{"report_id":"cc25defd-53f3-413d-a4aa-52a67058d481","version":6,"status":"done","tags":[],"date":"2026-04-13T12:13:37Z","url":{"schema":"http","addr":"galabetgiris.org","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"172.67.160.124","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"galabetgiris.org/","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"title":"Galabet Bahis Giriş - Galabet Güncel Adres - Galabet Üyelik","dom":{"size":78637,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832)","md5":"9f7e419a5185f0ca2936645a2035ce06","sha1":"b68043e80368ded3bd541c6b11dccd897df1a2df","sha256":"619b9d0dadfc2cab9903f2165dfc83cfce4bc908e02c729e5ee15e93476520b9","sha512":"1fa83e0b0431f49442a42c801d2ab030237796ccf1287db12ae09b71b38b492e865f54dffa1dea4fc4f56ab40ed55b4444845c7f558da860ccaefbca818ade97","ssdeep":"768:jJofZdypJZy8AF7LUJ4RKdvK7NFsZDsRVfcz712uo0sCJP:Niypy8ApgJ4RK1K7NFsZArfcf12U","tlshash":"0c73c6fb43ac1a369701e7cb4094392ddf9b4a32cd419a29b0bf9f5cabe0d56444712e","dom_hash":"domhash0aa75f5220c589b80d593fc238084e32","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"galabetgiris.org","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"172.67.160.124","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-18T12:13:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"galabetgiris.org","ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-06-05","domain_rank":0,"first_seen":"2026-03-29T14:14:39.035739Z","last_seen":"2026-03-29T14:14:39.03574Z","alert_count":105,"request_count":21,"received_data":872401,"sent_data":10397,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Press Hueman:3.7.27","description":"Press Hueman is a mobile friendly WordPress theme for blogs, magazines and business websites.","website":"https://presscustomizr.com/hueman","common_platform_enumeration":"","icon":"Press.svg","categories":["WordPress themes"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"WordPress:6.9.4","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Underscore.js:1.13.7","description":"Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.","website":"https://underscorejs.org","common_platform_enumeration":"","icon":"Underscore.js.png","categories":["JavaScript libraries"]},{"name":"Yoast SEO:26.8","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"galabetgiris.org/","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ef4c6f4ed2791029af6637c1ccd58340","sha1":"ba0d690b1bec64d3a7d573abfe61416d9845e66a","sha256":"9227f383e313ecc066c659fa9a86bfbbb5e3c828d16a096701b5775cdff65f25","sha512":"a2969c3f7ee3ece985fc185273a9504db6ed503fff9092b764070924e8f9fa4f7cf27cd995d01a5485f1c639eaa431bb7a325fcd2b9dc4abfc1624024085ad86","ssdeep":"","tlshash":"73b001b930018db98e8e290cb57cc3d83cb90980ba87b911e0bc688a1031ec69811e8c","size":94,"data":"","first_seen":"2023-03-07T01:19:14Z","last_seen":"2026-04-23T00:44:34.47534Z","times_seen":8609,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/wp-emoji-loader.min.js","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e32da9d8c54772bdb019911d41b9da7","sha1":"a08c279b61cb06b1c45247d534debfe289494e71","sha256":"2c6ed5deb68f748e1f9ebae6e864b819409204734ce41857cf34fbb0d17c6484","sha512":"fd6bfe4720bc32d043db1f8587bb6bac3029f22b6ffd142a33002acec4c3d1949d1426a7473fd6505efd73394d03c2fa8f33e6f676670ad9adb4843aa8f93c15","ssdeep":"","tlshash":"cf81979ae77638dbb2f900f2697e0d47eb614435d6c8d438c9bda3141cb5893c274b46","size":3859,"data":"","first_seen":"2026-04-13T12:13:39.691709Z","last_seen":"2026-04-13T18:22:16.59798Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","size":13577,"data":"","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-04-23T04:08:39.989082Z","times_seen":683131,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87553,"data":"","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-04-23T04:08:39.976155Z","times_seen":735468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/js/scripts.min.js?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3fb19d6ce1004b6c456dec717f222599","sha1":"c90c583ad2ac468b93e0ad50276cd18a4d888b27","sha256":"1891b054a7cf74a81590ee3ea25baa920520a70de1e1ab716a8fe2639b827e00","sha512":"4aa20d6b9d70a63a6ce42ff4288967cc979f8f6892f0732d0c664a13bcee7747ef67e133b76b4f271d738382def73ef17b14b303daa4940ea0d8c4e6387b9b3b","ssdeep":"1536:vLpaEoye8mBMX3FDFWweolfF5KJndF1h/rgiv:vLpaENrWwvlN5KJdDh/MM","tlshash":"2973075d7751717101eb61bda02f120ea37b5a2aa14680a8b134c8ed1db9e4e33b3f7c","size":76124,"data":"","first_seen":"2023-03-07T12:02:26Z","last_seen":"2026-04-22T17:22:52.016807Z","times_seen":537,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/wp-emoji-release.min.js?ver=6.9.4","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","size":22762,"data":"","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-23T04:12:06.857294Z","times_seen":161560,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-23T04:10:33.177282Z","times_seen":310649,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/hu-front-scripts-js-extra","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"a54b1c6a7707206a282c95dd2adcf5ac","sha1":"ed9109c2546251cf75a9ddfc3591cc05b49f3e73","sha256":"5ff31542e1da659669ed07081dee7734e3b1199b7a5fe9f932600d5bc8ea51e6","sha512":"722e1927b86416b96720875036ff17272204e1aad99098ee0aaf9aa787fffbe29d57f68f9e589748db2a0403135799d29721f821beda52b3a512878194c7f7b3","ssdeep":"","tlshash":"8a417457d90c153441d7d8bcac1dbc1ecaed1037e9c4ed20d56f8d1c50e1a8463a223a","size":2358,"data":"","first_seen":"2026-04-13T12:13:39.692649Z","last_seen":"2026-04-13T18:22:16.598882Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/underscore.min.js?ver=1.13.7","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dadb3f410026822807858737cbc7b64c","sha1":"477bafdb06d8dc0c22ada8d30067b5a0af2d79b4","sha256":"2f61c0b3d5a147bae06a4f6fd7d90031ddf39cba37e17926999b2645ac746a14","sha512":"1f6cfaf7978f2bd30503abaed49c193625e9a204ce359806449558d0caf09cae7dd10d2156e25f61b8f49efc3b7420b1332a480990da94f5a2ea3d30c262e8bf","ssdeep":"384:u2Rq5yjN1V02mEHrJDzWpl0bMpOt3PPD71ijeE9OWj:LqIbV0sHGl0dD71Uj","tlshash":"288281c83ac2f05aa76330b5406f508bf23a3ea16cada840c265e4f8bd7445d9137d6d","size":18905,"data":"","first_seen":"2025-04-01T10:25:57.91067Z","last_seen":"2026-04-23T04:16:26.084391Z","times_seen":97520,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/js/libs/jquery.flexslider.min.js?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c0dccfba41debd6b0087ff212030c69","sha1":"5914064ef9036276c2c4272cf19dd625d0557f05","sha256":"501f611306d68d8af2978e88b9dbb98afc052add852592930f3a7755e66ae22e","sha512":"17f55219baebe8331190efab5399a8dec25008ff049188d2756c183c3b55ad43a2295b840e735cde23c1a1e45b40c65138f482d5260149b3b7b11609bacd520d","ssdeep":"384:PS4d11GpMrYNoldvR0Di4srQ6tPqLo3TxMbCENrTM+Np+SNQkDi:R1GpMrYNGdvKilQ6tPqk3vENvMYp+PH","tlshash":"40a2a4117b107a76deef212e7e1fc10818b3c884e419c87c797d970e68a96845a37bf6","size":23103,"data":"","first_seen":"2023-03-07T12:02:26Z","last_seen":"2026-04-21T19:41:19.908249Z","times_seen":132,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/webfonts/fa-regular-400.woff2?v=5.15.2","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/webfonts/fa-regular-400.woff2?v=5.15.2 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 13588\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6Gj7B7weIsQp5z9RRKOHclx3Y4N%2B8300YCQ5xYTaec%2FKGSuC%2FP4m64qmSX5KFTdCHjr7I7%2Bl4VD9btC6ntECAR5uUT9xChEWJ3R7FNgsJY7yj0Q%2By57w%2B3Byj4w90JSqGKVu\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f94120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13588,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13588, version 331.-31327","md5":"847712aaabbeba674afdda86d31cab17","sha1":"c07631a91ee71c0a1a84a3151db42b1f2d9a9692","sha256":"b3b8c21edfe6c5e402fdc607366fd8d15949a65914f58134733dc68922bc8d61","sha512":"76d92f3b9f7af92ccfb120fa5f9c104d277ed62284ffa8c432b8ef1b3036c3391dd1d65377b693fcebfb0a1a3258b5ae8139f4a9579d5188cc402f363bd0e27d","ssdeep":"384:xEPhWAz9VQj7GZ6WGIoBrrecb1NSuesIqauK:yPhD9VQuZ6WGLFeN1F","tlshash":"8e52b0a203fb5a46649778b8c75d9d244f513b2e63f78ba2335d74471082acd0227bad","first_seen":"2023-04-10T11:43:20Z","last_seen":"2026-04-22T22:23:10.093475Z","times_seen":3331,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":213,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/underscore.min.js?ver=1.13.7","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-includes/js/underscore.min.js?ver=1.13.7 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 6677\r\npriority: u=3,i=?0\r\nlast-modified: Wed, 16 Apr 2025 01:33:40 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B%2BBNRBqi0Eg5tiutvdu65QRSLUHJzsWE9LboZRbflemqMYcQoJhxJ1pAUMV6GecT9cZsYuEpf4R6xoP2KRNLHIvBQKHQjaag30NnTCfMDVTIZc40cb4Tn3NiNG4ZZXXOrNJm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463fa3120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18905,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (18870)","md5":"dadb3f410026822807858737cbc7b64c","sha1":"477bafdb06d8dc0c22ada8d30067b5a0af2d79b4","sha256":"2f61c0b3d5a147bae06a4f6fd7d90031ddf39cba37e17926999b2645ac746a14","sha512":"1f6cfaf7978f2bd30503abaed49c193625e9a204ce359806449558d0caf09cae7dd10d2156e25f61b8f49efc3b7420b1332a480990da94f5a2ea3d30c262e8bf","ssdeep":"384:u2Rq5yjN1V02mEHrJDzWpl0bMpOt3PPD71ijeE9OWj:LqIbV0sHGl0dD71Uj","tlshash":"288281c83ac2f05aa76330b5406f508bf23a3ea16cada840c265e4f8bd7445d9137d6d","first_seen":"2025-04-01T10:25:57.91067Z","last_seen":"2026-04-23T04:16:26.084391Z","times_seen":97520,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":205,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-13T12:13:16.039Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 13 Apr 2026 12:13:16 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlink: \u003chttps://galabetgiris.org/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QW3NANCSCL5Fu2jwzvaAdrwp%2FgU6wvXEY5MRZE%2Bpib2WaWAZRSv6PYNoquq7jbtF6G5g8hclIi5x5t5gqDKO6uhT4Pki6v8QyBa%2BviJ5BQS3Yrc62VTKYSfJHFGDiPbFAa1y\"}]}\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9eba623f59bc0731-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Press Hueman:3.7.27","description":"Press Hueman is a mobile friendly WordPress theme for blogs, magazines and business websites.","website":"https://presscustomizr.com/hueman","common_platform_enumeration":"","icon":"Press.svg","categories":["WordPress themes"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"WordPress:6.9.4","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Underscore.js:1.13.7","description":"Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.","website":"https://underscorejs.org","common_platform_enumeration":"","icon":"Underscore.js.png","categories":["JavaScript libraries"]},{"name":"Yoast SEO:26.8","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":80939,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832), with CRLF, LF line terminators","md5":"3d84e18e284943234bf8b8a9dde5db71","sha1":"285e4737ef4572c25859ca5f5e91c8f79a485522","sha256":"9695d444c5fd966135b9e43526db39ca11e2f2cb1e61ac7d124add9bab7fd566","sha512":"c0052b40bda17f8dcb2e54bbf6592370291c162d61bfc74e470dbdd3f4799c13a4570d4975fa414360fcc8b83b402a167ad4e7029a68071636e16636e05ad287","ssdeep":"768:BjKRZdypJ0R8gFV2mnmG+h+rJDLAaXn+6nxxNXfcz7C2uo0sCJz:teyp68gn2mnmGO+rJ3AaXn+6xTfcfC2U","tlshash":"9483c6bb53bc15368701e3ca40a47a2def5b4a32cc429a15b0bfaf5d6bf0e55940712e","first_seen":"2026-04-13T12:13:39.679599Z","last_seen":"2026-04-13T12:13:39.679599Z","times_seen":1,"resource_available":true,"data":null}},"time_used":931,"timings":{"blocked":20,"dns":1,"connect":1,"send":0,"wait":891,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/css/main.min.css?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/css/main.min.css?ver=3.7.27 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 15471\r\npriority: u=2,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kP2VDYGtko97j6NlFLi4e6O%2BULC1zfQJFIaQwdk7LJ4MfrhhWS%2BXSedvIgedo8fQ0JN0Kb7QQOk9YB8bM0ON%2FQYJoiPMhT5EyYpgY1QiZfUYs0QO0jxN5OVIFUikKsGm3Ttl\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62461f8e120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":94304,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"b5528d5457cdacb7c721bd2f7ee2ae06","sha1":"2a02c213cffc42cad39fb6f75fc1eea10c28605c","sha256":"d39b765a83700d723062c2030cad7c7358d7e6305c11b64b81fd4381a75da5ae","sha512":"7402553d7f461878c5ac1f813b47e28c25f42de22320047aced962bb8ce47eb60ffa2b5cc0fb1e6daf79cb6ba11d9a25e3ee71e36e72701443d7f8c061c6a996","ssdeep":"768:yVVi21lMc5ltNMYt8MdWQUj3DUsRUESJLOdciEo+aXtoXpmdZTGuRulYjLL:GwmOWMYt8UfOP9oXIdb","tlshash":"f693b721a5a5291cb173c76ef9c0b79c36648227e21209eef66b6625cbc31db1173f4c","first_seen":"2023-04-05T18:14:29Z","last_seen":"2026-04-22T17:22:52.038276Z","times_seen":526,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/css/font-awesome.min.css?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.158Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/css/font-awesome.min.css?ver=3.7.27 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/css\r\ncontent-length: 10499\r\npriority: u=2,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y7%2Bzt5Ni39mzybupYAQD7HEtPzYskEl4WKNnAFtbzFTdZUFFWXT34PD%2FDrmBZ8GYrPTVjiqVlDCPnucGHg8Q24ibKPfvo2v3GhxpzYtl8nOR1y6lK9OwLcKfCiPUGVmS%2FjXn\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f8f120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":59511,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (59326), with CRLF line terminators","md5":"193a764767dd5968360412c9e5a5a9e6","sha1":"ea38e5ef30f4f918a755b6415151e1413c80b635","sha256":"6c76cae4aabc1d4236da2fecf8fcae818a2cf95406446774ccf9db5ca14d4b59","sha512":"e990ee47766139987ecb18dcb6ecc56434ec887f50563047192e4455da99c9d49caeb8e5144ae245478422b32dcc2b85b66e7689059b33f0585b114bcdfb56b1","ssdeep":"768:xhh31IPiyXNq4YxBowbgJlkwF//zMQyYJYX9Bft6VSzM:xh0PxXE4YXJgndFTfy9lt5I","tlshash":"32430bb8e54c01c9b731c44bef81b2bc61baf73de5914d95f00e691c2ad26a811c5fba","first_seen":"2023-04-05T18:14:29Z","last_seen":"2026-04-22T17:22:52.032189Z","times_seen":610,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.162Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 4344\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 08 Aug 2023 23:23:06 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gxQNSNzLoAmin91nLYujCxQw3Tv%2FnnBM9Iopfr2PStnTGROk9jTVpF%2FG0QtzB9%2Ft%2Ff%2FreVcxkAWqfQ7xT1PK5SuoezNeYNyBX1weuN%2FIvTInJ0Bd%2B4lbnQMdVH%2FT796Df20a\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f91120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13577,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (13479)","md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-04-23T04:08:39.989082Z","times_seen":683131,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/js/libs/jquery.flexslider.min.js?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.164Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/js/libs/jquery.flexslider.min.js?ver=3.7.27 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 5871\r\npriority: u=3,i=?0\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x9DxxLPaQjbrt7bEOQNMjWNToZ2i2yovrwOKwLo%2Fo7sN2D35cVciHz%2F2qKx4KdNPOItI%2FCxWkpnKHCNhfVEE0q686Cr8L4dw5AY6IujO0AfsaaEYFl0qv3SxkmkmmtwJdebk\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f92120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23103,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (23103), with no line terminators","md5":"2c0dccfba41debd6b0087ff212030c69","sha1":"5914064ef9036276c2c4272cf19dd625d0557f05","sha256":"501f611306d68d8af2978e88b9dbb98afc052add852592930f3a7755e66ae22e","sha512":"17f55219baebe8331190efab5399a8dec25008ff049188d2756c183c3b55ad43a2295b840e735cde23c1a1e45b40c65138f482d5260149b3b7b11609bacd520d","ssdeep":"384:PS4d11GpMrYNoldvR0Di4srQ6tPqLo3TxMbCENrTM+Np+SNQkDi:R1GpMrYNGdvKilQ6tPqk3vENvMYp+PH","tlshash":"40a2a4117b107a76deef212e7e1fc10818b3c884e419c87c797d970e68a96845a37bf6","first_seen":"2023-03-07T12:02:26Z","last_seen":"2026-04-21T19:41:19.908249Z","times_seen":132,"resource_available":true,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/webfonts/fa-brands-400.woff2?v=5.15.2","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/webfonts/fa-brands-400.woff2?v=5.15.2 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 78472\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vGVaCMUTKc3pksThdE4LuSzgRdaz3NtupeWrC5BUHjmtZxrz00H2RKUQtnaBD22ALrtlWjxx33nCEr3QhPsi19IriRPH9vgcKmN%2FVPLFA633lokW34NwuCrYc2kVI0GdWcsV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f93120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78472,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 78472, version 331.-31327","md5":"0c9f225e8f69c622f681cf1ed973cc3d","sha1":"9e355abda14ee62a7987b2ba7e2e887d33337e25","sha256":"529d0a7b3944929222155bca3272ba1a87acc2faa09b2ed26a713872b7ff8794","sha512":"ab6968d2e995e406148a50890cc48a0a1902c53c1f9dc97ddf76916fbf147631e3f9bd62f73d9b48a8f9060abb7fb882fc5e629f2c8567db994079fc4f4245a7","ssdeep":"1536:BJ17nTff1+TpxMqELoOpsY9uSWoknO1lIf2xP3aZHKd5:BnzgTplELoO79km1lIf2xSQb","tlshash":"8a7302dd4f7bfcc246652218c371cd37cd3ad45aaf890286e5ec663303a2e5d8966a43","first_seen":"2023-04-08T01:44:26Z","last_seen":"2026-04-23T03:05:19.938481Z","times_seen":3245,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":297,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/fonts/titillium-lightitalic-webfont.woff","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/fonts/titillium-lightitalic-webfont.woff HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff\r\ncontent-length: 26760\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=L6B%2Fdhu5kOAud3mxFh%2BfaU%2B0tOUUEnAiR8fxaj9i6FmJdYR7%2FY83cDxbBJZl5m2jGkIGl02Je4rSamMrfjs1jIu2WZCVDPtOFiC3ejFZCbmCkjxORJ5cU%2FyhGkk1Uzp9FT0o\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f99120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26760,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 26760, version 1.0","md5":"c244466ebc006e6175a9b35057ce9a81","sha1":"e199a274636da0d1b4c879d994de84b0440ea828","sha256":"97363b6ced0c1ca6d76ebcc6782512959cc8c5d6c8f40cb4976b4179bb685e53","sha512":"023a910face53dc582a4b0cbe754b3f33f9a6be8ef1733b847e392ad30ff30a48e276eeb2805d0ce474853d07f835a7347a67e55b141a1f74cc44703ef5fb206","ssdeep":"768:Q/slgteszSpTrIfCUmoxuXkw5w5ZE+Nus+p43FXG:CJteQS5sfnUy5yIus+pKG","tlshash":"0cc2e1447bb16c81fb0e20525a738233d7803746bb6ac2af39096fde679d3811e25a70","first_seen":"2023-04-07T18:24:54Z","last_seen":"2026-04-22T22:24:12.61174Z","times_seen":3639,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nexpires: Mon, 13 Apr 2026 13:01:17 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DJYuD%2FHhyhYpBNn0FNgEzItkk2gLUsFvkzF2pO4J5NYUT50dgNDNuAt%2B7%2Bsv1LbhUht8LKJyp2gtyYTIrR61whl2gYqn1kMbcG24Ic%2FkSBxM0R9z8p5itEP%2FoJf18pFy6HVc\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncf-ray: 9eba62463fa0120a-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-23T04:10:33.177282Z","times_seen":310649,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.160Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 27470\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 07 Nov 2023 23:40:38 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tV0bI6Z89x9jzVgnNnkxOch16Z6iks9aN%2BDMUGkeXUIcMes4xDpB4T0gXrC7YQTobGna1M5altXcqhQxaWKFdXCdZwYkIA7ncoKoSCurmOhOopHQ%2BvOEu3ckxJUZ31O2J2E9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f90120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":87553,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-04-23T04:08:39.976155Z","times_seen":735468,"resource_available":true,"data":null}},"time_used":268,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":265,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/webfonts/fa-solid-900.woff2?v=5.15.2","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/webfonts/fa-solid-900.woff2?v=5.15.2 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 80252\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dtPkfhUt0q3dUACajyfclsopeqLJRItY3UeCd%2FKJf2BKi5j%2BhrqZAGb0RpouFtzwe4AxJK3WLBqcLV97fCtAGghDoCo%2B%2BZgrx7hhbsS2sotniWXVL%2Fxo3%2BU%2F3yPVCYU3uhra\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f96120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":80252,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327","md5":"9ae050d1876ac1763eb6afe4264e6d5a","sha1":"72344eab2e7431eec313caa21f266cbfda7caf60","sha256":"6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2","sha512":"5a8a8abdb3c11c0fec80ccc2bf447be0c998f3e571a08897de544632c972999b678165af6a229ff9dbe9529c5d0ba2cdd96d1f916b6f805a4284ef610918da87","ssdeep":"1536:vRmFhUvsiF1gL73d8iyPi7ee47WBzwjSiXaUUBUmJe4L:voBL7SiyQSkzIXr8jN","tlshash":"4b730264cb14563809f0687517aa4dfcc239a4ed33b1748ae2b6b70b8156efee471272","first_seen":"2023-04-05T23:08:56Z","last_seen":"2026-04-23T03:05:19.940946Z","times_seen":6614,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":289,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/fonts/titillium-regular-webfont.woff","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/fonts/titillium-regular-webfont.woff HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff\r\ncontent-length: 24696\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wc3L92Ac72WFjn2%2B2zwz7id3sQAidgH62E49XOcu8azpxZg3SvtAYIjzT7C%2FDY7yIYCCNEto%2BAlmfQxf7MgZWOVyzDvOlwxx0a%2BMufzTGo12YPNTNR94TdxXdFR%2B1vb69oRC\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463f9a120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24696,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 24696, version 1.0","md5":"7e6b7ae325a8d232917ae617d7a2fd70","sha1":"3ce4b566fadab31917199adbb379c80a5df2414f","sha256":"8daaa4ed16297478af007774febefe6ca3674fda47ed73e913b1b583d34883fb","sha512":"40bad8a41773aaf4d1a0e8d478ff8d0b3a5f1dd4b1ef5818e3500f432d42591d882784a95bffd49d10c21dc3b1b5b964a77fc9011f21f2966bd5cacf5344fc7d","ssdeep":"384:vIP8Ep+dMmYkZd09ah/IsjgC5McOJHQCdMpmcBjoCJPm3eH1RJXCX3GgrZ:vc83dMm109tg5McAwCqpmcpjZ6dZ","tlshash":"fbb2d0de6b0010c6a9e906b696f64b04dd0ac103a70b9752399189326cdb392db79af1","first_seen":"2023-04-07T18:24:54Z","last_seen":"2026-04-22T22:24:12.64716Z","times_seen":3690,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/fonts/titillium-semibold-webfont.woff","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/fonts/titillium-semibold-webfont.woff HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff\r\ncontent-length: 24732\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wXxLzvsl255W2sPIMYrv9mgs4Pj3wNMG286UZ6%2Fo4Hdiw09M2yltbayj1gyzOCeuhSLCd1H2IxFxobzM%2FTOOQm1sBKuBILGKL5g3SoQ9omIgX5C%2B596%2FsQvQZaUng0MTp9cC\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463f9d120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24732,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 24732, version 1.0","md5":"e3f6344401af39dbdf843e8864589553","sha1":"03662277cbf67b4e70c4377c18e6271e53ebc979","sha256":"62ff09a8013f9dfc0f7cbefc6feb180c258818e151aff470902f29ef44342f0d","sha512":"4c112a5c09919fe1348b80896f35d85d75a1851108e2d7c019369099680d9e2e24531f54156b0a53880bd0c2015eebc64d6433c9960b6abc51b98cc90dab66ef","ssdeep":"384:J4hqY7sYLaeOURjkWrJWSyVIaxx/F06AXd0AYG6qXNJ6JWj8bxOFG+JaR7ZD5OZ:J4Lo0VAgW9fejTYmdJbmOU+cvD5E","tlshash":"b9b2f163e8230503f6943071c7ee3aa08164606816dba667ec8d9f314c9af12678afe1","first_seen":"2023-04-07T18:24:53Z","last_seen":"2026-04-22T22:24:12.636242Z","times_seen":3710,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/img/thumb-medium-empty.png","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/img/thumb-medium-empty.png HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 110\r\npriority: u=4,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FbJGjBprT9CsjFuzoxtsvKna%2B%2F5dcCeTiiJwQqqD15iZocJt%2F4%2BfetoEm9%2BF%2FmlJi4NTzzsjGOXyMUAkPzXmRhKhfdi%2B2ZVFzHWoCCJrqCNx%2B%2BFA3jy1%2Bnn6CtGixXeotZas\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463f9e120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":110,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 520 x 245, 1-bit colormap, non-interlaced","md5":"ab4452fce7b602bfb8e05e55e5dd610f","sha1":"79df2c16b8ef95dd84ca2c9a5e345a10ad4814cc","sha256":"980cc3f12dc71c2d7edf62a3693a14479627ee7ec8fb4fee26ba51fcbe9244c2","sha512":"12310a6bbaa7499e12c8c7bbd9383ebfe195461ddf94d4dffdd8c417ac065ed832ae812108ddf7a8431753e2275f08155f2d9adc97c781c0499d8af09777d488","ssdeep":"","tlshash":"b2b012fba0004c30f4410033d4644801c534131740748743440fca152031004c5e6e03","first_seen":"2023-05-23T02:40:26Z","last_seen":"2026-04-21T19:41:19.929977Z","times_seen":72,"resource_available":false,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":216,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/favicon.ico","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jJKvW2eJFFaCormQC8fS3SwsfVAL5ZLO6wYhltmprXluWwIKtUa%2BS3DJiL7beXF%2Bw9ZCyXVuDx6hcajiUtwIiqcjHNNKQsPqzoOrcGc8pr7aWH2cd3BMt6sQ4bis0XVbo2WU\"}]}\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba6248f823120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":808,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"a943672a32297727bab01c3e76977550","sha1":"3a667c4b7a457ef6c586cc581d533c128737bf53","sha256":"b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187","sha512":"0965d415f3a0cef31953702fdae345d46fefd72ce3c4c7a0255aede74a76e10b856892700529a444453a622793e0257248c5c99fae17d5b0b9fd4118e208068c","ssdeep":"","tlshash":"2e01bd0a08e0501bc0d3915169a0f22dc9c2f997aa5b180079ed91c6cfd5f89c9d35ac","first_seen":"2023-03-08T11:42:06Z","last_seen":"2026-04-23T01:46:31.661272Z","times_seen":35613,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-includes/js/wp-emoji-release.min.js?ver=6.9.4","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=6.9.4 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 4303\r\npriority: u=3,i=?0\r\nlast-modified: Wed, 03 Dec 2025 03:28:25 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aSC%2FPMdN9KG8KkMddKr0Twonhv4SgigOIHVu1OfoVrkvoS8uBzvVcqbNUaipSCplyzwRwVICfVKL0Z6MrhPxnL9kjrfUUbEVYfjHzyrlQGA7R3WRlOC0sp389O3Z4S47WZp1\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba6249883c120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22762,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (19823)","md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-04-23T04:12:06.857294Z","times_seen":161560,"resource_available":true,"data":null}},"time_used":189,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":189,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/fonts/titillium-regularitalic-webfont.woff","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/fonts/titillium-regularitalic-webfont.woff HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff\r\ncontent-length: 26588\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yUW%2FQIRRo2q5C6XUn9IOzpcVlTArYHDRwvjfbNzr7DTDzd8%2FESAmNDVLa%2Bgdk2ywuUM%2B4u6qIzse9xJMOaTa3K4UVi1OdYnxJLzlgB8hai34chuxJQmYp28cogliNWByb3Lm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463f9c120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26588,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 26588, version 1.0","md5":"40e70084282fc3b2aaff5d2b4d487cde","sha1":"6d6ca06b8f6b8d0d290a73ab34b4a1c0f6455102","sha256":"8dbe8457cc41e254cb7fcd4dfa77c52c16413c18f35a370b77c5f07b4895562a","sha512":"09f8d649514140bb0935d5535c5c4f622776ff374135086df7057fe42f48df86877863b6d763c61e9262a0d2c40ed6fd018a2df145844347e1b3db28f2cec11a","ssdeep":"768:GvP2P3edF+EywLRraKiIHK40/iUj5jOhn:wPQeaQh+r40/ZljOhn","tlshash":"d6c2d00aec096f80d5d2363ea9904b4f57a8f91197c81d17d0edfca20cae6e85b1e771","first_seen":"2023-05-01T18:59:53Z","last_seen":"2026-04-22T22:24:12.615332Z","times_seen":3625,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/fonts/titillium-light-webfont.woff","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/fonts/titillium-light-webfont.woff HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://galabetgiris.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: font/woff\r\ncontent-length: 24712\r\npriority: u=3,i=?0\r\ncache-control: public, max-age=604800\r\nexpires: Mon, 20 Apr 2026 12:13:17 GMT\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NNYeVWC6MCLiJsTXbIXZY%2Btp2ZZXLqKGgp4167ppix%2Fo1V3bT7AgVMwtI6B%2Bea4DvGexPLB%2BQB1lK9hrIx7fd4F2ptUEtX2tThxFaYcriekcwHEX6%2BgR30Y4AyLy%2Bws7dr9C\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62462f98120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24712,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 24712, version 1.0","md5":"f89aa1864b134381217bbaf4f5b3619f","sha1":"251ba9422637198bea8c0899f67ef300a9f3624a","sha256":"5758d1ad3c6f35962da2c4d2e162cf59ef64dc0954c54171eaa73babbb2af9e2","sha512":"549f9578e3b8a37660e43f45d9cbf4e733ffdec701071d60f67b9291c965eb95ad60e81f251ae9fc8861a60ddeb4a537adb184e5deb307fb7a2e10ba4b2c323b","ssdeep":"384:Qsr5NkW31ggMbFv+zdLB7vyHSOqcfaS+giXkpOsAFv2DLJE9D2FT123zXX:NtNxggM9+J9Qz6gi0pOp4p2T","tlshash":"2eb2e049ef1c458e96024d34f1af8270a61cdb2f23115a4150794b46fc7a7e8ea39eb7","first_seen":"2023-04-07T18:24:54Z","last_seen":"2026-04-22T22:24:12.634908Z","times_seen":3701,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/wp-content/themes/hueman/assets/front/js/scripts.min.js?ver=3.7.27","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /wp-content/themes/hueman/assets/front/js/scripts.min.js?ver=3.7.27 HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:17 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 18842\r\npriority: u=3,i=?0\r\nlast-modified: Sun, 06 Apr 2025 00:51:21 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZjEpD6dTHujw%2Bc0dvLKptaPKgaTfDbeZSkfUEv21RL8AKs2TrDhHUcYzFb%2B3gNmrJ0UAN%2FbWybsm%2BT2wsNwto5eMEqv%2FNIqb7f%2B2aftPPP%2FjyTyJf04MeJ5uGpihw8WDPkAq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62463fa5120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":76124,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (39708), with CRLF line terminators","md5":"3fb19d6ce1004b6c456dec717f222599","sha1":"c90c583ad2ac468b93e0ad50276cd18a4d888b27","sha256":"1891b054a7cf74a81590ee3ea25baa920520a70de1e1ab716a8fe2639b827e00","sha512":"4aa20d6b9d70a63a6ce42ff4288967cc979f8f6892f0732d0c664a13bcee7747ef67e133b76b4f271d738382def73ef17b14b303daa4940ea0d8c4e6387b9b3b","ssdeep":"1536:vLpaEoye8mBMX3FDFWweolfF5KJndF1h/rgiv:vLpaENrWwvlN5KJdDh/MM","tlshash":"2973075d7751717101eb61bda02f120ea37b5a2aa14680a8b134c8ed1db9e4e33b3f7c","first_seen":"2023-03-07T12:02:26Z","last_seen":"2026-04-22T17:22:52.016807Z","times_seen":537,"resource_available":true,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"galabetgiris.org/page/2/","fqdn":"galabetgiris.org","domain":"galabetgiris.org","tld":"org"},"ip":{"addr":"104.21.34.116","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://galabetgiris.org/","date":"2026-04-13T12:13:17.649Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"galabetgiris.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 04:59:28 GMT","end":"Fri, 10 Jul 2026 04:59:27 GMT"},"fingerprint":{"sha1":"72:3F:A6:D7:0F:DC:B1:26:3F:10:E7:7D:63:63:FC:32:D3:D8:E1:09","sha256":"95:CE:92:08:36:07:71:B3:0A:81:8F:EB:FE:2F:3B:85:FE:35:F7:F3:95:CC:DB:B3:ED:6A:C9:27:B1:9A:7B:C6"}}},"request":{"raw":"GET /page/2/ HTTP/1.1\r\nHost: galabetgiris.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://galabetgiris.org/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 13 Apr 2026 12:13:18 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=epBJ3Vj9IKq9PiLD%2FPAFTUIlwubWnK%2F0Fvye%2BPQKU%2B4Hj3a5PH3rzvD4YK5oz0BrfM5t3rPjz3RcX6koDcqd2Vlsmm7M9opFls2tgCOl7VefGR4prfxikiac3Y7SmhrFbn22\"}]}\r\npriority: u=4,i=?0\r\nlink: \u003chttps://galabetgiris.org/wp-json/\u003e; rel=\"https://api.w.org/\"\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-served-by: galabetgiris.org\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9eba62494833120a-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Press Hueman:3.7.27","description":"Press Hueman is a mobile friendly WordPress theme for blogs, magazines and business websites.","website":"https://presscustomizr.com/hueman","common_platform_enumeration":"","icon":"Press.svg","categories":["WordPress themes"]},{"name":"Yoast SEO:26.8","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Underscore.js:1.13.7","description":"Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.","website":"https://underscorejs.org","common_platform_enumeration":"","icon":"Underscore.js.png","categories":["JavaScript libraries"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"WordPress:6.9.4","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]}],"data":{"size":78126,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832), with CRLF, LF line terminators","md5":"50f51c98c2f6c951d5ff6736712c2622","sha1":"f335da93bd4dfa07b6a90508c7561de4fa146b62","sha256":"6c2060e87699fbbf77b9c6e7d4351bff249c16705fc989f29f0ead7a598043ec","sha512":"f2ef1d5a3ae4ab9eae3488e5abb883d7ff4acaa0847c20f0cf769880806b1ed27563fc67bea34a35a3716b2a0b2c210b8921ed76f51b27259fa70aaa5457c91a","ssdeep":"768:NIKRZdypJ0RBFV2mnmF+6jXXRuH48e3x51DjXfcu7C2uo0sCJz:6eyp6Bn2mnmFDjXhuHveh51/fcyC2U","tlshash":"6a73c6bb53bc15368711e3ca40a43a2def5b4a32cc429a15b0bfaf4d6bf0e55944712e","first_seen":"2026-04-13T12:13:39.690157Z","last_seen":"2026-04-13T12:13:39.690157Z","times_seen":1,"resource_available":false,"data":null}},"time_used":807,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":807,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-13","alert":"Phishing Block","trigger":"galabetgiris.org","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-13","alert":"Sinkholed","trigger":"galabetgiris.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}