r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb76c0b3adf4098ad8a9d1e38250758f
99610ddb2b4ec6d04250ac244f966951695d4f00
01ed8c191c175471aee23cbc196d558e5bf5209f166806fc97db08eb06544bab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01ED8C191C175471AEE23CBC196D558E5BF5209F166806FC97DB08EB06544BAB"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4169
Expires: Sun, 20 Nov 2022 15:18:52 GMT
Date: Sun, 20 Nov 2022 14:09:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2061bb5a62c7dbe5a39e49a98bf7d214
812ff4923fc0fa69fa7db7c362d5af728e297099
6f0c1ecd37ba47802a386c487e3c2eb1794a06e8b9f56e016326686e3d80ef92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2783
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:23 GMT
Last-Modified: Sun, 20 Nov 2022 13:23:00 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 20 Nov 2022 13:45:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1462
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7724a1f27dc1b5b2fb63c7e486f74db
ef0ea648ce8bc189d31382baec4b181c724af93b
2a46916079563d95fa6a695104ebf41829ee95a156d6e4d45b9aef7231a8a80e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A46916079563D95FA6A695104EBF41829EE95A156D6E4D45B9AEF7231A8A80E"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3111
Expires: Sun, 20 Nov 2022 15:01:14 GMT
Date: Sun, 20 Nov 2022 14:09:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UiDtnb9jfKpnZglaawV8qDTw70nMtQgPlEbG+C3HW5oexRYW6vtFSuh841SpPpJX4cu6ezOXBGA=
x-amz-request-id: ZKJQ9WRH9JCT0GFS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 20 Nov 2022 13:38:45 GMT
age: 1838
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 20 Nov 2022 14:09:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 20 Nov 2022 13:25:04 GMT
cache-control: public,max-age=3600
age: 2660
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 27138f8625c320bd1434ccd92263b641
6a8f18728c9f324c1c631ffc85901d84ec4d0e0c
02338368cfa2325e8463bd169cb0ad4df2967ca4260b75bc665cd0836e90e9f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5687
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:24 GMT
Last-Modified: Sun, 20 Nov 2022 12:34:37 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
kaleofis.com/system/logs/98yhb764d.exe
193.148.253.8301 Moved Permanently 0 B URL HTTP/1.1 kaleofis.com/system/logs/98yhb764d.exe
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /system/logs/98yhb764d.exe HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: Rank Math
location: https://kaleofis.com
content-length: 0
date: Sun, 20 Nov 2022 14:09:22 GMT
server: LiteSpeed
vary: Accept-Encoding
push.services.mozilla.com/
52.41.91.37101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.91.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NgyvxGX6Th0rDnZ6czdRYg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EiKuSc7omdHiO0aj89kB5wlAStQ=
kaleofis.com/
193.148.253.8200 OK 42 kB IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28071)
Hash b79ed1d3fef1940680adb71c7a106991
3c5360fdb2384c4aadd601b94239af6faa2d078b
71d94ce498815bef6845ee5b5ff8a52dbfe2c1ad40b10c97f7cc64c8df5f5e5e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Sun, 20 Nov 2022 14:09:22 GMT
content-type: text/html; charset=UTF-8
last-modified: Sun, 20 Nov 2022 09:15:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 41930
date: Sun, 20 Nov 2022 14:09:22 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
kaleofis.com/wp-content/cache/min/1/wp-content/cache/perfmatters/kaleofis.com/css/front.used.css?ver=1668793686
193.148.253.8200 OK 18 kB URL HTTP/2 kaleofis.com/wp-content/cache/min/1/wp-content/cache/perfmatters/kaleofis.com/css/front.used.css?ver=1668793686
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type Unicode text, UTF-8 text, with very long lines (65484), with no line terminators
Hash cbb1ce9d835c55728bd6ed1bf811719d
43da69f2fd121a38c77aec73208f41276999d18a
51d5ee6f7d3e781eb836257386184f6d6fee191fac2f8625077f97211bce95b6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/cache/perfmatters/kaleofis.com/css/front.used.css?ver=1668793686 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:23 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 18 Nov 2022 17:48:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 17643
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=7.0.4
193.148.253.8200 OK 12 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type Web Open Font Format (Version 2), TrueType, length 11532, version 1.0\012- data
Hash 4e7160e26d2e10744b6f442311eae7f5
0ec18b5937f6d35494a43f3d99e918252efd31eb
c446fb2eb768dab495985c08c09175b468e0d33db33c51cca80ea23d4f174ba4
GET /wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: font/woff2
last-modified: Sun, 13 Nov 2022 12:14:28 GMT
accept-ranges: bytes
content-length: 11532
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
193.148.253.8200 OK 2.6 kB URL HTTP/2 kaleofis.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (7889)
Hash 38f598ed10cc662f33bcb2a719de6e52
7da764b9b7ff5b9679f0e4313fb5587252b54c2c
e99237b16aef4b9b118b75356607354192e33695c1e15372d9bb86bf07483db7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:23 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 21 Sep 2022 17:51:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2570
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/cache/min/1/757658a90631bd69f2fda7988a7364fc.js
193.148.253.8200 OK 3.3 kB URL HTTP/2 kaleofis.com/wp-content/cache/min/1/757658a90631bd69f2fda7988a7364fc.js
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type Unicode text, UTF-8 text, with very long lines (8587), with no line terminators
Hash 90116790f17832b33b85a660ea1af6f1
13b342c9f46522d41b518276ad53f8c74c351e10
ac967a965894fe2d39266b83fa548923a49e0afe1089e4ae6249eb999a5d1e9d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/757658a90631bd69f2fda7988a7364fc.js HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:23 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 18 Nov 2022 17:48:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3257
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/uploads/2022/06/cropped-favicon-192x192.jpg
193.148.253.8200 OK 1.7 kB URL HTTP/2 kaleofis.com/wp-content/uploads/2022/06/cropped-favicon-192x192.jpg
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a63ef84d28b3d068b13bf1d92c9661fc
2bca169f0631973352fdb037c6df62c824c906ff
205916fe2e2a924ff63399ac03219f975ec5ceaf646b1c71acbdeffd6e8c7747
GET /wp-content/uploads/2022/06/cropped-favicon-192x192.jpg HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Tue, 04 Oct 2022 17:12:11 GMT
accept-ranges: bytes
content-length: 1744
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding,Accept
x-webp-express: Redirected directly to existing webp
X-Firefox-Spdy: h2
kaleofis.com/wp-content/uploads/2022/06/cropped-favicon-32x32.jpg
193.148.253.8200 OK 546 B URL HTTP/2 kaleofis.com/wp-content/uploads/2022/06/cropped-favicon-32x32.jpg
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a79a622ec89dc5a454121d4b217110ab
df5f153fdb6772af480f0c265e4d0ab6648d5a98
38c42d92dae5587177ebad76478b4f264d5a48372f50216bb9355da601668be1
GET /wp-content/uploads/2022/06/cropped-favicon-32x32.jpg HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Tue, 04 Oct 2022 17:10:03 GMT
accept-ranges: bytes
content-length: 546
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding,Accept
x-webp-express: Redirected directly to existing webp
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/2022/10/ofis-mobilyalari-1536x810.jpg.webp
193.148.253.8200 OK 100 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/2022/10/ofis-mobilyalari-1536x810.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1536x810, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e0e2f1f7b782b9d32028d1c3904ace7
49f05054095f6c05212e95bcc41589e3a18c4e12
c51d766523cfa85a543b64cbaaa1a00a7a460035938de77584fcc0b68692dc33
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/2022/10/ofis-mobilyalari-1536x810.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Tue, 01 Nov 2022 20:31:06 GMT
accept-ranges: bytes
content-length: 99806
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-takimleri-banner-pw7wat376ajwme5odus9zmg38gqj3wzmcitbztnyk0.jpg.webp
193.148.253.8200 OK 3.9 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-takimleri-banner-pw7wat376ajwme5odus9zmg38gqj3wzmcitbztnyk0.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 42de2d5aa120c9adeb2b24886bb2758d
7abde66bb7c55b1adff317ca87d2dcac20a494d7
8fc4355f277bf80e03d933a8b8c464a045f91f57c8442047d35daa8e8f4ab225
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-takimleri-banner-pw7wat376ajwme5odus9zmg38gqj3wzmcitbztnyk0.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:10 GMT
accept-ranges: bytes
content-length: 3928
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/ofis-kanepeleri-banner-pw7wbxi9c638hmiytu98gu8ws17bawg2u2v7mq014g.jpg.webp
193.148.253.8200 OK 3.2 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/ofis-kanepeleri-banner-pw7wbxi9c638hmiytu98gu8ws17bawg2u2v7mq014g.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 78852d35d4aafdcff6f9064b777e28e9
3fb610322d61ec568320963b2335bfea56ab25a3
b4e02b40416590d6ae6f8917ead5e95edc25ab00efa55bed7c332599243da38f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/ofis-kanepeleri-banner-pw7wbxi9c638hmiytu98gu8ws17bawg2u2v7mq014g.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:10 GMT
accept-ranges: bytes
content-length: 3198
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-koltuklari-banner-pw7wcly29v0ovhjgv4tj9o2w81uuv153lftu3wzsmo.jpg.webp
193.148.253.8200 OK 4.0 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-koltuklari-banner-pw7wcly29v0ovhjgv4tj9o2w81uuv153lftu3wzsmo.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e1497bec8e1f50256490f142241ae332
d38d7b15aab47d17e3030472a29a129678f6a1be
8f466d47977425fe0634e236835ea33bb908132f45515eeabc9755631a81d9d6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/makam-koltuklari-banner-pw7wcly29v0ovhjgv4tj9o2w81uuv153lftu3wzsmo.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:12 GMT
accept-ranges: bytes
content-length: 4024
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/yonetici-takimlari-banner-pw7wctgrsjazgd8jn82jtm6kz4tsklyyah1py4on8w.jpg.webp
193.148.253.8200 OK 4.2 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/yonetici-takimlari-banner-pw7wctgrsjazgd8jn82jtm6kz4tsklyyah1py4on8w.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ace591cd8ccfb892c1d783edaa04cf7
cbec2ec56f0943e2903a41cfc0387ab655e8f073
576137f7f48fa975afac4f1330d4d8da0b24af45861a9786bae041431a761171
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/yonetici-takimlari-banner-pw7wctgrsjazgd8jn82jtm6kz4tsklyyah1py4on8w.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:12 GMT
accept-ranges: bytes
content-length: 4164
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-koltuklari-banner-pw7wdhwkq88fu891oimumg0kf5hc4qnz1u0cfboer4.jpg.webp
193.148.253.8200 OK 4.5 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-koltuklari-banner-pw7wdhwkq88fu891oimumg0kf5hc4qnz1u0cfboer4.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 91c47df22e12a1fc255a7b5ed81dbc8a
32aa47de3b7606170f6cd4eba574d9e861970a35
a0285759713324c83c944b329c08ab88b4cb86cd51e3ca3a08b549f91e56754a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-koltuklari-banner-pw7wdhwkq88fu891oimumg0kf5hc4qnz1u0cfboer4.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:12 GMT
accept-ranges: bytes
content-length: 4456
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/personel-gruplari-banner-pw7web1km3cbu52pyd8a9qnuu3hprcvnhu8eawh7e8.jpg.webp
193.148.253.8200 OK 4.0 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/personel-gruplari-banner-pw7web1km3cbu52pyd8a9qnuu3hprcvnhu8eawh7e8.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 505046fa2290d91c5822e469937574bf
ba4fc8b6d9db94d1fb9c2eb974ab4d9d5bb678a7
5089aa1c95dfeaba5a5525a257291b131c1d0f706a50c04e7b94e19f4b048281
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/personel-gruplari-banner-pw7web1km3cbu52pyd8a9qnuu3hprcvnhu8eawh7e8.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:17 GMT
accept-ranges: bytes
content-length: 4034
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/bankolar-banner-pw7wezhdjs9s8037znsl2khua459bhko9770s3gywg.jpg.webp
193.148.253.8200 OK 3.0 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/bankolar-banner-pw7wezhdjs9s8037znsl2khua459bhko9770s3gywg.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a53e2037352bf67646e1dd91a2c482fa
ea6a696726c770748e50269bb95db518152427c2
93b2034dba0ab8e283b73b9140224f36510c28902ef9452a670c61fee910caf9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/bankolar-banner-pw7wezhdjs9s8037znsl2khua459bhko9770s3gywg.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:17 GMT
accept-ranges: bytes
content-length: 2966
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-istasyonlari-banner-pw7wfia5cgzio7bwxvx4gfr25tkllfnazs8qdmp3g0.jpg.webp
193.148.253.8200 OK 4.6 kB URL HTTP/2 kaleofis.com/wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-istasyonlari-banner-pw7wfia5cgzio7bwxvx4gfr25tkllfnazs8qdmp3g0.jpg.webp
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4ba52868d5096d003ec7dbc0f5d6cbd5
6c271afd3dc2909b3ec28fd3effb5294ae61e656
77b2e148b2f8bb18b09ef9a38d7c1eb75370b233d3ce36f62651f6ac6c3fb4ba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/webp-express/webp-images/uploads/elementor/thumbs/calisma-istasyonlari-banner-pw7wfia5cgzio7bwxvx4gfr25tkllfnazs8qdmp3g0.jpg.webp HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Mon, 20 Mar 2023 14:09:23 GMT
content-type: image/webp
last-modified: Fri, 14 Oct 2022 21:17:17 GMT
accept-ranges: bytes
content-length: 4552
date: Sun, 20 Nov 2022 14:09:23 GMT
server: LiteSpeed
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3540
Expires: Sun, 20 Nov 2022 15:08:26 GMT
Date: Sun, 20 Nov 2022 14:09:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3540
Expires: Sun, 20 Nov 2022 15:08:26 GMT
Date: Sun, 20 Nov 2022 14:09:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3540
Expires: Sun, 20 Nov 2022 15:08:26 GMT
Date: Sun, 20 Nov 2022 14:09:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb73669f-154c-41e7-aadd-11587277938d.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb73669f-154c-41e7-aadd-11587277938d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5447e0a57fbd65d5f719786842dfb40
68dbd2b4ecedb47d3f47bc3690336fe0f3fd3fe6
b6f69c679ecb9978c12f9fc5e03531250e1e13327ac0337532317b91d2ede502
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb73669f-154c-41e7-aadd-11587277938d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10330
x-amzn-requestid: c6df2fa3-53ad-4f43-ab26-8754ce25c421
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jdVGY0oAMF_2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c55-0dd776a50b4a8fbb5b29ccae;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sKTa_b92EIi4H8YgHoEJCm8rVgdfCFJ91I1UNkGLzsPQVOI10I9d7w==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:17:10 GMT
age: 57136
etag: "68dbd2b4ecedb47d3f47bc3690336fe0f3fd3fe6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2640ea-cb67-4da2-9989-09bf608bd138.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2640ea-cb67-4da2-9989-09bf608bd138.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dcdeb5df10dd86dbc155dbefc4fd72b
b0a20213cdedc7fa472dbdad4e1152152009433e
ba98ae058e591f010056de61cdc58e09b5a2742be08421e0ba57ac2a0de36422
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2640ea-cb67-4da2-9989-09bf608bd138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11915
x-amzn-requestid: 93e2bad9-148f-4b10-9c07-8ab77bcaafcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jW6F0BoAMFU3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c2c-19e415980648396973718d73;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3vxezxpU1re737vRthcDcV3hDb1NAhhZrslBYjIHE7hdtD40FslmzA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:35:16 GMT
age: 56050
etag: "b0a20213cdedc7fa472dbdad4e1152152009433e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79ccaf63b8e37223509518f540b26f54
fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71
950ae082472515d39c9e3440cee399376e99840651ff04c4d2581951e44163de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9653
x-amzn-requestid: 06932e2b-59fa-4e05-aad3-65d7e2045e13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3i5fHJEoAMF8Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794b6f-0062640e7868cf664bcf26d2;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:32:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6eFgEWflu3zqDd4J838DeZiPxNafliBVrce95D_29-oviwINWR2bkw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:41:44 GMT
etag: "fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71"
content-type: image/jpeg
age: 59262
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G_b9L1-WBsD1eh58iF6Cwh8ij3yZVOei6oIUjwdoKQzHLayBLJdv0A==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:24:15 GMT
age: 56711
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0462940-45e8-4d33-a7a0-3f46adc95afd.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0462940-45e8-4d33-a7a0-3f46adc95afd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ea0ef1cd4a68ea5c5cf768e3311ef5f
fe87b0a911dbcaaf2c48df2b609adbb67408fee5
c1c2a50ba11ffc6e4d7bcf44e6674ae259469be690c06091ece8e74a144c15d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0462940-45e8-4d33-a7a0-3f46adc95afd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7053
x-amzn-requestid: a6cdb52c-9303-4453-bbad-2d3575b1c04a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jaKH1RIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c40-59cae7127e40d2407c233fe7;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:36:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jaMDJ63leIRCKibSLw_M7iX7qVInfEfStQrZBil5pcORxZPkjttsPg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:17:34 GMT
etag: "fe87b0a911dbcaaf2c48df2b609adbb67408fee5"
content-type: image/jpeg
age: 57112
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7bd20d-d931-4bf4-b779-4d11f018d81f.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7bd20d-d931-4bf4-b779-4d11f018d81f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 623ee888c7c89b3b1fbc7454032403e9
6c237808a186c2ac0d7084fb386b0862d188dabb
a7e8212bb8c2c738a61f1f7ecf730ee09e751334f3cdb5ed447913b69561f5b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc7bd20d-d931-4bf4-b779-4d11f018d81f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8756
x-amzn-requestid: c80806cc-6125-4e82-971e-1c93d7bb5ce9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3izgHavoAMFicA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794b49-51a4c2ba1d646c1c7633d99a;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:31:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bsukMDSn70wVNA0iIBkOUGae0uTFHvOowG90XsuEqTUVoYg8IReLzQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 22:07:40 GMT
age: 57706
etag: "6c237808a186c2ac0d7084fb386b0862d188dabb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a16fd70048d81d63ac778964066b5fd5
8678fd9c7ef3f0b3a286e170e87bf59773f41881
fa9dd59489cb48e8509ce8297c3491823e446cdcde0f7393cd621b2abd0702dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kaleofis.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
193.148.253.8200 OK 30 kB URL HTTP/2 kaleofis.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 02 Nov 2022 02:08:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 30324
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
193.148.253.8200 OK 4.0 kB URL HTTP/2 kaleofis.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3995
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.13
193.148.253.8200 OK 112 B URL HTTP/2 kaleofis.com/wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.13
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash e230aaabad2236c905eea544c7ecc4d2
02d6cb9967f8a5c8325f60b8ad3820fe0c68ed02
01d8c1fd3e399c7138bb3fc8189bb749d5c19cb15f3f15e772f632eed93f0b26
GET /wp-content/plugins/sitepress-multilingual-cms/res/js/cookies/language-cookie.js?ver=4.5.13 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 17:32:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 112
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/libs/device.js?ver=7.0.4
193.148.253.8200 OK 1.6 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/libs/device.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash c4f2db72a79fa26365385bd9c0a7040e
1b8f79c0046e51ddc7fd400ab4d40c9940ef4199
ede4cc24cc24231454dadf451e44e0457107e28b1c10f2b86a82d209d401aa06
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/libs/device.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1635
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/wcml-multi-currency.min.js?ver=5.0.2
193.148.253.8200 OK 668 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/wcml-multi-currency.min.js?ver=5.0.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (1990), with no line terminators
Hash f0ce4f01bac83ff4aacff288a836ce12
c1f5578e38dc782c43b331e6e0a55820c1d341f2
ac3743f2bbcdc81f29987a091876df25266f6daefbbba60532eaf1e544ca6cac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-multilingual/res/js/wcml-multi-currency.min.js?ver=5.0.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 09 Nov 2022 18:55:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 668
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=7.0.4
193.148.253.8200 OK 531 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 6aaafdb3bc6faf5a962eaa4b51e30a7c
c7de058ed401291eca24182906f11c2c482ef294
e54971e482685543d5645c7d86088939c33aa320c889f2c41c95da9cce84f532
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 531
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16
193.148.253.8200 OK 1.9 kB URL HTTP/2 kaleofis.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (6296), with no line terminators
Hash 4c6f23b547b42133cff228cd0f78c2fc
fa4a51c20cb8baf411a29530658daa672d748078
95f74cc2bfeed8abe1da2f7e7b228a3b4abf78a6f8fc6cef253ff15722195c24
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.16 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 17 Nov 2022 16:31:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1927
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
193.148.253.8200 OK 3.2 kB URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (9111)
Hash 078e27719ab2b91e57a3d06d05bf24d8
ee2c8af72d9dbb148d4101a374f6026d0c9c3044
1c8b599f3f7bfa8d7950d95a171f2c873d051960a91c91e22304293596e5b890
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3247
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-176043027-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-176043027-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 80ff7f9074ecaedadfb7a5b6dfdbe5a5
e4d9ee789061a247c058cc4545f8d74d182c8c63
133111d6a6e9daea24ce5e89d8315d8b71db9723819365414ead22d821c5421e
GET /gtag/js?id=UA-176043027-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 20 Nov 2022 14:09:28 GMT
expires: Sun, 20 Nov 2022 14:09:28 GMT
cache-control: private, max-age=900
last-modified: Sun, 20 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43613
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
193.148.253.8200 OK 972 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 5ed77e0c59800f40061b5c322cff21fa
ced9d401d300dd1fc676a673bbf7e6360beb402d
3b284b8a096256e6cd0d9cbf2cb4b36505e71c0d7b2227fcd3132dddbeea18cc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 972
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
193.148.253.8200 OK 899 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 899
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
193.148.253.8200 OK 677 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 677
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
193.148.253.8200 OK 934 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 934
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/front-scripts.min.js?ver=5.0.2
193.148.253.8200 OK 176 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/front-scripts.min.js?ver=5.0.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (344), with no line terminators
Hash 5dd5ca7afb443f268b4407b872ed1f27
cc41febe62c5c1c83fb6f0870a7562178d078a71
568a2225d1210c975759dce800b68178920f60c744c2104f97ffb3c56d502949
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-multilingual/res/js/front-scripts.min.js?ver=5.0.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 09 Nov 2022 18:55:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 176
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/cart_widget.min.js?ver=5.0.2
193.148.253.8200 OK 192 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce-multilingual/res/js/cart_widget.min.js?ver=5.0.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (364), with no line terminators
Hash 4f459a8d6bd697caf6ce3dee18a27111
25c360fc8cd0e97a55c9f2adae7ccdde61bd5da6
0412272c5d0348a022756213cdcdb8d8c8d9cfff59f33a7f11401a3fbb594194
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-multilingual/res/js/cart_widget.min.js?ver=5.0.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 09 Nov 2022 18:55:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 192
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
193.148.253.8200 OK 2.9 kB URL HTTP/2 kaleofis.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sat, 08 Oct 2022 19:53:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 2867
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/global/helpers.js?ver=7.0.4
193.148.253.8200 OK 2.0 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/global/helpers.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 744caa1a43356d33807f40127fdf8176
82b1226a038c939314101df81d9096d1a2d75664
5a39e6c7b908e4ece6cc190f3b98f6cbcef6ead77858f1be65c8476ebee2746c
GET /wp-content/themes/woodmart/js/scripts/global/helpers.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1978
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/woocommerceNotices.js?ver=7.0.4
193.148.253.8200 OK 283 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/woocommerceNotices.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 42c2d1cd92ddd8d86cf4ec49a9e39ef4
2e4ab73e1655fce8ab3a6a0ad8c6654327c57ce1
fc7c6bfdda72b83ee6ec91191eda386dab02ab3be760ca5c82112d07d73ff7f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/woocommerceNotices.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 283
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/global/scrollBar.js?ver=7.0.4
193.148.253.8200 OK 150 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/global/scrollBar.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 61a51de6f58dcc936bb3e73fedb18f22
b7b36ce28aadb97a57da806ee516953fb8e7205c
a0acd6dd3e948c5f38ba957cd033ca305db931f0c2007ead0b044bd6b99e99de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/global/scrollBar.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 150
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/perfmatters-/vendor/instant-page/instantpage.js?ver=2.8.7
193.148.253.8200 OK 1.0 kB URL HTTP/2 kaleofis.com/wp-content/plugins/perfmatters-/vendor/instant-page/instantpage.js?ver=2.8.7
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (2770)
Hash 19da94c95d76ef6980102cb9c5fadb6c
abf0495079533e08e9978248f739ae31e1d91453
0dadf93159bc3011d5a757971a54634e3fe2c4776afb00a3bf1229b13f535753
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/perfmatters-/vendor/instant-page/instantpage.js?ver=2.8.7 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sat, 27 Aug 2022 14:17:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1046
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/header/headerBuilder.js?ver=7.0.4
193.148.253.8200 OK 1.2 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/header/headerBuilder.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash e0b2829748ddff4f99f46186ff1ac5d3
3379d4ecf9db119149c1cd8697e930b40e6ddc9c
1e53e6aa2341582f148201ea7b1ddf0ebea5c7771ff7ef03b7dc4938b452e5fa
GET /wp-content/themes/woodmart/js/scripts/header/headerBuilder.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1236
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/onRemoveFromCart.js?ver=7.0.4
193.148.253.8200 OK 280 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/onRemoveFromCart.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash a3cced1d11183ab07320d5dd665e5887
4590d4ba3a6cd6893599352db6861e27dee42e17
0b664c9f48527c00f423e9754065727dc451c8f3f9f9ea0ed96a938b573ed133
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/onRemoveFromCart.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 280
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/quickShop.js?ver=7.0.4
193.148.253.8200 OK 765 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/quickShop.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash b41090391b6bf277445ebb5c9f192263
7da7818ad86c24122bdc272e37eb85a3cabf036f
d9a708f036786973739806325c34bc831560fabece5139fde30cc393fa3dd15b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/quickShop.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 765
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/swatchesVariations.js?ver=7.0.4
193.148.253.8200 OK 3.3 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/swatchesVariations.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (602)
Hash bd8b921c2063766a604dc8c3d37c1481
a3398f528af3e4d9d4d8c411ebbf33d3d0e65f0d
5bd9044e36cf72329bca8874dc3ace4c6514d6246f0ed0e54992dbcd1d6c3385
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/swatchesVariations.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3260
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/addToCartAllTypes.js?ver=7.0.4
193.148.253.8200 OK 1.1 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/addToCartAllTypes.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 05a10512125c8a391344b764088e0077
390d5da7149c4dbfb1aaf8beb8e6114974b266f0
4956a865ef7624dd0a47a277dbf93cb560b565d2abf5f138b7da7f3175b81dc3
GET /wp-content/themes/woodmart/js/scripts/wc/addToCartAllTypes.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1091
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/js/underscore.min.js?ver=1.13.4
193.148.253.8200 OK 7.2 kB URL HTTP/2 kaleofis.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (18798)
Hash f4bb18d2e152ba945cb63980362f40e9
925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 02 Nov 2022 02:08:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 7179
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/js/wp-util.min.js?ver=6.1.1
193.148.253.8200 OK 690 B URL HTTP/2 kaleofis.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (1391)
Hash ebe552e54e3815c6867913d252ff2a79
4982bd9ba944833e821be18419ad8408290f5d75
8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 02 Nov 2022 02:08:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 690
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0
193.148.253.8200 OK 3.4 kB URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (13880), with no line terminators
Hash 459fba86094e948f2046f4607bc0c02f
5b41f2b77e93fdcd7e8f0f5d1c50dd51b8a45f7c
71feb5b709466deb028daa294a0f3eb5f8f6658cdb912a463162f6d1404d5412
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=7.1.0 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 3431
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
193.148.253.8200 OK 1.7 kB URL HTTP/2 kaleofis.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1733
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/libs/owl.carousel.js?ver=7.0.4
193.148.253.8200 OK 19 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/libs/owl.carousel.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 0634e5f2d7b05cc8c279b109bc466836
06607e8b94caa2d929b6a389794e28586bbddcd1
f34c735891d3c85d4804350583df397964fbc69881d4f54a0c0ccc1bc39e6824
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/libs/owl.carousel.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 18750
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/global/owlCarouselInit.js?ver=7.0.4
193.148.253.8200 OK 1.2 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/global/owlCarouselInit.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 5af261238771f2a259ff00bb6a04d82a
a986e17ed937f0ff4f77bd6599a05c83c669c94f
5038829924aae6acef72ade9f2145d3d5acc1bc8116518a4c8901f5146d8d438
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/global/owlCarouselInit.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1203
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/actionAfterAddToCart.js?ver=7.0.4
193.148.253.8200 OK 1.1 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/actionAfterAddToCart.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type HTML document, ASCII text
Hash b03b881d23fec642b1e6fa3c207c19ec
a0011bf6d8322e51ff136983e6234f65c25dca4c
42dffdac4f6d7fb6a5d66b063766ebc40cba7df5be208bca4205d73696882c38
GET /wp-content/themes/woodmart/js/scripts/wc/actionAfterAddToCart.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding
content-length: 1071
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/mobileNavigation.js?ver=7.0.4
193.148.253.8200 OK 671 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/mobileNavigation.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash f3389870a8ba784dc9eacdf7d6af0328
75fb9ddef77d14f3817e0cb5fe3b08a798addade
bb7b1329c6edfef5bde7a51371d4223de136c00f29b0180e7f1728361b087628
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/menu/mobileNavigation.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 671
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/menuOffsets.js?ver=7.0.4
193.148.253.8200 OK 1.1 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/menuOffsets.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash cb040c7c9055eab4edb30d15aa1eb0d3
d2a45e4c2a5558cfc89a4691f31f2424f1d46a9e
af5154963a47856a32a83c3c4c2549aae734ad5cc3a3e2daf78d61d81640f138
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/menu/menuOffsets.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1106
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/menuSetUp.js?ver=7.0.4
193.148.253.8200 OK 649 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/menu/menuSetUp.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash f2531a114bad8190cbcae9db1d4ddf38
16f04010845aab405963bc79b78173b941c07ff6
6a5a75c0c4c78c1be3246dd8ed4d1e274b87ce51282a17846c2534bba569a31f
GET /wp-content/themes/woodmart/js/scripts/menu/menuSetUp.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 649
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/cartWidget.js?ver=7.0.4
193.148.253.8200 OK 411 B URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/wc/cartWidget.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 1fe7ec35422a4a908b44d019ee785bb5
21f1af84e451b3105ed80e5933489090df5979f5
a85a3dc56bacacdcfdfa45b268a7ea86778749077fa07d02795d8e5a2fe882c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/woodmart/js/scripts/wc/cartWidget.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 411
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a16fd70048d81d63ac778964066b5fd5
8678fd9c7ef3f0b3a286e170e87bf59773f41881
fa9dd59489cb48e8509ce8297c3491823e446cdcde0f7393cd621b2abd0702dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kaleofis.com/wp-content/themes/woodmart/js/scripts/global/searchFullScreen.js?ver=7.0.4
193.148.253.8200 OK 1.1 kB URL HTTP/2 kaleofis.com/wp-content/themes/woodmart/js/scripts/global/searchFullScreen.js?ver=7.0.4
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with CRLF line terminators
Hash aa1a871eb6e466c7464008e97b5f6aa7
ad66fd41f3ac09ccb2389375b5e20e07d28f9b11
c243f071f6080ce3f7cbfcc674fbb3caf6ed4126cd5a6df3b443c8ffec360fca
GET /wp-content/themes/woodmart/js/scripts/global/searchFullScreen.js?ver=7.0.4 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:26 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Sun, 13 Nov 2022 12:14:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1097
date: Sun, 20 Nov 2022 14:09:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 20 Nov 2022 12:41:09 GMT
expires: Sun, 20 Nov 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 5300
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5ccc6ed714b650846fefb0a8e24ca22
30521fa613dcb97b95ad3baab58c4446482d5061
ef46e9367b670662ae596685c5f27da1bf065e714ef2e86c65d5267a188d08d3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&gjid=1084485074&_gid=2011106425.1668953370&_u=YEBAAUAAAAAAACAAI~&z=801175481
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&gjid=1084485074&_gid=2011106425.1668953370&_u=YEBAAUAAAAAAACAAI~&z=801175481
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&gjid=1084485074&_gid=2011106425.1668953370&_u=YEBAAUAAAAAAACAAI~&z=801175481 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://kaleofis.com
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://kaleofis.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 20 Nov 2022 14:09:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d5ccc6ed714b650846fefb0a8e24ca22
30521fa613dcb97b95ad3baab58c4446482d5061
ef46e9367b670662ae596685c5f27da1bf065e714ef2e86c65d5267a188d08d3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kaleofis.com/?wc-ajax=get_refreshed_fragments
193.148.253.8200 OK 433 B URL HTTP/2 kaleofis.com/?wc-ajax=get_refreshed_fragments
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type JSON data\012- , ASCII text, with very long lines (1017), with no line terminators
Hash fc51a0dfdd779825f474ad6f76621016
ff9885c2ae060b05a06c9777072d492eeed3ff28
fa052f71257b1db16dea195cd2a1915d636b807de9fe8187a0121865704de43e
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://kaleofis.com
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: application/json; charset=UTF-8
cache-control: public, max-age=0
expires: Sun, 20 Nov 2022 14:09:27 GMT
content-length: 433
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
date: Sun, 20 Nov 2022 14:09:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ecf20bb738504255b997d0f8d32f84da
4083bb312c0263ccdbccdd6e157060d3f85996c7
65a66ce857bb2fd22d467c16a4f405faf4a50700a8fd1a4b8c5b903df10c4aaf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 0221df1d0f7ec47514a03758ce83f18f
59aaf8e97c727c44933ad992e2d7202f9aee236e
3497027e232c118c1a2484226c8f0eda34db55fa03728990c43bdf7f418acae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 20 Nov 2022 14:09:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-176043027-1&cid=844695794.1668953370&jid=1809388105&_u=YEBAAUAAAAAAACAAI~&z=1189387759 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 20 Nov 2022 14:09:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 801bfa5219b8edbae22ab4be73ea5f1b
6795d174c6af1841ff34a78c0723c8fd9a69bdce
5288c50ab4af870e03058d86bbf4fca0cb0cbb10136580858cb7c05e91605805
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 0221df1d0f7ec47514a03758ce83f18f
59aaf8e97c727c44933ad992e2d7202f9aee236e
3497027e232c118c1a2484226c8f0eda34db55fa03728990c43bdf7f418acae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 20 Nov 2022 14:09:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51792f65-6e89-49e5-9135-0a8a2de2ab9c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51792f65-6e89-49e5-9135-0a8a2de2ab9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3c8c476db4c44614c4ba79f584acf65
35318fa392a72f49f293bfd582960d195065403a
61af67d251bb0523cbf938ed497f540a7529d8130b1950bde9ce2bf8cef3dcfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51792f65-6e89-49e5-9135-0a8a2de2ab9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6953
x-amzn-requestid: b224cf31-9132-4af2-b4ad-0fde224e7222
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jZmEXoIAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c3d-3b19e98831138506588e2229;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:35:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2ef6C4hpAZo72BfD46AxHqw-Pd4ywBJxE9FkQRGu31ymPd0zRuz4PA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 21:41:44 GMT
age: 59268
etag: "35318fa392a72f49f293bfd582960d195065403a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
193.148.253.8200 OK 12 kB URL HTTP/2 kaleofis.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr; _ga=GA1.2.844695794.1668953370; _gid=GA1.2.2011106425.1668953370; _gat_gtag_UA_176043027_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:31 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 16 Nov 2022 02:15:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 11616
date: Sun, 20 Nov 2022 14:09:31 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
193.148.253.8200 OK 1.8 kB URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr; _ga=GA1.2.844695794.1668953370; _gid=GA1.2.2011106425.1668953370; _gat_gtag_UA_176043027_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:31 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 1754
date: Sun, 20 Nov 2022 14:09:31 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
193.148.253.8200 OK 23 kB URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0c6730c96c60030ddaf42fcf5daf3b17
feb4c0071f27718582e58d365022a1b559de5765
d996bec53b493bc579754f29f7d6d0b5332f3354c860a3787e2365a79c44f995
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr; _ga=GA1.2.844695794.1668953370; _gid=GA1.2.2011106425.1668953370; _gat_gtag_UA_176043027_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:31 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 10 Nov 2022 14:21:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 22871
date: Sun, 20 Nov 2022 14:09:31 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-includes/css/classic-themes.min.css?ver=1
193.148.253.8200 OK 144 B URL HTTP/2 kaleofis.com/wp-includes/css/classic-themes.min.css?ver=1
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr; _ga=GA1.2.844695794.1668953370; _gid=GA1.2.2011106425.1668953370; _gat_gtag_UA_176043027_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:31 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 02 Nov 2022 02:08:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 144
date: Sun, 20 Nov 2022 14:09:31 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
kaleofis.com/wp-content/plugins/woocommerce-multilingual/templates/currency-switchers/legacy-dropdown/style.css?ver=5.0.2
193.148.253.8200 OK 476 B URL HTTP/2 kaleofis.com/wp-content/plugins/woocommerce-multilingual/templates/currency-switchers/legacy-dropdown/style.css?ver=5.0.2
IP 193.148.253.8:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (1773)
Hash 26c58384e350d2431c057ec3e003a0bb
77fc74b6e5d438cf39a02ccabd0c6ad2da266414
9734d8426a4fec2a42c589fa84f8db98f8745985f60828b02bf2cf15515156c7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce-multilingual/templates/currency-switchers/legacy-dropdown/style.css?ver=5.0.2 HTTP/1.1
Host: kaleofis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kaleofis.com/
Cookie: wp-wpml_current_language=tr; _ga=GA1.2.844695794.1668953370; _gid=GA1.2.2011106425.1668953370; _gat_gtag_UA_176043027_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public
expires: Mon, 20 Nov 2023 14:09:31 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 09 Nov 2022 18:55:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,Accept-Encoding
content-length: 476
date: Sun, 20 Nov 2022 14:09:31 GMT
server: LiteSpeed
X-Firefox-Spdy: h2