashbebe201d813feaad85a3e66607d0da3a 28b049502afa8e9db5340c1a92400591b39870e8 58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://galyqaz.com
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 22:17:45 GMT
Content-Type: application/font-woff
Content-Length: 17312
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-43a0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| i4.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff | 208.91.196.253 | 200 OK | 17 kB |
URL GET HTTP/1.1i4.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff IP208.91.196.253:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeWeb Open Font Format, TrueType, length 17264, version 2.1 Hasha43b107861b42ce1335e41e43d4e4d00 99bdb1cec4a68ebe29249c46fefefb6880d009e5 a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://galyqaz.com
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 22:17:45 GMT
Content-Type: application/font-woff
Content-Length: 17264
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-4370"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| galyqaz.com/favicon.ico | 199.191.50.83 | 404 Not Found | 10 B |
IP199.191.50.83:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typeASCII text, with no line terminators Hash6608dd3e21ca3beabd4bdfa625a0b221 e926d0f8694a4bc4013308afaca7af51e4c9fd9f c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: galyqaz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Cookie: __cmpcc=1; __cmpconsentx68884=CP-ZeMAP-ZeMAAfN0CENA0EgAAAAAAAAAAigAAAAAAAA; __cmpcccx68884=aBP-ciJqAAADgAXACCAE0ALwDiQIOAqIADWzstn1bhY
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Fri, 10 May 2024 22:17:45 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=128
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-29-17-33-45.chain; p384ecdsa=VWpCJH-1kDq3wu0qGRnq22KEU74IQPsdj7oYfmBTqGgXJBWE2jeEfvsRtAyWWrFKTA60r0CEqOQjcKGf2PitRSCgpERxCgTNxSZai0U6-wRztUGNta1XeUX9mIk4Wcez
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 10 May 2024 22:16:24 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 98
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en | 87.230.98.78 | 200 OK | 972 B |
URL GET HTTP/2a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en IP87.230.98.78:443 ASN#61157 PlusServer GmbH
CertificateIssuerLet's Encrypt Subjecta.delivery.consentmanager.net Fingerprint69:B9:38:2C:D2:98:EE:BC:2E:9B:83:33:E4:2F:BC:73:04:51:C8:79 ValidityThu, 14 Mar 2024 00:37:17 GMT - Wed, 12 Jun 2024 00:37:16 GMT
File typeASCII text, with very long lines (1042), with no line terminators Hash5ff73b69233ea5397079184eeabc933f 93b8285b6a49e3bd80a71f883cc009e9306f7a56 1afa8f66a33ed2212123cce8201f58fb36708fb7062f686c09c4b2a6a03a8adb
GET /delivery/cmp.php?__cmpcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
x-xss-protection: 0
last-modified: Fri, 10 May 2024 22:17:46 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.consentmanager.net/delivery/recall/logos/68884 | 185.76.9.22 | 200 OK | 4.2 kB |
URL GET HTTP/2cdn.consentmanager.net/delivery/recall/logos/68884 IP185.76.9.22:443 ASN#60068 Datacamp Limited
CertificateIssuerLet's Encrypt Subject1376624012.rsc.cdn77.org Fingerprint87:A7:6F:22:26:60:66:88:EF:24:3A:3C:5F:C3:B4:5D:03:F7:88:7B ValidityFri, 26 Apr 2024 11:50:47 GMT - Thu, 25 Jul 2024 11:50:46 GMT
File typeSVG Scalable Vector Graphics image Hash46d40c431f8e14f71ab8f2f31eee942b 4f2140ab124f17c65f4a1d7998301b4747d1f87b 042c930c16842f0c1a14d5c16d23429d075c1ebdd16cad3ddd6f0d94ab0ae0ae
GET /delivery/recall/logos/68884 HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
content-type: image/svg+xml
vary: Accept-Encoding
expires: Sat, 11 May 2024 12:36:26 GMT
cache-control: public, max-age=86400
edge-control: public, max-age=86400, max-age=2592000
x-77-nzt: EwwBuUwJFAH3JYgAAAwBuUwKDAH3GwAAAAwBisclxAGTgVEBAA
x-77-nzt-ray: af585630ef01d04c0a9d3e660a163429
x-accel-expires: @1715430986
x-accel-date: 1715344613
x-77-cache: HIT
x-77-age: 34853
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 34853
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| i4.cdn-image.com/__media__/pics/28905/arrrow.png | 208.91.196.253 | 200 OK | 283 B |
URL GET HTTP/1.1i4.cdn-image.com/__media__/pics/28905/arrrow.png IP208.91.196.253:80 ASN#40034 CONFLUENCE-NETWORK-INC
File typePNG image data, 17 x 27, 8-bit colormap, non-interlaced Hash80d42c82a6c37da90210fd60a2f36128 554ba7c84d2a27ecf3b1f29d03e62101936b54d8 a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 22:17:45 GMT
Content-Type: image/png
Content-Length: 283
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
Connection: keep-alive
ETag: "61d45d4b-11b"
Expires: Fri, 24 May 2024 22:17:45 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
|
|
| a.delivery.consentmanager.net/delivery/info/?id=68884&did=2&cfdid=2&t=cv&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466691&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& | 87.230.98.78 | 200 OK | 43 B |
URL GET HTTP/2a.delivery.consentmanager.net/delivery/info/?id=68884&did=2&cfdid=2&t=cv&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466691&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& IP87.230.98.78:443 ASN#61157 PlusServer GmbH
CertificateIssuerLet's Encrypt Subjecta.delivery.consentmanager.net Fingerprint69:B9:38:2C:D2:98:EE:BC:2E:9B:83:33:E4:2F:BC:73:04:51:C8:79 ValidityThu, 14 Mar 2024 00:37:17 GMT - Wed, 12 Jun 2024 00:37:16 GMT
File typeGIF image data, version 89a, 1 x 1 Hash6f81c41597d3f5a336f458822cc0c32a 8cd77a54b38f1fb376b45af2eaab8f5982523b8d 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=68884&did=2&cfdid=2&t=cv&h=http%3A%2F%2Fgalyqaz.com%2F&o=1715379466691&l=EN&lv=96961&d=2&ct=14&e=&e2=&e3=&i=&sv=19&dv=33& HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
x-xss-protection: 0
last-modified: Fri, 10 May 2024 22:17:46 GMT
content-length: 43
content-type: image/gif
X-Firefox-Spdy: h2
|
|
| cdn.consentmanager.net/delivery/flags-rect/en.svg | 185.76.9.22 | 200 OK | 31 kB |
URL GET HTTP/2cdn.consentmanager.net/delivery/flags-rect/en.svg IP185.76.9.22:443 ASN#60068 Datacamp Limited
CertificateIssuerLet's Encrypt Subject1376624012.rsc.cdn77.org Fingerprint87:A7:6F:22:26:60:66:88:EF:24:3A:3C:5F:C3:B4:5D:03:F7:88:7B ValidityFri, 26 Apr 2024 11:50:47 GMT - Thu, 25 Jul 2024 11:50:46 GMT
File typeSVG Scalable Vector Graphics image Hashbd6a0ea3787e858b72d71dac1438fedd d59ba1a15ada77c2bc7a8edaa117f20893b3ee03 467dc751e1a67b8c2211ea6b0d5a8e77774f7e17bd542f8811c31f03d4d39907
GET /delivery/flags-rect/en.svg HTTP/1.1
Host: cdn.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 15 Jul 2022 22:22:41 GMT
etag: W/"78f6-5e3df74d6ce40"
cache-control: max-age=31536000
expires: Sat, 15 Feb 2025 13:39:56 GMT
edge-control: max-age=2592000
x-77-nzt: EwwBuUwJFAH3EStvAAwBuUwKDAH3SgwAAAwBJRPCNAH3AwAAAA
x-77-nzt-ray: af585630ef01d04c0a9d3e6624fee52a
x-accel-expires: @1739626796
x-accel-date: 1708093945
x-77-cache: HIT
x-77-age: 7285521
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 7285521
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en | 87.230.98.78 | 200 OK | 5.4 kB |
URL GET HTTP/2a.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en IP87.230.98.78:443 ASN#61157 PlusServer GmbH
CertificateIssuerLet's Encrypt Subjecta.delivery.consentmanager.net Fingerprint69:B9:38:2C:D2:98:EE:BC:2E:9B:83:33:E4:2F:BC:73:04:51:C8:79 ValidityThu, 14 Mar 2024 00:37:17 GMT - Wed, 12 Jun 2024 00:37:16 GMT
File typeASCII text, with very long lines (5910), with no line terminators Hash575f7b3955d10dd6ca8270a02f4baa94 44e8a8d8191cab2f4494980b6e8950e34b7fb0eb 9f7f177185908e4fa21ab1fff9665ae103f942c17d5e59bada8b8c240666e98c
GET /delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=68884&o=1715379466&h=http%3A%2F%2Fgalyqaz.com%2F&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: a.delivery.consentmanager.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://galyqaz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 22:17:46 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
x-xss-protection: 0
last-modified: Fri, 10 May 2024 22:17:46 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|