Report - analiseit.com.atlaq.com/

Report Overview

Visited public
2024-10-08 17:30:56
Tags
URL
analiseit.com.atlaq.com/
Finishing URL
isbiryatak.com.atlaq.com/
IP / ASN
172.67.176.167
#13335 CLOUDFLARENET
Title
İşbir Yatak - Yatak Uzmanı

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2024-10-08 03:37:28	338 B	863 B	54.230.218.11
isbiryatak.com	unknown	unknown	No data	No data	386 B	456 B	149.81.85.27
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2024-10-07 19:38:19	2.8 kB	2.5 kB	216.239.32.36
www.huffingtonpost.gr	573506	unknown	2014-11-23 09:00:07	2024-01-30 09:36:19	407 B	1.5 kB	151.101.2.114
traffic.alexa.com	381412	1996-07-17	2012-05-20 23:46:11	2021-05-14 12:40:47	966 B	0 B	0.0.0.0
isbm.org.in	unknown	2005-09-28	2016-10-26 12:12:22	2023-11-13 12:05:15	385 B	637 B	188.114.96.1
isbiges.com	unknown	unknown	No data	No data	385 B	0 B	0.0.0.0
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-10-07 19:37:47	1.6 kB	3.5 kB	142.250.74.131
huffingtonpost.es	129030	unknown	No data	No data	389 B	332 B	151.101.86.133
t1.gstatic.com	unknown	2008-02-11	2013-05-07 00:57:20	2024-10-07 22:38:38	5.8 kB	13 kB	142.250.74.68
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2024-10-08 08:13:18	652 B	578 B	142.250.74.163
analiseit.com.atlaq.com	unknown	unknown	No data	No data	425 B	15 kB	104.21.64.58
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-10-08 11:33:55	2.7 kB	542 kB	142.250.74.168
www.openstreetmap.org	39903	2004-08-09	2012-07-04 02:08:34	2024-10-04 08:55:16	2.3 kB	8.6 kB	104.21.88.66
j93557g.com	231236	2016-02-24	2016-02-25 23:19:12	2023-11-19 05:27:25	383 B	729 B	104.18.24.111
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-10-07 19:37:45	981 B	2.7 kB	23.36.76.249
huffingtonpost.fr	95747	unknown	No data	No data	389 B	410 B	151.101.66.132
isblokken.dk	unknown	unknown	No data	No data	386 B	247 B	93.191.156.180
isblog.net	304168	unknown	No data	No data	384 B	645 B	0.0.0.0
atlaq.com	460385	2019-04-07	2019-04-10 14:32:55	2024-09-20 03:55:59	1.9 kB	375 kB	188.114.96.1
huffingtonpost.gr	492437	unknown	No data	No data	389 B	596 B	151.101.2.114
tile.openstreetmap.org	12968	2004-08-09	2012-08-09 14:17:15	2024-10-07 20:12:45	2.2 kB	4.0 kB	151.101.1.91
isbiryatak.com.atlaq.com	unknown	unknown	No data	No data	1.2 kB	48 kB	188.114.97.1
huffingtonpost.com.mx	unknown	unknown	No data	No data	393 B	689 B	143.204.55.115
www.huffingtonpost.es	187063	unknown	2012-06-27 22:59:08	2024-09-05 13:08:14	393 B	936 B	199.232.198.133
j9dan.com.atlaq.com	unknown	unknown	No data	No data	1.1 kB	76 kB	188.114.97.1
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-10-07 19:37:44	1.3 kB	3.6 kB	23.36.76.249
preview.atlaq.com	unknown	2019-04-07	2023-10-16 11:41:32	2024-09-20 03:55:59	1.6 kB	217 kB	188.114.97.1
www.huffingtonpost.fr	173910	2011-04-13	2012-08-30 22:53:24	2024-06-20 16:04:40	393 B	1.1 kB	151.101.2.132
huffingtonpost.de	unknown	unknown	No data	No data	389 B	689 B	54.240.174.80
j9dan.com	unknown	2022-08-20	2022-08-20 16:12:01	2024-02-22 20:35:44	381 B	321 B	117.52.155.61

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-08	medium	isbiges.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	unknown	159 B	2024-10-11 08:48	2024-10-11 08:48
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash 001509996fe6c1b638c849dead959f5a 38d8f51d07456c01d11971ea0ab2746778997cc9 b722d6993612777ef74d083d241badcdb58d9aee14885124b8828fa2950b7f75 Loading...

	www.googletagmanager.com/gtag/js?id=UA-85346163-2	210 kB	2024-10-11 08:48	2024-10-11 08:48
Pretty URL www.googletagmanager.com/gtag/js?id=UA-85346163-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash f2d6a936892a95940903cc47661a7805 8a40b41af0a70843d2720f38ba73756f42f3f352 e35da5b91e3d2fac4e5b8d642a26f839d5f6e3e777b5b695ea0513f5f87c0541 Loading...

	isbiryatak.com.atlaq.com/	5.6 kB	2024-10-11 08:48	2024-10-11 08:48
Pretty URL isbiryatak.com.atlaq.com/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-11 08:48 Last Seen2024-10-11 08:48 Times Seen1 Hash babc438853e87844464fa9d950b79b34 35937e4675df67315a24706cc08d68bc0ef83bb1 9110f43e3d15a14a45b715d8792964fc5f107c0046c849cdb27d84aca8fff5a0 Loading...

HTTP Transactions (72)

URL IP Response Size

r10.o.lencr.org/

23.36.76.249

504 B

URL
r10.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7338853386defad2f045b3bee05dd9c8
6aaf1269eb3b9e16629c1b20652ee2dbd12c7182
50b50dc294c0c33b05390bd82ad7a823a64b8c24a0de5b92b770e8cfd4e5259f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "50B50DC294C0C33B05390BD82AD7A823A64B8C24A0DE5B92B770E8CFD4E5259F"
Last-Modified: Tue, 08 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9915
Expires: Tue, 08 Oct 2024 20:15:44 GMT
Date: Tue, 08 Oct 2024 17:30:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.249

504 B

URL
r10.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
92a230cb5218879a64fe719acf75881c
7f7635dedaaca6b4b4ecb370b51df9538d7a7d0d
14ffc94e6280a14388fda9745042b01144374fd782cf089b48025a1316ecbd24

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "14FFC94E6280A14388FDA9745042B01144374FD782CF089B48025A1316ECBD24"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2624
Expires: Tue, 08 Oct 2024 18:14:13 GMT
Date: Tue, 08 Oct 2024 17:30:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.249

504 B

URL
r10.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
33985775df7b619cb33f4050d88c5fb9
cf0b2ff92cd2f7e12ce788a164a73d75dea5da83
b6db380f5eeb73aa56abf90afa43b52cc9f51b01f33ad1eefeccc473a41ffb86

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B6DB380F5EEB73AA56ABF90AFA43B52CC9F51B01F33AD1EEFECCC473A41FFB86"
Last-Modified: Tue, 08 Oct 2024 11:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18997
Expires: Tue, 08 Oct 2024 22:47:06 GMT
Date: Tue, 08 Oct 2024 17:30:29 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.249

504 B

URL
r10.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
31fc782bf1efb76a7251d3e45007b986
7cfef07644e0e4aad99bfa3dd10cf975f7c06f89
663061e811010828ed222146cbb81114a49ba635f6c6547f3601ae0c3de1409d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "663061E811010828ED222146CBB81114A49BA635F6C6547F3601AE0C3DE1409D"
Last-Modified: Tue, 08 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15140
Expires: Tue, 08 Oct 2024 21:42:49 GMT
Date: Tue, 08 Oct 2024 17:30:29 GMT
Connection: keep-alive

atlaq.com/logo.png

188.114.96.1

200 OK

117 kB

URL GET HTTP/2
atlaq.com/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
PNG image data, 500 x 446, 8-bit/color RGBA, non-interlaced
Size
117 kB (117433 bytes)
Hash
792b74959e26cd37fd05dfcd0ef07770
c6e3ed2dd9771b077daf93eda5773cd10d621147
7ae2cb133588b7a2926b71630869d602c294840f6c1379666e82b25f3354623b

HTTP Headers

GET /logo.png HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: image/png
content-length: 117433
cache-control: public, max-age=31536000
expires: Fri, 03 Oct 2025 09:06:07 GMT
last-modified: Wed, 29 Jan 2020 11:21:42 GMT
vary: User-Agent,Origin, Accept-Encoding
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 462263
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sm2p28sfHAGa6srKYXBB1TPFMCrzE9o8SzxhZ7tZtkOgmbbQUi%2F9Ps6ytdkEmL8XGINecDtQXycwNp3Et7ESVoyJcj7%2Ba1qb%2FVVpPN76%2FGUHOdQnIb8adul8mUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dbf3bae556c6-OSL
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8130379f932c603c0ccfdf9930b03365
02ebb6273929d42fac806fa6e3860feb53bc1c04
bad944c14e47f8dcacaf131cbcbca647db61794ec130b8abea574afa774fd469

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:30:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-85346163-2

142.250.74.168

200 OK

75 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-85346163-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2345)
Size
75 kB (75431 bytes)
Hash
3372aa4a48a6a22699cee02d442edfa9
1471afdd75d658172c35e7a1fb25b4b4c3c337ca
29c4373b5efbd2217e0652f8e7db88cb3b86ed78f1957e7ce51a802e5381af76

HTTP Headers

GET /gtag/js?id=UA-85346163-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:30 GMT
expires: Tue, 08 Oct 2024 17:30:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 75431
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8130379f932c603c0ccfdf9930b03365
02ebb6273929d42fac806fa6e3860feb53bc1c04
bad944c14e47f8dcacaf131cbcbca647db61794ec130b8abea574afa774fd469

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:30:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c

142.250.74.168

200 OK

103 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
103 kB (103083 bytes)
Hash
9743688fa4b0d9fc17524c738e3d95f2
42f3b63c741a74133aa38536507e20d5d8a51323
5aea3722d5819ae11b9a14f6c8b3d3f2158639079253e95c45889cc75a768aaf

HTTP Headers

GET /gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:30 GMT
expires: Tue, 08 Oct 2024 17:30:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 103083
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.openstreetmap.org/assets/leaflet/dist/images/marker-shadow-a2d94406ba198f61f68a71ed8f9f9c701122c0c33b775d990edceae4aece567f.png

104.21.88.66

618 B

URL
www.openstreetmap.org/assets/leaflet/dist/images/marker-shadow-a2d94406ba198f61f68a71ed8f9f9c701122c0c33b775d990edceae4aece567f.png
IP
104.21.88.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 41 x 41, 8-bit gray+alpha, non-interlaced
Size
618 B (618 bytes)
Hash
44a526eed258222515aa21eaffd14a96
7b6a8df63930381e96604e705168d0527d6b82bc
264f5c640339f042dd729062cfc04c17f8ea0f29882b538e3848ed8f10edb4da

HTTP Headers

GET /assets/leaflet/dist/images/marker-shadow-a2d94406ba198f61f68a71ed8f9f9c701122c0c33b775d990edceae4aece567f.png HTTP/1.1
Host: www.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: image/png
content-length: 618
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "26a"
cache-control: immutable, max-age=31536000
expires: Fri, 03 Oct 2025 11:41:31 GMT
cf-cache-status: HIT
age: 452939
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yqeDxnHf11EWt56fjpIeu039HCKTDvJ1DuKAxATybAbwn2vtKdRwG%2BJVEpUQ92ZpdoK7i7cpjm8pn5%2Bzl6RCzJpD%2FB3V1Q9m%2Bakeqcg5NSLz5qO4sQD4FvvVNkThO40RJaIGPInrlzg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7dbf6e9e15688-OSL
X-Firefox-Spdy: h2

www.openstreetmap.org/assets/leaflet/dist/images/marker-icon-3d253116ec4ba0e1f22a01cdf1ff7f120fa4d89a6cd0933d68f12951d19809b4.png

104.21.88.66

1.5 kB

URL
www.openstreetmap.org/assets/leaflet/dist/images/marker-icon-3d253116ec4ba0e1f22a01cdf1ff7f120fa4d89a6cd0933d68f12951d19809b4.png
IP
104.21.88.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 25 x 41, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1466 bytes)
Hash
2273e3d8ad9264b7daa5bdbf8e6b47f8
60a90bcbb2b42b7ddb4556db94eb7c1084b0e5da
574c3a5cca85f4114085b6841596d62f00d7c892c7b03f28cbfa301deb1dc437

HTTP Headers

GET /assets/leaflet/dist/images/marker-icon-3d253116ec4ba0e1f22a01cdf1ff7f120fa4d89a6cd0933d68f12951d19809b4.png HTTP/1.1
Host: www.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: image/png
content-length: 1466
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "5ba"
cache-control: immutable, max-age=31536000
expires: Fri, 03 Oct 2025 11:41:31 GMT
cf-cache-status: HIT
age: 452939
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vUTy7%2FfETGN8NaGgXoT%2BLhcFg%2FjRPxz4AUmeihI4riNCcwyhR%2BJF%2FzF5OzJnHbpjOyTMFbzBUdV99KdhZ3z0FItTK%2F2kt5Q3iWciwnXNyMl4ROewRtmDctOjVGwh2DXJImofHUFhlZQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7dbf6e9db5688-OSL
X-Firefox-Spdy: h2

j93557g.com/favicon.ico

104.18.24.111

150 B

URL
j93557g.com/favicon.ico
IP
104.18.24.111:0
ASN
#13335 CLOUDFLARENET

File type
MS Windows icon resource - 1 icon, 16x16, 2 colors
Size
150 B (150 bytes)
Hash
c6acedaff906029fc5455d9ec52c7f42
92cbd806ca421aa2c9ff5e1ff76bbc20913a2f81
9deb629637088856fe61dc868bf40a7d21ed942e4117659f3d6c3408f59b906b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: j93557g.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: image/vnd.microsoft.icon
cache-control: public, max-age=3600
expires: Tue, 08 Oct 2024 18:30:30 GMT
last-modified: Wed, 02 Oct 2024 21:01:39 GMT
strict-transport-security: max-age=15724800; preload
timing-allow-origin: *
vary: Accept-Encoding
x-buildname: hoothoot
x-buildnumber: 1467201897
x-datacenter: gce-europe-west1
x-hostname: fen-hoothoot-europe-west1-spot-k7vg
via: 1.1 google
cf-cache-status: MISS
server: cloudflare
cf-ray: 8cf7dbf4aa1f5699-OSL
content-encoding: br
X-Firefox-Spdy: h2

tile.openstreetmap.org/19/262144/262143.png

151.101.1.91

103 B

URL
tile.openstreetmap.org/19/262144/262143.png
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
PNG image data, 256 x 256, 1-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
87fc8ea1962e8d562f90c3893be24bda
6a613a669524db4a9457c10a71dee0a08a8768d7
1c77b348765c66299f86929a49254e3e6d7893d3930322ff7879dda6d9071899

HTTP Headers

GET /19/262144/262143.png HTTP/1.1
Host: tile.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache/2.4.54 (Ubuntu)
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "87fc8ea1962e8d562f90c3893be24bda"
cache-control: max-age=141845, stale-while-revalidate=604800, stale-if-error=604800
expires: Thu, 10 Oct 2024 08:54:36 GMT
access-control-allow-origin: *
x-tilerender: nidhogg.openstreetmap.org
content-type: image/png
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408631.006866,VS0,VE17
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 103
X-Firefox-Spdy: h2

tile.openstreetmap.org/19/262144/262144.png

151.101.1.91

103 B

URL
tile.openstreetmap.org/19/262144/262144.png
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
PNG image data, 256 x 256, 1-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
87fc8ea1962e8d562f90c3893be24bda
6a613a669524db4a9457c10a71dee0a08a8768d7
1c77b348765c66299f86929a49254e3e6d7893d3930322ff7879dda6d9071899

HTTP Headers

GET /19/262144/262144.png HTTP/1.1
Host: tile.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache/2.4.54 (Ubuntu)
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "87fc8ea1962e8d562f90c3893be24bda"
cache-control: max-age=145963, stale-while-revalidate=604800, stale-if-error=604800
expires: Thu, 10 Oct 2024 10:03:14 GMT
access-control-allow-origin: *
x-tilerender: nidhogg.openstreetmap.org
content-type: image/png
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408631.007853,VS0,VE16
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 103
X-Firefox-Spdy: h2

www.openstreetmap.org/assets/embed-31abec0e3f0382e4d60ae9f3056d454f04784e6907e8229bf615fb3dc2c74374.css

104.21.88.66

2.8 kB

URL
www.openstreetmap.org/assets/embed-31abec0e3f0382e4d60ae9f3056d454f04784e6907e8229bf615fb3dc2c74374.css
IP
104.21.88.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10685)
Size
2.8 kB (2753 bytes)
Hash
30bd10ead43da6284d620ea20213e6ee
91c121133cbfd96fe41bca5b9629b0c5f8511489
fb47ffd9987454abd124f6a44dff267d6d89d9434f556cd2170fb9d67fe4d671

HTTP Headers

GET /assets/embed-31abec0e3f0382e4d60ae9f3056d454f04784e6907e8229bf615fb3dc2c74374.css HTTP/1.1
Host: www.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: text/css
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-encoding
etag: W/"969"
cache-control: immutable, max-age=31536000
expires: Fri, 03 Oct 2025 11:41:31 GMT
content-language: br
cf-cache-status: HIT
age: 452939
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oWEHCWhqQpOSKyx3fB3Edta4nT8szuxVPuFwxlNcAVmDMYqTSVpkCl6UcWZSimlaDuHs%2FZOCuMf%2FV0QiiF2FoprI8l3aEfUooAdsRbvnTILSsAazoT%2BRr%2F%2FZ2KXyLXnUmSvFXcfapa0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dbf5d81b5688-OSL
content-encoding: br
X-Firefox-Spdy: h2

tile.openstreetmap.org/19/262143/262143.png

151.101.1.91

103 B

URL
tile.openstreetmap.org/19/262143/262143.png
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
PNG image data, 256 x 256, 1-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
87fc8ea1962e8d562f90c3893be24bda
6a613a669524db4a9457c10a71dee0a08a8768d7
1c77b348765c66299f86929a49254e3e6d7893d3930322ff7879dda6d9071899

HTTP Headers

GET /19/262143/262143.png HTTP/1.1
Host: tile.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache/2.4.54 (Ubuntu)
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "87fc8ea1962e8d562f90c3893be24bda"
cache-control: max-age=138478, stale-while-revalidate=604800, stale-if-error=604800
expires: Thu, 10 Oct 2024 07:58:29 GMT
access-control-allow-origin: *
x-tilerender: culebre.openstreetmap.org
content-type: image/png
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408631.002507,VS0,VE38
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 103
X-Firefox-Spdy: h2

analiseit.com.atlaq.com/badk.txt

104.21.64.58

14 kB

URL
analiseit.com.atlaq.com/badk.txt
IP
104.21.64.58:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
14 kB (14134 bytes)
Hash
f4245877e1f9b8764acbac7b475ebf2d
7471a9d7354637651fa5d0200febe7ab162fb69a
bd300473a295a173716b1b182aed7c14e3551f7400360dd5f694115683ccd41c

HTTP Headers

GET /badk.txt HTTP/1.1
Host: analiseit.com.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://analiseit.com.atlaq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: text/plain; charset=UTF-8
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 17:30:30 GMT
last-modified: Mon, 13 Apr 2020 08:00:16 GMT
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2BBs2zJgW%2BNzKM%2FlSIN6XOZS9UGkYWaRKVl9u1i3xFm5aCLqNPfmowfCNsBAb1K57FzCBxlwXPp30pp9IhrzDB35VwEg0dVSwH8RhUvk0y42C1imONcoilu6GMfcsxbhG81rSUIPvcaT%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dbf519770b55-OSL
content-encoding: br
X-Firefox-Spdy: h2

tile.openstreetmap.org/19/262143/262144.png

151.101.1.91

103 B

URL
tile.openstreetmap.org/19/262143/262144.png
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
PNG image data, 256 x 256, 1-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
87fc8ea1962e8d562f90c3893be24bda
6a613a669524db4a9457c10a71dee0a08a8768d7
1c77b348765c66299f86929a49254e3e6d7893d3930322ff7879dda6d9071899

HTTP Headers

GET /19/262143/262144.png HTTP/1.1
Host: tile.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache/2.4.54 (Ubuntu)
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "87fc8ea1962e8d562f90c3893be24bda"
cache-control: max-age=139897, stale-while-revalidate=604800, stale-if-error=604800
expires: Thu, 10 Oct 2024 08:22:08 GMT
access-control-allow-origin: *
x-tilerender: culebre.openstreetmap.org
content-type: image/png
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408631.006534,VS0,VE39
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 103
X-Firefox-Spdy: h2

tile.openstreetmap.org/19/262142/262143.png

151.101.1.91

103 B

URL
tile.openstreetmap.org/19/262142/262143.png
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
PNG image data, 256 x 256, 1-bit colormap, non-interlaced
Size
103 B (103 bytes)
Hash
87fc8ea1962e8d562f90c3893be24bda
6a613a669524db4a9457c10a71dee0a08a8768d7
1c77b348765c66299f86929a49254e3e6d7893d3930322ff7879dda6d9071899

HTTP Headers

GET /19/262142/262143.png HTTP/1.1
Host: tile.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.openstreetmap.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Apache/2.4.54 (Ubuntu)
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: "87fc8ea1962e8d562f90c3893be24bda"
cache-control: max-age=140579, stale-while-revalidate=604800, stale-if-error=604800
expires: Thu, 10 Oct 2024 08:33:30 GMT
access-control-allow-origin: *
x-tilerender: culebre.openstreetmap.org
content-type: image/png
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:31 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408631.010715,VS0,VE38
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 103
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f0fb8f657d774d6bcd3cbfe023c1b71
afcbd66dc0a108d90f9eeb17094a8c5c387dc623
69ae177bf04d90b904d73c7bddf813ff94569cb1891e2258b577cebdbadc192b

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:30:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9basketball.com

142.250.74.68

726 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9basketball.com
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9basketball.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:31 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.openstreetmap.org/export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C

104.21.88.66

723 B

URL
www.openstreetmap.org/export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C
IP
104.21.88.66:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
723 B (723 bytes)
Hash
22c56d00628690dc7d8b83c8722024bf
19632f7648902759b0e471323267f6e5a6cf2e81
569ee9fe7a2ced592b0e5a2827798cc3f3e677fa34e895fd09b1d8d8b342b8c7

HTTP Headers

GET /export/embed.html?bbox=%2C%2C%2C&layer=mapnik&marker=%2C HTTP/1.1
Host: www.openstreetmap.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
last-modified: Thu, 03 Oct 2024 17:02:44 GMT
cache-control: max-age=604800
expires: Tue, 15 Oct 2024 17:30:30 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uy%2BlcjSQNOk37HQhmB2bS9lUwhGOU2AFd8L%2BCik%2Bs2J%2B8k2EQFoxKQPThm3Zaexbaoi2AA7%2B1sZa%2BEDXw9hMRQ8JboT8hVulL3%2F3oap0pr0ioFp1sC0dwP%2F%2Fii2yFBCYB45u32R9gt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf7dbf3bace5688-OSL
content-encoding: br
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://analiseit.com

142.250.74.68

1.1 kB

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://analiseit.com
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Size
1.1 kB (1102 bytes)
Hash
e634b247e3f9c15df2028758bca42ea3
6110db7817b6f002810eed773c55bf078f4bd02b
bca2bc567017b208e69612dc6540961ba7721dc939ca3b4a3f43a38421dcf40b

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://analiseit.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.analiseit.com/wp-content/uploads/2020/08/cropped-Sem-T%C3%ADtulo-2-2-1-180x180.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1102
date: Tue, 08 Oct 2024 17:30:31 GMT
expires: Tue, 15 Oct 2024 17:30:31 GMT
cache-control: public, max-age=604800
last-modified: Thu, 06 Aug 2020 11:56:27 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9hdbjg.com

142.250.74.68

726 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9hdbjg.com
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9hdbjg.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:31 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1246

216.239.32.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1246
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&_gaz=1&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=1246 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://analiseit.com.atlaq.com/
Origin: https://analiseit.com.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://analiseit.com.atlaq.com
date: Tue, 08 Oct 2024 17:30:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:136:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:136:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=278182499.1728408631&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101671035~101747727&tag_exp=101671035~101747727&z=1389531509

142.250.74.163

42 B

URL
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=278182499.1728408631&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101671035~101747727&tag_exp=101671035~101747727&z=1389531509
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FPZ0VEL1WQ&cid=278182499.1728408631&gtm=45je4a20v894672372za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3lPl2l1l1&npa=1&frm=0&tag_exp=101671035~101747727&tag_exp=101671035~101747727&z=1389531509 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 08 Oct 2024 17:30:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c6e9e332757518ae623c3175c8bf4863
195a70109aea176e40e487c4a035c4c5f965c147
14fe278a9f2a8761b7be772ea8c6fe68c26c86f8eadf5666b35c570e5f516221

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "14FE278A9F2A8761B7BE772EA8C6FE68C26C86F8EADF5666B35C570E5F516221"
Last-Modified: Tue, 08 Oct 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Tue, 08 Oct 2024 23:30:06 GMT
Date: Tue, 08 Oct 2024 17:30:31 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c6e9e332757518ae623c3175c8bf4863
195a70109aea176e40e487c4a035c4c5f965c147
14fe278a9f2a8761b7be772ea8c6fe68c26c86f8eadf5666b35c570e5f516221

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "14FE278A9F2A8761B7BE772EA8C6FE68C26C86F8EADF5666B35C570E5F516221"
Last-Modified: Tue, 08 Oct 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Tue, 08 Oct 2024 23:30:06 GMT
Date: Tue, 08 Oct 2024 17:30:31 GMT
Connection: keep-alive

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f0fb8f657d774d6bcd3cbfe023c1b71
afcbd66dc0a108d90f9eeb17094a8c5c387dc623
69ae177bf04d90b904d73c7bddf813ff94569cb1891e2258b577cebdbadc192b

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:30:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aefbc928f02a3df2f49965674117f0f4
a916e2c8da1d24527f7cfe57f9ca7b108240b0bc
e63dce477468251022b1ad33dbb661551a421e85b2e70e85a2369a8798d67b2c

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 08 Oct 2024 17:30:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r11.o.lencr.org/

23.36.76.249

504 B

URL
r11.o.lencr.org/
IP
23.36.76.249:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
aa746f2452828a39148ef2ed129c14f6
aab2904047696ac367e2bfc0ffb1ba44c9c84256
5c76fd0fb994332de5317dc7d533ae3edb60d9f0ce253f839e609d83a3bf0fa7

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5C76FD0FB994332DE5317DC7D533AE3EDB60D9F0CE253F839E609D83A3BF0FA7"
Last-Modified: Tue, 08 Oct 2024 04:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9805
Expires: Tue, 08 Oct 2024 20:13:56 GMT
Date: Tue, 08 Oct 2024 17:30:31 GMT
Connection: keep-alive

j9dan.com/favicon.ico

117.52.155.61

106 B

URL
j9dan.com/favicon.ico
IP
117.52.155.61:0
ASN
#3786 LG DACOM Corporation

File type
HTML document, ASCII text, with CRLF line terminators
Size
106 B (106 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: j9dan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 08 Oct 2024 17:30:31 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com

142.250.74.68

726 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:32 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

preview.atlaq.com/crawl?url=analiseit.com

188.114.97.1

121 B

URL
preview.atlaq.com/crawl?url=analiseit.com
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
JSON text data
Size
121 B (121 bytes)
Hash
dd2eb4d6b2569b3f53bb17310bfc7350
1b81378c9ddb8047f763cc9f5fca4f9afaea2410
4cc9157c5fa2da7f3509927af1d25318205eabb1e958e3378f855e35b8677ad0

HTTP Headers

GET /crawl?url=analiseit.com HTTP/1.1
Host: preview.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://analiseit.com.atlaq.com/
Origin: https://analiseit.com.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 500 Internal Server Error
date: Tue, 08 Oct 2024 17:30:32 GMT
content-type: application/json; charset=utf-8
content-length: 121
x-powered-by: Express
access-control-allow-origin: https://analiseit.com.atlaq.com
vary: Origin
etag: W/"79-G4E3jJ3bgEf3Y8yfX8pPmvrqJBA"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dp7ZgvkhnqS1NaNpo%2Bwb65uUA%2F2e3P%2FsMlbOgleFFxqfU%2FjRxTaAHAtHHu8kFEIie9U%2BqwWed4osmKqRAiibn8xPaWv5bTLnviWp7z%2B9zAaJwAIaitJcutyi4OeZU5tediRKbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf7dbf71d289fd5-AMS
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-85346163-2

142.250.74.168

200 OK

76 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-85346163-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2345)
Size
76 kB (75477 bytes)
Hash
8877796830d372e5a97034c57d6fa5c0
c33cea11546dfa514b8fcf757c0461adc4b32294
2e2d5cc815a5b757f9fab1cc7564891adae2cd90c42f8d25a21d3bb04d01181c

HTTP Headers

GET /gtag/js?id=UA-85346163-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:48 GMT
expires: Tue, 08 Oct 2024 17:30:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 75477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

atlaq.com/logo.png

188.114.96.1

200 OK

117 kB

URL GET HTTP/2
atlaq.com/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
PNG image data, 500 x 446, 8-bit/color RGBA, non-interlaced
Size
117 kB (117433 bytes)
Hash
792b74959e26cd37fd05dfcd0ef07770
c6e3ed2dd9771b077daf93eda5773cd10d621147
7ae2cb133588b7a2926b71630869d602c294840f6c1379666e82b25f3354623b

HTTP Headers

GET /logo.png HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.0.1728408648.42.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: image/png
content-length: 117433
cache-control: public, max-age=31536000
expires: Fri, 03 Oct 2025 09:06:07 GMT
last-modified: Wed, 29 Jan 2020 11:21:42 GMT
vary: User-Agent,Origin, Accept-Encoding
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 462281
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v8Uo2sY6UrMRjSaDAGDdFcxJsYvxGAWVUzBESRcA%2FkU7%2FZhYuaXFlYoy6dmG61n7XCdLDP1ebcVIPdMSvGaaw17PiJkJWxXQfMpjUGpGX9bVVttOLV9KBanzwBs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dc65a99356c6-OSL
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c

142.250.74.168

200 OK

103 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
103 kB (103097 bytes)
Hash
4d2cb4f3ba5f295e2f3a3cce166078c7
6f5e75f7b8b0a6a761f16ff768c3adcd732e7a20
7a23529fecc112e7e11395927183ef987491e3aeee4e077c27ea51835c8e8fd7

HTTP Headers

GET /gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:48 GMT
expires: Tue, 08 Oct 2024 17:30:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 103097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

isbiryatak.com/favicon.ico

149.81.85.27

23 B

URL
isbiryatak.com/favicon.ico
IP
149.81.85.27:0
ASN
#36351 SOFTLAYER

File type
ASCII text, with no line terminators
Size
23 B (23 bytes)
Hash
b80a3ede47a030d8f07d30abc0aa6e58
6a6a745d7e3b1ce78870c335dde66f544b5574df
689888df2b56921c08bb1285d2e755c2f19aae167a60b19d0ba470de45623186

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: isbiryatak.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
content-length: 23
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:48 GMT
permissions-policy: geolocation=self
x-xss-protection: 1; mode=block
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

preview.atlaq.com/199ddf9ad2f1bad1dcbaa2b30687c7ec_j9dan.com.png

188.114.97.1

200 OK

71 kB

URL GET HTTP/2
preview.atlaq.com/199ddf9ad2f1bad1dcbaa2b30687c7ec_j9dan.com.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectpreview.atlaq.com
Fingerprint6C:D6:56:D4:A9:04:C3:AA:90:A2:A9:59:75:47:89:91:6A:4F:9B:BE
ValiditySat, 05 Oct 2024 05:49:39 GMT - Fri, 03 Jan 2025 05:49:38 GMT

File type
PNG image data, 683 x 384, 8-bit/color RGBA, non-interlaced
Size
71 kB (70563 bytes)
Hash
cb6af5834afef8cb2f6df39319700bf7
6fe66f1346d37a103e173a5d1e620b80ab49cdb7
1361d84ed9794aff40f3f294b9245bda7dfe60c66bf1556611c872885cd928e8

HTTP Headers

GET /199ddf9ad2f1bad1dcbaa2b30687c7ec_j9dan.com.png HTTP/1.1
Host: preview.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.0.1728408648.42.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: image/png
content-length: 70563
x-powered-by: Express
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000
last-modified: Sun, 24 Dec 2023 09:02:44 GMT
etag: W/"113a3-18c9b0ff908"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=byr4lK%2BZ%2F11EPpJC%2BlXOzSQke7D51%2BIfUNN52bTfyGKfPyLnqAkQotyh4OO1R%2BgygYOe5PDiN3qDQf7PssJgOsVoeqD%2Fo9iA9QEQybzU%2BQIrhK6NpqgCSFp4gDJ54vcw%2BGdZAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf7dc655b89d9cf-FRA
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAI&_s=2&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=click&ep.link_id=&ep.link_classes=item&ep.link_url=https%3A%2F%2Fj9dan.com.atlaq.com%2F&ep.link_domain=j9dan.com.atlaq.com&ep.outbound=true&_et=3745&tfd=18712

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAI&_s=2&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=click&ep.link_id=&ep.link_classes=item&ep.link_url=https%3A%2F%2Fj9dan.com.atlaq.com%2F&ep.link_domain=j9dan.com.atlaq.com&ep.outbound=true&_et=3745&tfd=18712
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://analiseit.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408630566&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAI&_s=2&sid=1728408630&sct=1&seg=0&dl=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=Analyse%20It%20-%20O%20melhor%20site%20sobre%20o%20mercado%20de%20mang%C3%A1s!&en=click&ep.link_id=&ep.link_classes=item&ep.link_url=https%3A%2F%2Fj9dan.com.atlaq.com%2F&ep.link_domain=j9dan.com.atlaq.com&ep.outbound=true&_et=3745&tfd=18712 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://analiseit.com.atlaq.com/
Origin: https://analiseit.com.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://analiseit.com.atlaq.com
date: Tue, 08 Oct 2024 17:30:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:136:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:136:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiges.com

142.250.74.68

404 Not Found

726 B

URL GET HTTP/3
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiges.com
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiges.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:49 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isblokken.dk

142.250.74.68

404 Not Found

726 B

URL GET HTTP/3
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isblokken.dk
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isblokken.dk HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:49 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

atlaq.com/style.css

188.114.96.1

200 OK

19 kB

URL GET HTTP/2
atlaq.com/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
ASCII text, with very long lines (49091), with no line terminators
Size
19 kB (18718 bytes)
Hash
1dc4998a41131ac5df41ae820c7f583c
227aa907d96a66d38f5073700d2d8c5e1262187c
1f807cd9d5d8475f4ec107c17a62318927277940eb8bfe1d386ec97ad4cb9f57

HTTP Headers

GET /style.css HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:30 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000
cf-bgj: minify
expires: Sat, 02 Nov 2024 09:06:07 GMT
last-modified: Tue, 25 Oct 2022 04:42:27 GMT
strict-transport-security: max-age=31536000;includeSubDomains
vary: Accept-Encoding,User-Agent,Origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-turbo-charged-by: LiteSpeed
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 462263
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ChcQYuxaTa40k4Nuw26X%2BWAwYQC5wRX3a6sLOSNl%2FTomPS%2FIK7NZv%2FQ7HXWMTNn6O2ZE31VMe1oPPbbQ7tmNq0tjs5QSEQYQRwdwEC65FXF6DGc0u3kDYsh%2FoaA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dbf3bae456c6-OSL
content-encoding: br
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com

142.250.74.68

726 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
726 B (726 bytes)
Hash
b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://j9dan.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 08 Oct 2024 17:30:49 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbm.org.in

142.250.74.68

380 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbm.org.in
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
380 B (380 bytes)
Hash
c22b758ed6d97a5035566f36f1439e66
c1fef4125c4c0547e69636c811f00c05f2fd5278
d77ddf45dc175843f2dac872d4011bdae31aa4ff0519523b4cce3952f52333ba

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbm.org.in HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://isbm.org.in/source/images/favicon.gif
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 380
date: Tue, 08 Oct 2024 17:30:49 GMT
expires: Tue, 15 Oct 2024 17:30:49 GMT
cache-control: public, max-age=604800
last-modified: Wed, 19 Jun 2019 00:11:38 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

atlaq.com/logo.png

188.114.96.1

200 OK

117 kB

URL GET HTTP/2
atlaq.com/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint56:E8:0F:CA:89:66:F1:8F:11:8A:5F:94:9A:B9:72:63:8E:07:75:13
ValidityWed, 25 Sep 2024 23:47:23 GMT - Wed, 25 Dec 2024 00:47:01 GMT

File type
PNG image data, 500 x 446, 8-bit/color RGBA, non-interlaced
Size
117 kB (117433 bytes)
Hash
792b74959e26cd37fd05dfcd0ef07770
c6e3ed2dd9771b077daf93eda5773cd10d621147
7ae2cb133588b7a2926b71630869d602c294840f6c1379666e82b25f3354623b

HTTP Headers

GET /logo.png HTTP/1.1
Host: atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.1.1728408652.38.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:52 GMT
content-type: image/png
content-length: 117433
cache-control: public, max-age=31536000
expires: Fri, 03 Oct 2025 09:06:07 GMT
last-modified: Wed, 29 Jan 2020 11:21:42 GMT
vary: User-Agent,Origin, Accept-Encoding
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 462285
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b08sl10zA0VA9xPmYD39t4VHa4VxXT0AUheM8elQ8fHlY%2BFeq88qoJfKgHCUL8PiBBplFG2stwwBlTmURmXXsBdJqEp35zq2VNb0%2FbKhjW8c42RcD1gpZBCWH1s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dc7cfdcc56c6-OSL
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408648550&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&sid=1728408630&sct=1&seg=1&dl=https%3A%2F%2Fj9dan.com.atlaq.com%2F&dr=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=%EC%A0%95%EC%B9%989%EB%8B%A8&_s=1&tfd=4191

216.239.32.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408648550&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&sid=1728408630&sct=1&seg=1&dl=https%3A%2F%2Fj9dan.com.atlaq.com%2F&dr=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=%EC%A0%95%EC%B9%989%EB%8B%A8&_s=1&tfd=4191
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FPZ0VEL1WQ&gtm=45je4a20v894672372za200&_p=1728408648550&gcd=13l3lPl2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101671035~101747727&cid=278182499.1728408631&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&sid=1728408630&sct=1&seg=1&dl=https%3A%2F%2Fj9dan.com.atlaq.com%2F&dr=https%3A%2F%2Fanaliseit.com.atlaq.com%2F&dt=%EC%A0%95%EC%B9%989%EB%8B%A8&_s=1&tfd=4191 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://j9dan.com.atlaq.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 41
Origin: https://j9dan.com.atlaq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://j9dan.com.atlaq.com
date: Tue, 08 Oct 2024 17:30:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:136:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:136:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=UA-85346163-2

142.250.74.168

200 OK

76 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-85346163-2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2345)
Size
76 kB (75481 bytes)
Hash
f2d6a936892a95940903cc47661a7805
8a40b41af0a70843d2720f38ba73756f42f3f352
e35da5b91e3d2fac4e5b8d642a26f839d5f6e3e777b5b695ea0513f5f87c0541

HTTP Headers

GET /gtag/js?id=UA-85346163-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:52 GMT
expires: Tue, 08 Oct 2024 17:30:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 75481
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

huffingtonpost.gr/favicon.ico

151.101.2.114

0 B

URL
huffingtonpost.gr/favicon.ico
IP
151.101.2.114:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: huffingtonpost.gr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: Varnish
retry-after: 0
location: https://www.huffingtonpost.gr/favicon.ico
accept-ranges: bytes
date: Tue, 08 Oct 2024 17:30:52 GMT
via: 1.1 varnish
x-served-by: cache-hel1410034-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1728408653.590310,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1; mode=block
set-cookie: bf-geo-country=NO; expires=Wed, 09 Oct 2024 17:30:52 GMT; path=/; domain=huffingtonpost.gr;
content-length: 0
X-Firefox-Spdy: h2

huffingtonpost.fr/favicon.ico

151.101.66.132

0 B

URL
huffingtonpost.fr/favicon.ico
IP
151.101.66.132:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: huffingtonpost.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: Varnish
retry-after: 0
cache-control: max-age=86400
location: https://www.huffingtonpost.fr/favicon.ico
accept-ranges: bytes
date: Tue, 08 Oct 2024 17:30:52 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1728408653.591147,VS0,VE0
strict-transport-security: max-age=31557600
content-length: 0
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c

142.250.74.168

200 OK

103 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE3:7D:50:8B:BE:35:97:51:F4:08:B4:CE:AE:10:BB:FB:4B:55:A1:28
ValidityMon, 16 Sep 2024 08:55:43 GMT - Mon, 09 Dec 2024 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
103 kB (103098 bytes)
Hash
4d702fe863c749316bf6ce1e9b6bdc7c
8add29b3cd7d72f4eb08de347d6017bd4ebe3f7b
10979ba97b3184f348cf9e68b2a88bdc4800b4c5f62655af526ae6802ec321be

HTTP Headers

GET /gtag/js?id=G-FPZ0VEL1WQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 08 Oct 2024 17:30:52 GMT
expires: Tue, 08 Oct 2024 17:30:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 103098
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

isbiryatak.com.atlaq.com/badk.txt

188.114.97.1

200 OK

14 kB

URL GET HTTP/2
isbiryatak.com.atlaq.com/badk.txt
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://isbiryatak.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint0F:CF:65:E8:F1:08:DC:34:85:C1:27:24:F3:CF:CA:88:80:3B:F2:2C
ValiditySat, 21 Sep 2024 23:31:14 GMT - Sat, 21 Dec 2024 00:30:48 GMT

File type
ASCII text
Size
14 kB (14502 bytes)
Hash
f4245877e1f9b8764acbac7b475ebf2d
7471a9d7354637651fa5d0200febe7ab162fb69a
bd300473a295a173716b1b182aed7c14e3551f7400360dd5f694115683ccd41c

HTTP Headers

GET /badk.txt HTTP/1.1
Host: isbiryatak.com.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://isbiryatak.com.atlaq.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.1.1728408652.38.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:52 GMT
content-type: text/plain; charset=UTF-8
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 17:30:48 GMT
last-modified: Mon, 13 Apr 2020 08:00:16 GMT
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yKLLK5V7IoYvnZBi4wwMwvFljPWox5PNj%2FDjuI9uE5xCqjX5107iMx0aJ9ok2mMgXUaBSfNLCyFt7nV3TXtTQtpqg7MGFiconSDwzdGBOrvwiItqTIrQfoI2wieqc9%2FJeTHSCC%2Bgl0YlKaE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dc7e5b739f69-AMS
content-encoding: br
X-Firefox-Spdy: h2

www.huffingtonpost.gr/favicon.ico

151.101.2.114

474 B

URL
www.huffingtonpost.gr/favicon.ico
IP
151.101.2.114:0
ASN
#54113 FASTLY

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
474 B (474 bytes)
Hash
cf339f2d96daf6c7aecc6bf0eba0cdac
4ec375158ced32deac6c271cc3c100fcf62c85e3
2020e123c064086aad150fe909c53771f862d7c76cd62f6146e81d533845fd7d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.huffingtonpost.gr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-amz-id-2: 8Oq47ai3EAr+o4tMfmwuR5BtbDo4Y0NYFFT7VyAizX2Os4XY76PLmIQ9dlPIj3im38tJB0KMa5k=
x-amz-request-id: EDEC1BJXGPCEJ43Q
last-modified: Tue, 24 Aug 2021 23:19:03 GMT
etag: "cf339f2d96daf6c7aecc6bf0eba0cdac"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=604800
x-amz-version-id: 23se8YrgRCzMfbLtV9_m5Bwuh_vZPNpz
content-type: image/x-icon
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 547954
date: Tue, 08 Oct 2024 17:30:52 GMT
x-served-by: cache-iad-kcgs7200114-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 1115, 0
x-timer: S1728408653.722235,VS0,VE4
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
referrer-policy: no-referrer-when-downgrade
x-xss-protection: 1; mode=block
set-cookie: bf-geo-country=NO; expires=Wed, 09 Oct 2024 17:30:52 GMT; path=/; domain=www.huffingtonpost.gr;
vary: Accept-Encoding, x-ismobile, x-ismobile
content-length: 474
X-Firefox-Spdy: h2

huffingtonpost.es/favicon.ico

151.101.86.133

0 B

URL
huffingtonpost.es/favicon.ico
IP
151.101.86.133:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: huffingtonpost.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: Varnish
retry-after: 0
location: https://www.huffingtonpost.es/favicon.ico
accept-ranges: bytes
date: Tue, 08 Oct 2024 17:30:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1728408653.730825,VS0,VE0
content-length: 0
X-Firefox-Spdy: h2

www.huffingtonpost.fr/favicon.ico

151.101.2.132

474 B

URL GET
www.huffingtonpost.fr/favicon.ico
IP
151.101.2.132:0
ASN
#54113 FASTLY

Requested by
https://isbiryatak.com.atlaq.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.huffingtonpost.fr
FingerprintC5:AB:A4:F3:2B:B1:8A:A1:A9:E5:A7:39:19:9A:81:A2:CB:3E:E2:EA
ValidityTue, 02 Jul 2024 10:29:50 GMT - Sun, 03 Aug 2025 10:29:49 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
474 B (474 bytes)
Hash
cf339f2d96daf6c7aecc6bf0eba0cdac
4ec375158ced32deac6c271cc3c100fcf62c85e3
2020e123c064086aad150fe909c53771f862d7c76cd62f6146e81d533845fd7d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.huffingtonpost.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/x-icon
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: max-age=2592000, public
etag: "66fe4fbf-1536"
expires: Sun, 03 Nov 2024 19:56:45 GMT
last-modified: Thu, 03 Oct 2024 08:03:11 GMT
server: nginx/1.18.0 (Ubuntu)
content-encoding: gzip
accept-ranges: bytes
age: 336847
date: Tue, 08 Oct 2024 17:30:52 GMT
via: 1.1 varnish
x-served-by: cache-hel1410022-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1728408653.754791,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 474
X-Firefox-Spdy: h2

preview.atlaq.com/aed9862b4404b071416d126aa0bf18d0_isbiryatak.com.png

188.114.97.1

144 kB

URL GET
preview.atlaq.com/aed9862b4404b071416d126aa0bf18d0_isbiryatak.com.png
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

Requested by
https://isbiryatak.com.atlaq.com/

File type
PNG image data, 683 x 384, 8-bit/color RGBA, non-interlaced
Size
144 kB (144477 bytes)
Hash
933d32b8e9b58409b1f40f0c8f9bfcb4
400fba75aaaf4745f686738cf663291ac75c4423
ded17a23c8231d21ad80f67f660ab7933e57ebcd95ad070f56a537d15139f53b

HTTP Headers

GET /aed9862b4404b071416d126aa0bf18d0_isbiryatak.com.png HTTP/1.1
Host: preview.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.1.1728408652.38.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:52 GMT
content-type: image/png
content-length: 144477
x-powered-by: Express
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000
last-modified: Mon, 25 Dec 2023 15:24:44 GMT
etag: W/"2345d-18ca1940f54"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cc2VA3bmSOZUvvIck06rrAAN3q3kBsdTbEo4XV2p3iTzZ904MGYlujTLj7EZRMcaZGfK6MEOHtsi9CTq1zPUUZ6nOEo3gwEXcDTsCElUiTfitk9fE4u7oK%2BT0akloPaSNhSS3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf7dc7cfdfed9cf-FRA
X-Firefox-Spdy: h2

huffingtonpost.com.mx/favicon.ico

143.204.55.115

341 B

URL
huffingtonpost.com.mx/favicon.ico
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
XML 1.0 document, ASCII text
Size
341 B (341 bytes)
Hash
1ec31972ec65a65470d3b5d790c1f401
ff246ff3f34725545777856854cd50034c1eba55
664f2b1654c363a6348b688d5d475ed9ec0e7ef3c72f6f315f37fe97a2fe63eb

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: huffingtonpost.com.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
content-length: 341
date: Tue, 08 Oct 2024 17:30:52 GMT
server: lighttpd/1.4.55
x-cache: Error from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TdxqdpvSebDqgAXleuf37ll1-Q2wjJaKLsaVI96Bhv1zHPAWfykqiw==
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
459bf6c538fea09c5287ea5e58b1cdf8
cd9b2e7cf4c9ec44c0bd5aebe75044ebcfac2c7f
237dc9cf6bcbcedd61b928af84037163e910a110c4587a9631eee33d119c8940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 08 Oct 2024 17:30:52 GMT
Server: ECAcc (amb/6AD2)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _-nxiE0pp22chzXZJVOncEukUnRP1095vMWSNSFBEJq5RFSLkfIWIA==

www.huffingtonpost.es/favicon.ico

199.232.198.133

486 B

URL GET
www.huffingtonpost.es/favicon.ico
IP
199.232.198.133:0
ASN
#54113 FASTLY

Requested by
https://isbiryatak.com.atlaq.com/

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
486 B (486 bytes)
Hash
cf339f2d96daf6c7aecc6bf0eba0cdac
4ec375158ced32deac6c271cc3c100fcf62c85e3
2020e123c064086aad150fe909c53771f862d7c76cd62f6146e81d533845fd7d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.huffingtonpost.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/x-icon
cache-control: max-age=120, must-revalidate
content-encoding: gzip
etag: W/"66ebc250-1536"
last-modified: Thu, 19 Sep 2024 06:18:56 GMT
via: 1.1 google, 1.1 varnish
accept-ranges: bytes
age: 0
date: Tue, 08 Oct 2024 17:30:53 GMT
x-served-by: cache-hel1410026-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1728408653.108916,VS0,VE123
vary: Accept-Encoding
content-length: 486
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiryatak.com

142.250.74.68

200 OK

965 B

URL GET HTTP/3
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiryatak.com
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint0B:BA:7B:D2:D9:02:2E:7F:5C:C7:1F:18:F2:A7:76:44:D1:22:07:2B
ValidityMon, 16 Sep 2024 09:34:31 GMT - Mon, 09 Dec 2024 09:34:30 GMT

File type
PNG image data, 64 x 64, 8-bit colormap, non-interlaced
Size
965 B (965 bytes)
Hash
3bdff47b8056ee447b4c80a5c96d4ef0
2b0e22676d766768cf1fbf50b8415d64f262ee8d
300b9432bbf2c33d89514da2fb5395730649fa401fd035773b9367caba88bd2b

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://isbiryatak.com HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-location: https://witcdn.isbiryatak.com/Data/EditorFiles/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 965
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Oct 2024 17:30:49 GMT
expires: Tue, 15 Oct 2024 17:30:49 GMT
cache-control: public, max-age=604800
last-modified: Sun, 10 Jan 2021 01:12:41 GMT
content-type: image/png
age: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.com.mx

142.250.74.68

346 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.com.mx
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
346 B (346 bytes)
Hash
2825d502faf4dad716447b10f418473c
f9c02bb0cb4bbcd713a69dc51f7d24a19c9b79b2
9a3f5f31fe1300e037ed420daff410f1847e88cdda5cc4fd84141a236fc2c8e1

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.com.mx HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.huffpost.com/static-assets/cambria/app/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 346
date: Tue, 08 Oct 2024 17:30:53 GMT
expires: Tue, 15 Oct 2024 17:30:53 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

huffingtonpost.de/favicon.ico

54.240.174.80

341 B

URL
huffingtonpost.de/favicon.ico
IP
54.240.174.80:0
ASN
#16509 AMAZON-02

File type
XML 1.0 document, ASCII text
Size
341 B (341 bytes)
Hash
1ec31972ec65a65470d3b5d790c1f401
ff246ff3f34725545777856854cd50034c1eba55
664f2b1654c363a6348b688d5d475ed9ec0e7ef3c72f6f315f37fe97a2fe63eb

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: huffingtonpost.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
content-length: 341
date: Tue, 08 Oct 2024 17:30:53 GMT
server: lighttpd/1.4.55
x-cache: Error from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eIOd4VHSSyqBrvRQskhHP67gKOCSxgk4fU7VMRY086B0MMKya9th5g==
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.de

142.250.74.68

346 B

URL
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.de
IP
142.250.74.68:0
ASN
#15169 GOOGLE

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
346 B (346 bytes)
Hash
2825d502faf4dad716447b10f418473c
f9c02bb0cb4bbcd713a69dc51f7d24a19c9b79b2
9a3f5f31fe1300e037ed420daff410f1847e88cdda5cc4fd84141a236fc2c8e1

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&size=64&url=https://huffingtonpost.de HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://isbiryatak.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.huffpost.com/static-assets/cambria/app/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 346
date: Tue, 08 Oct 2024 17:30:53 GMT
expires: Tue, 15 Oct 2024 17:30:53 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

j9dan.com.atlaq.com/badk.txt

188.114.97.1

200 OK

44 kB

URL GET HTTP/2
j9dan.com.atlaq.com/badk.txt
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint0F:CF:65:E8:F1:08:DC:34:85:C1:27:24:F3:CF:CA:88:80:3B:F2:2C
ValiditySat, 21 Sep 2024 23:31:14 GMT - Sat, 21 Dec 2024 00:30:48 GMT

File type
ASCII text
Size
44 kB (43852 bytes)
Hash
f4245877e1f9b8764acbac7b475ebf2d
7471a9d7354637651fa5d0200febe7ab162fb69a
bd300473a295a173716b1b182aed7c14e3551f7400360dd5f694115683ccd41c

HTTP Headers

GET /badk.txt HTTP/1.1
Host: j9dan.com.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://j9dan.com.atlaq.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.0.1728408648.42.0.0; _ga=GA1.1.278182499.1728408631
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: text/plain; charset=UTF-8
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 17:30:48 GMT
last-modified: Mon, 13 Apr 2020 08:00:16 GMT
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vaVfitzI5qIPZrtSmfCV7iE%2BKFlxmd6zLgynINfdeYCTHgUInSUOB9lZvS2bJMB86E1X9jFMn38NSWN%2FIhkym%2FilJUSt2cwr5quvbdIUtbGZkz4NHgIL0nRq%2BV0VYjShUmRrpHQ7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf7dc65e8ff9f69-AMS
content-encoding: br
X-Firefox-Spdy: h2

j9dan.com.atlaq.com/

188.114.97.1

200 OK

30 kB

URL User Request GET HTTP/2
j9dan.com.atlaq.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint0F:CF:65:E8:F1:08:DC:34:85:C1:27:24:F3:CF:CA:88:80:3B:F2:2C
ValiditySat, 21 Sep 2024 23:31:14 GMT - Sat, 21 Dec 2024 00:30:48 GMT

File type

Size
30 kB (30040 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: j9dan.com.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://analiseit.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.0.1728408648.42.0.0; _ga=GA1.1.278182499.1728408631
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
cache-control: public, max-age=2592000
expires: Wed, 06 Nov 2024 12:55:27 GMT
x-litespeed-cache: hit
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xqn7wrSaya6tIwPp7yrn7ocD1PMjFRU39UDolBt4YZg7TTYXH72kGmRESHiu5y98qPshcaVUf9SdVxG8wurEFErytHkyCEvYKwF%2B0ztUuv2AYn%2FwaXVrO%2BDMeYJ67QPWmWai%2B2E3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf7dc63fdb49f69-AMS
content-encoding: br
X-Firefox-Spdy: h2

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=j9dan.com

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=j9dan.com
IP
0.0.0.0:0
ASN
#0

Requested by
https://j9dan.com.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=q&b=f5f5f5&n=666666&r=2y&u=j9dan.com HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

isbiryatak.com.atlaq.com/

0.0.0.0

31 kB

URL User Request GET
isbiryatak.com.atlaq.com/
IP
0.0.0.0:0
ASN
#0

Certificate
IssuerGoogle Trust Services
Subjectatlaq.com
Fingerprint0F:CF:65:E8:F1:08:DC:34:85:C1:27:24:F3:CF:CA:88:80:3B:F2:2C
ValiditySat, 21 Sep 2024 23:31:14 GMT - Sat, 21 Dec 2024 00:30:48 GMT

File type

Size
31 kB (30947 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: isbiryatak.com.atlaq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Cookie: _ga_FPZ0VEL1WQ=GS1.1.1728408630.1.1.1728408648.42.0.0; _ga=GA1.1.278182499.1728408631
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:52 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
cache-control: public, max-age=2592000
expires: Thu, 07 Nov 2024 17:30:52 GMT
x-litespeed-cache: miss
vary: Accept-Encoding,User-Agent,Origin
strict-transport-security: max-age=31536000;includeSubDomains
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Authorization, Accept
access-control-expose-headers: Content-Disposition
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZlRwX1Y7hS2vQSFviTNUXpn57VuvZdNz2TwKYng9eJAJ3inSyG7pgnRD%2BxPUbVqv5yESYcdjhw9rvSwBd73dLnwsBXBDTm408SjaDjdzfqrflRt02wfFxJG8l22lyuZRCVjgPapyW0NdRhw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf7dc7b8e9e9f69-AMS
content-encoding: br
X-Firefox-Spdy: h2

isblokken.dk/favicon.ico

93.191.156.180

404 Not Found

0 B

URL GET HTTP/2
isblokken.dk/favicon.ico
IP
93.191.156.180:443
ASN
#48854 team.blue Denmark A/S

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerLet's Encrypt
Subjectisblokken.dk
Fingerprint3A:9E:7A:74:08:47:4F:DE:06:49:E6:A2:AB:C1:45:63:39:F8:34:0E
ValidityMon, 30 Sep 2024 22:13:35 GMT - Sun, 29 Dec 2024 22:13:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: isblokken.dk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
server: Apache
x-content-type-options: nosniff
simplycom-server: nginx
content-encoding: gzip
X-Firefox-Spdy: h2

isblog.net/favicon.ico

0.0.0.0

0 B

URL GET
isblog.net/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectisblog.net
Fingerprint0C:EA:31:18:74:FD:BD:C5:CE:C7:D8:2D:CE:6C:7B:22:1E:BF:75:90
ValiditySat, 05 Oct 2024 08:29:58 GMT - Fri, 03 Jan 2025 08:29:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: isblog.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 08 Oct 2024 17:30:48 GMT
content-type: image/x-icon
last-modified: Wed, 11 Jan 2017 00:56:14 GMT
etag: W/"587582ae-423e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AEYHBMKiquGuq2HjFTLq%2BqD6bTJLftdq71KjkuoLoyhZI9Xr3bQisGY6AtBFMkdQt5sMPaPOPvdJQM38Ks8otS7FbLq4ZuI64tQp7H9FKVAb%2FoejWF%2F6lcxM%2Fvbv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8cf7dc66bcbdb987-AMS
content-encoding: br
X-Firefox-Spdy: h2

isbm.org.in/favicon.ico

188.114.96.1

404 Not Found

0 B

URL GET HTTP/2
isbm.org.in/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://j9dan.com.atlaq.com/
Certificate
IssuerGoogle Trust Services
Subjectisbm.org.in
Fingerprint4C:7E:E0:08:43:56:CE:17:FB:43:67:4F:F8:4A:06:55:8A:8C:AD:AA
ValiditySun, 25 Aug 2024 23:48:23 GMT - Sat, 23 Nov 2024 23:48:22 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: isbm.org.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Tue, 08 Oct 2024 17:30:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cp%2B7HPmfiACprjnCcaF6HOKj48zAiQE5nIIEs3fFyY0CendRotFTBAw8KbnWEhaW3gXOdJWCC3h50VRu20bm%2FFmpqt%2B2bsMOqb3ioN6DAxYMNjWARkFwJhpvO%2FGZMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf7dc6808342bf7-FRA
content-encoding: br
X-Firefox-Spdy: h2

traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=j9dan.com

0.0.0.0

0 B

URL GET
traffic.alexa.com/graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=j9dan.com
IP
0.0.0.0:0
ASN
#0

Requested by
https://j9dan.com.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /graph?w=260&h=190&o=f&c=1&y=t&b=f5f5f5&n=666666&r=2y&u=j9dan.com HTTP/1.1
Host: traffic.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://j9dan.com.atlaq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

isbiges.com/favicon.ico

0.0.0.0

0 B

URL GET
isbiges.com/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://j9dan.com.atlaq.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: isbiges.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (72)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by