r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5144
Expires: Fri, 25 Nov 2022 04:05:29 GMT
Date: Fri, 25 Nov 2022 02:39:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7600
Expires: Fri, 25 Nov 2022 04:46:25 GMT
Date: Fri, 25 Nov 2022 02:39:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3426
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:45 GMT
Last-Modified: Fri, 25 Nov 2022 01:42:40 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6i+5gcPhd1Py93z1jZiNAc1i1xuhIMyb937TvupMifJpXykShkfSqEBQvP0DoBdYxbuyBphYnG4=
x-amz-request-id: BMM827YTCCCMTH5H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 01:43:38 GMT
age: 3367
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 02:19:02 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1243
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 02:39:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 02:08:53 GMT
cache-control: public,max-age=3600
age: 1852
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2660
Cache-Control: max-age=112284
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:45 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 09:51:09 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ikizlerjaponbursa.com/info/login.php
78.135.65.20301 Moved Permanently 0 B URL HTTP/1.1 ikizlerjaponbursa.com/info/login.php
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /info/login.php HTTP/1.1
Host: ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: http://www.ikizlerjaponbursa.com/info/login.php
set-cookie: PHPSESSID=5763fa6c451222198fd80b2d912afa2f; path=/
ywsl_wp_session=76195fa8f28e3c9410854654dfecc5ab%7C%7C1669387185%7C%7C1669385385; expires=Fri, 25-Nov-2022 14:39:45 GMT; Max-Age=43200; path=/
content-length: 0
date: Fri, 25 Nov 2022 02:39:45 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
push.services.mozilla.com/
52.43.61.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.61.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hF9LRN3M3LjbwF1plvM7vQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Cf6PJjz/vdTvAfOvRr+G+t2d3wo=
www.ikizlerjaponbursa.com/info/login.php
78.135.65.20404 Not Found 14 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/info/login.php
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2587), with CRLF, LF line terminators
Hash cd6d6769b7bf4edb064220b8070f8daf
ba4faef3dd0a0cf4266d6dcc2b070b3247fb4c9a
64430fbc5021ff4d30b053e126b82315784d88396aa40e73bd7f9c360e505bde
Analyzer Verdict Alert fortinet Malware
GET /info/login.php HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc; path=/
pragma: no-cache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.ikizlerjaponbursa.com/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.11
78.135.65.20200 OK 7.9 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (27100)
Hash 7f8179dc65383b540b64d5d65b9c087a
b0b29fa9e0d52863c1a6b4c866ce09344680fda7
d2d41d9755ceadac8b052837808a26343b279f4173073ba0571c690de3c875d6
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Thu, 27 Aug 2020 20:30:38 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 7885
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Open+Sans%3Aregular%2C600%2C300%2C700%2C400%2C500%2C800%7CSource+Sans+Pro%3A200%7COpen+Sans+Condensed%3A300%2C800&ver=5.5.11
142.250.74.10200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3Aregular%2C600%2C300%2C700%2C400%2C500%2C800%7CSource+Sans+Pro%3A200%7COpen+Sans+Condensed%3A300%2C800&ver=5.5.11
IP 142.250.74.10:0
Hash d7bff2dbb03d4c77f4a448ae43c4cca8
6e852757568d3689ff8bde5e53e8e73e8c16a59a
9d1a8ff0bbc10c500e3e155687bc12b468f61b21c6f0b894ff4447f96a3adafa
GET /css?family=Open+Sans%3Aregular%2C600%2C300%2C700%2C400%2C500%2C800%7CSource+Sans+Pro%3A200%7COpen+Sans+Condensed%3A300%2C800&ver=5.5.11 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 25 Nov 2022 02:39:47 GMT
Date: Fri, 25 Nov 2022 02:39:47 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fd6e45fec9010f48d052dc17826c75f0
218e01b9707f1e123eef81d70f24f0d95e526465
8ba8111e6058eb953ea4804e6fcbbba380a2087609b5bc49c7ccade7fef100a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4741
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:47 GMT
Last-Modified: Fri, 25 Nov 2022 01:20:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.6.0
78.135.65.20200 OK 1.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.6.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (2967), with no line terminators
Hash ecdb3d69092ecc2377106f2b7497a492
2e4d4eb1a17b237a15b103c533eaea04f7d7bb46
6428bbead3bc347959896ffa8a3288a86e855fbfe4015e3c0e5679ca0de3aac8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/vendors-style.css?ver=3.6.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 02:00:45 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1027
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
78.135.65.20200 OK 2.4 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash 06aaf4ad4514d055f55edde43b5a376a
db3bad5ef0373f639d27a069b15b9ce4f63ac700
a20c210873aeafe483dea72eaf4494b7512e5513555651dfbdc2a5362868d549
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 10 Jul 2020 08:14:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 2397
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/woocommerce/style.css?ver=1.0
78.135.65.20200 OK 12 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/woocommerce/style.css?ver=1.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 3b59ae8c63142f1442c7e1e8eb96a8bb
e775c2f6ea19d61de1c4a08914d874ebe1fc1794
1510b4f21ecd1eb383ce4f4466c1eb783ea6dfe7a3bd1ff20391049df714add1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/woocommerce/style.css?ver=1.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 12093
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/yith-woocommerce-social-login/assets/css/frontend.css?ver=5.5.11
78.135.65.20200 OK 125 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/yith-woocommerce-social-login/assets/css/frontend.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash 9633b4dd20afcc379fa2ea530e3fa028
7353f960bbe3d294db049e450702bfdc9906d352
e581b2e8424103fa550af5cd66faf4519c727fcc7674f99a22e12aed50d452e5
GET /wp-content/plugins/yith-woocommerce-social-login/assets/css/frontend.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Sun, 06 Dec 2020 21:14:26 GMT
accept-ranges: bytes
content-length: 125
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/style.css?ver=5.5.11
78.135.65.20200 OK 7.8 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/style.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash 939c7103eded72b275119302955fdd70
9121d6db1de8830e5077f5d6ccda1de1ea4a6b93
cf9a9d73856b97335cdf2d8f38ac410be064abbfeb12278ba63af2f54dca616e
GET /wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/style.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 7821
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/bootstrap/css/bootstrap.min.css?ver=5.5.11
78.135.65.20200 OK 19 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/bootstrap/css/bootstrap.min.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (65371)
Hash dc1eb054f23201a170dd0b4e226edfbf
94304bbb95ea515dbccce57016e5e6d0dc91969c
4e6dbb29523d905c83f068d8e9522129b5e709aa1979650af92a32d65d738525
GET /wp-content/themes/nielsen-1/theme/assets/bootstrap/css/bootstrap.min.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 18761
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/faq/assets/css/yit-faq.css?ver=5.5.11
78.135.65.20200 OK 780 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/faq/assets/css/yit-faq.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 3e8e9de52ee3c5f6bc63552636d99920
195c18386230d39a0d1d47a15d0ad10ef6d09019
902dbf68f2446d805ac5a1823eb7f4a12784eb8ac89eb585612111665d38584d
GET /wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/faq/assets/css/yit-faq.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:31:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 780
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/logos/assets/css/logos_slider.css?ver=5.5.11
78.135.65.20200 OK 763 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/logos/assets/css/logos_slider.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash ed6af815ab3d0c1589dd5a211a944311
28c8bb3e6839dd79a44baee6717a0648ae25f6fa
802c4a7d36bdd2f3562f426013658d43c718b8915cc93ad17b6addaed6c92cc2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/logos/assets/css/logos_slider.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:31:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 763
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/testimonial/assets/css/yit-testimonial.css?ver=5.5.11
78.135.65.20200 OK 1.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/testimonial/assets/css/yit-testimonial.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash cfc9705c929d7ae2f58c1f5912c3b4d0
c4faf564bd1f7a74bc0284259734e000980b451a
3844c886dff2ff24a7fa04db35d4a880a70c96f92301cb6682b39d52adbedfc1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/testimonial/assets/css/yit-testimonial.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:31:23 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1489
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/owl.css?ver=5.5.11
78.135.65.20200 OK 1.1 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/owl.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash fd4b511807893318256b3030ae5e60b1
df394dac901083dc33564bdb24e2a91ff697e094
3d294e3d7360d2d1dd598471516253b503eca07b0e8d2b283d9366c7e26f46d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/owl.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1091
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/sliders/parallax/css/prettyPhoto.css?ver=5.5.11
78.135.65.20200 OK 1.8 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/sliders/parallax/css/prettyPhoto.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 10990212e02a6adc0a559a26bd025b0a
f000284917b313a9717db06b3aed646fb118a090
33f89a5a29860279865d38394e34a0ba339adeadc4abde13beea7523e7ad6003
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/templates/sliders/parallax/css/prettyPhoto.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1785
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/portfolios/big/css/style.css?ver=5.5.11
78.135.65.20200 OK 591 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/portfolios/big/css/style.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 9ced43a050393d36341ba91e9503c0ec
5afc24641e5b5befdcdbcee28d6f8c4f75321171
479c9eea767bf0631455cce85839e1f43129235f44d9b9911db5d3fb02859ce5
GET /wp-content/themes/nielsen-1/theme/templates/portfolios/big/css/style.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 591
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/sliders/flexslider/css/flexslider.css?ver=5.5.11
78.135.65.20200 OK 1.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/templates/sliders/flexslider/css/flexslider.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash aa4798e384e1f304756b34b2bb81cfa1
165fef9c6bf2db7400413e0d09fc877f872e21ae
33e9f2598cc20fc9d1b1c588befa1dc4784f59cbe6db02761562603d8c961c3c
GET /wp-content/themes/nielsen-1/theme/templates/sliders/flexslider/css/flexslider.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1454
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/style.css?ver=5.5.11
78.135.65.20200 OK 11 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/style.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (349), with CRLF line terminators
Hash af59dd798ebf1487519f6647852e276c
b30efb6bbe59c1afb6a420bfcdaf376b2f5e91e7
6806fd4bf4faac4177aceae8258672a53f34da18200e6e89b92aa8be2ef2fddb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/style.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 11054
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/widgets.css?ver=5.5.11
78.135.65.20200 OK 8.2 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/widgets.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 8561efab327d3b02f6c1236f16a0bc22
b4b62f629b343301608859470d59f65e314a9b77
bea5b7e01cf384b061d594dc11c3b42c9a918229c6a6998db4747d9688ded092
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/widgets.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 8240
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/comment.css?ver=5.5.11
78.135.65.20200 OK 1.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/comment.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 19351a0a584641edebad068b3f220715
20d8a35b98e4f3b10cc4da51c1cb22d82e7b202b
7f17652820ed860342d06fa3ee57d840613fbd7de912dab8c60c97ecce437c60
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/comment.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1035
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/animate.css?ver=5.5.11
78.135.65.20200 OK 4.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/animate.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 2a1b554ec3d851d382bf7ad6df3534e5
37187d372c5dfc9c68a7a0344b1d295f1535b075
ef8f6cb3fd166845ac9b76de083c34848ff526d575cb81291b4b49ad946c7920
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/animate.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 4255
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/scrollbar.css?ver=5.5.11
78.135.65.20200 OK 3.1 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/scrollbar.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (682)
Hash 3469d71111ec06c2b81d83efb003a85b
7002cdd17e55df0756745c5a76ea03e096b3c35b
fb2f104af3132f390bcea28c7664bb74176f280c5e88ec9a4d614c7e684b6c8c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/scrollbar.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 3076
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/cache/dynamics.css?ver=5.5.11
78.135.65.20200 OK 9.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/cache/dynamics.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (2501), with CRLF line terminators
Hash 18111f3069fa20a87f23085caac60927
d8e95b309037725554e400e87b0c1cba5f218414
5dc93d1c889f33efcb22c499691831e7e517d2306d1abb223a5eea4559d1acbe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/cache/dynamics.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Sun, 06 Dec 2020 22:24:15 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 9585
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/shortcodes.css?ver=5.5.11
78.135.65.20200 OK 16 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/shortcodes.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (356), with CRLF line terminators
Hash 6fcda8e96f50b66b13634b391ac500fa
bfb68138b78fa24ab864ad12b00a8c56dcbd059a
07cc1d104bce439dccf31aac8971d0eb73d7700dfb5467f64e9c29ad93d58255
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/shortcodes.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 15574
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/responsive.css?ver=5.5.11
78.135.65.20200 OK 4.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/css/responsive.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 59bbfe719b8d2ce09cd6a9d1552ef636
c7353f137484996c92aadd816629513c903af22f
87e749f9a034bdfc6e03986ebc3fa6c7026bacc5240ab4bce4d974e3d294bb8a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/css/responsive.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 4559
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/custom.css?ver=5.5.11
78.135.65.20200 OK 0 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/custom.css?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/custom.css?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-length: 0
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
78.135.65.20200 OK 7.9 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash bd0879b582f5bdc5996b0efac3a746d2
156139ca982a3a64a0ed31d94a162a6ef83430c1
ee385ab5795a2e8d96edf97ccb80e345e80537746375faf04defb32cf06f2dc8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/jquery-migrate-1.4.1-wp.js?ver=1.4.1-wp HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 7877
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5165
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:39:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ESacQ13nZwlbUKiNnwl6AxqC9ar8cxPctKLMFWS86aB3ZGsbxG0ZOA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 04:22:08 GMT
age: 80259
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6673267df195141739d1018c17101368
b80047da428636adb7027f12718c8d11bd461da4
de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11954
x-amzn-requestid: 0c912d90-72b5-4060-ae22-c2ecbe16b57a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8J-nEFEoAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2390-503ead086c8021af6eaeaa85;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JZAeoFNsUy2usSV7O41YGIfVow9gaIMXuKnfcaundLduQ5UX2eTKOQ==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 17:17:27 GMT
age: 33740
etag: "b80047da428636adb7027f12718c8d11bd461da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5863138af1ddbba34a7856242a7b3a06
2eba66ff6539388c48562503e8d11ff0e060350a
d1543e1b803a07095148b743925eebbbf21f566a2df9b785a1a9d48c5604496c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8917
x-amzn-requestid: 10f3b269-9437-476d-ae4f-a0ac3fb78491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wEIwoAMF8uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4cfeecf4553b26381ed11875;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lr9z8FWWpMGtxtvcYzeT-ewuydSzpma8I06pszLDQIICotFkB_SZlA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:30 GMT
age: 17057
etag: "2eba66ff6539388c48562503e8d11ff0e060350a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d43ec6824d4fdc4d31b8c245bf8c5849
81f85633fca39972d8e0bf9a4ec7cd999e54564f
b0e521b23879af86102f46a9ec412faf6345df31a97a7b58880f63f81fdcd0c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7900
x-amzn-requestid: a9d184b1-3b4a-4ca6-9ad2-ce3aac10f422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB91H2IIAMFjGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38b-5732361f36c023c22c922ee9;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cRreyOCHys8rW4UWA3JSMhtOiiltT6ULxxgi9aLM7sw07UruCXgPkQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:13:14 GMT
age: 15993
etag: "81f85633fca39972d8e0bf9a4ec7cd999e54564f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1adbf0cd373a4c06caa71eac14e1286c
236199a790f16dcf96dba80b9945836b37e3c2eb
767fd66cf0751dd80b2453588f9363fac7d9637da3dc9098d25fb65699ca8c5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6590
x-amzn-requestid: 5d8b02c4-673a-4c77-8f24-498d9b8a28ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8zGeAIAMF4HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-661ce3991caf87e8558158c3;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4iFMdgZvXpHdbGKY-3exNXsKVn2FuWGQg70mCqzGLSHk_bSTiXSCxA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:01:38 GMT
age: 16689
etag: "236199a790f16dcf96dba80b9945836b37e3c2eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
78.135.65.20200 OK 3.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (9172)
Hash de329cdce96c17fef9c3516b09ba51c6
664ff401060faaf6770ba30761b367d3aef10a8a
d9f05937cd228acc98f18a5e52ef966e0885afbcbc06d31da2e61e2b3f9e13f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 3533
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.7.4
78.135.65.20200 OK 1.1 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.7.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash aa8ecfeea22f429aa7e258103878fe9d
c00c46e1c231759430391d3e1067bfa9e00c9d52
b7c183f6c2ec67f68adf2643aabb10123c2604b7b6e0c52c8b738bac9f53578e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=4.7.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1087
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
78.135.65.20200 OK 34 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (31997)
Hash 167b4b3aef1415384a1d72a851584464
7edb972190b2048300fb5eb1668e54ec049b91a2
2d29b6f8700dbeda5b83991887d89ef850f3d570946b8eef360a86b9adcb0fb3
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 17 May 2019 06:55:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 33836
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1
78.135.65.20200 OK 380 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash a7ce29fa5b04165b972f7ba547cb7b47
0fb66e827a5d86c4bb4bc003a88e07302c9a256f
441228ca556acd634ad15e39e1218fc95befc5b10a29657801a3f5acad8a5be6
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.4.1 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 24 Sep 2020 10:58:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 380
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.0
78.135.65.20200 OK 46 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (42889)
Hash fe697613ce878a1434ea36d5549dfe6e
c3dedb9cf9fd00e02d6c7f590e7cfe56ea747c9e
01a2d14fca691c4f39fb108416c270d636fb1beb458fc0dab79c3d7bff59646e
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 28 Aug 2020 10:03:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 46300
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.0
78.135.65.20200 OK 85 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (64268)
Hash 045426a41dc1f56d25abb68b9e3e4302
a5e62213dd9c012e529c591ff03b679e240d659d
1b73621965b056e2d7f49f3ec14450213aee4cbe37fe8b62d7fea1e19bba8100
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 12:19:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 85330
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.6.0
78.135.65.20200 OK 18 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.6.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 9e4587a7952ae2c606b96bc88e84b1be
d0f6a54e26c9f688eaefaea041a42a7070df6ee3
3aa325cf0a739d405da6a3d05dfe57ced0df9d2ef2cba670df8a101d4339a596
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=3.6.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Fri, 11 Mar 2022 02:00:45 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 18283
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.0
78.135.65.20200 OK 13 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.0
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 796e13ae60955cdf74c6c5a511f7ca86
8ab3797c2c7dc448fb898cf910fc98fe47077daf
7c01cb2d4c036127db5fa83c855add4ab3e3e5d5d0a0fc85fcc62d5cf332579f
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.0 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: text/css
last-modified: Thu, 12 Nov 2020 09:20:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 12693
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11
78.135.65.20200 OK 4.7 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (11272)
Hash 0846a2fd97e3cc8019e8bc39139f8041
18c8cdabe7bdbf6d805efd2ab8c894ab9e857b8c
44b8924fb5491f8933c75e2b3010710a12998b1e8351bbd9d560aa8e41da6ccd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 21:08:53 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 4675
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
78.135.65.20200 OK 977 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (1680)
Hash 60e4ab71992dc241e8f93bdf73199d7c
61fe2f1b6151b2c400f0b32998ce1504cdf2140a
eae30f24f574269c25ef73f888c3513259a8ea233be7cb25166bbc017e8318f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 977
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.7.4
78.135.65.20200 OK 784 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.7.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (2047), with no line terminators
Hash f59c3623619546a59e28c7d2396d765e
4615266097e5300be552194910b8ad6db36c8303
86a7e25cc45e87e7c3bc467e353af6d543e29d1852b3ef2ea04671ef4d32f5c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=4.7.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 784
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.7.4
78.135.65.20200 OK 1.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.7.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (2939), with no line terminators
Hash 2d48bbadd1a5ce647524aca4474ea65b
8fd14e5e7822b419a323c10d59a6b5b7bccb407d
b23a3e62aba9548b20fac3016affcd00d1c952b6752cf987e583d4868bd4ef7e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=4.7.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1038
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/bootstrap/js/bootstrap.js?ver=5.5.11
78.135.65.20200 OK 13 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/bootstrap/js/bootstrap.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash cc3abdfc0cd73dd1006f4e791d1f06f3
976ab7b833e8002a922cd670b6bc26e2fe25ca83
598f639e5e0589b97060e5e177c2c84c3e993d890bd7c7f4e2f05f7047cff376
GET /wp-content/themes/nielsen-1/theme/assets/bootstrap/js/bootstrap.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 13411
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/yith-woocommerce-social-login/assets/js/frontend.min.js?ver=1.4.7
78.135.65.20200 OK 196 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/yith-woocommerce-social-login/assets/js/frontend.min.js?ver=1.4.7
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with no line terminators
Hash bb3f597cfb4e96685a2b55f7e26eb7c4
9c25ff6043fdf54f0666e7e298351b76a425bd91
18adc23c19c0172a26509157feda34e6888bec543429b0628f360a76c35fdde6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/yith-woocommerce-social-login/assets/js/frontend.min.js?ver=1.4.7 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Sun, 06 Dec 2020 21:14:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 196
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.commonlibraries.js?ver=5.5.11
78.135.65.20200 OK 22 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.commonlibraries.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type Unicode text, UTF-8 text, with very long lines (21538)
Hash db74db6821f447984faba0b5a0d1223c
11feabaa36454b7139e5d08891ec94346e410717
dd745d2c9353c793557267d33c3f3e9e83ccb657d25e08535500a85e3ee7a465
GET /wp-content/themes/nielsen-1/theme/assets/js/jquery.commonlibraries.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 21569
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/contact-form/assets/js/contact.min.js?ver=5.5.11
78.135.65.20200 OK 767 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/contact-form/assets/js/contact.min.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (539), with CRLF line terminators
Hash e0be844ddcded9fc0349f83302886618
4e728d931819df55ac4db088e9ca6ae855095c52
a8918a9b35e2bdda0989209a13b83b9722b409a285fa424d5dacade1d04a363c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/plugins/yit-framework/modules/contact-form/assets/js/contact.min.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:31:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 767
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/internal.js?ver=5.5.11
78.135.65.20200 OK 9.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/internal.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (2061)
Hash ec213e695f88cb5712896e00df64d5eb
2e9c4c0e4118d1de36e4935330e3130ba7398c88
1d4a33ddfb6378748d559ab5d075c845369870cf47cb616ffb4cecdfcc659d75
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/internal.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 9644
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/woocommerce_2.3.js?ver=5.5.11
78.135.65.20200 OK 967 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/woocommerce_2.3.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 71ef09adee2f3d6053d41004beda7e40
505e88df0819d09f619ee930a03627b189cea0f9
6d3ecf1af05f1448804d6b003d128a808c3e72dae8346f4dcc19bd6f74f1388e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/woocommerce_2.3.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 967
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.scrollbar.js?ver=5.5.11
78.135.65.20200 OK 6.4 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.scrollbar.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash 5b317272e0b16567fda93e69fa318669
8316e9f9ff88580bb9d06e968efc028702a38e70
cac71039f4ba100bb051b22e68a2aad15e83fadc55de6a0c1a5bb89c8e3aee9c
GET /wp-content/themes/nielsen-1/theme/assets/js/jquery.scrollbar.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 6356
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/owl.carousel.js?ver=5.5.11
78.135.65.20200 OK 18 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/owl.carousel.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Hash aa657c28a4c10a780442f0a997adc4e3
8809293e34dbc0bb9ef6d7c9714202911c996c35
110a8f8e8cf227b96ff64e3ab19be0c80e4e0db2025215b912f19faef717611a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/owl.carousel.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 17531
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/shortcodes.js?ver=5.5.11
78.135.65.20200 OK 2.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/shortcodes.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 634f00ae601682ae40ec0cbce5e0dc2d
1d5bdba9d510c23a2df1e835ba0a1892b97dc03b
d6309db5f9f6c3590bf4ad257e4a7c7b7f61cbd25fc474cd4120e78d8a673b82
GET /wp-content/themes/nielsen-1/theme/assets/js/shortcodes.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 2036
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.placeholder.js?ver=5.5.11
78.135.65.20200 OK 656 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/jquery.placeholder.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (543)
Hash a5ead5022df6fefd89777bd43cecf6bd
c4a5ae345708838a6739bb04bb163b14f05fe64d
780c82c01d8b969f2733649c50cb61d64a27630a3eb2718ecc7c563d91d3739d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/jquery.placeholder.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 656
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash fd6e45fec9010f48d052dc17826c75f0
218e01b9707f1e123eef81d70f24f0d95e526465
8ba8111e6058eb953ea4804e6fcbbba380a2087609b5bc49c7ccade7fef100a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4741
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:47 GMT
Last-Modified: Fri, 25 Nov 2022 01:20:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5165
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:39:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 77719
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5165
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:39:47 GMT
Connection: keep-alive
www.ikizlerjaponbursa.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
78.135.65.20200 OK 1.8 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (5477)
Hash 5bc847fcae1a1a6c4b7f79c00d2b7e29
b2237db0dd679c2c8e397e833f04df00d43165e7
bfa7a74e5830c0c26da7ccc50b8e44b401ce1ee8604fceb62e6c1310c47ddb2a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 1831
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5165
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:39:47 GMT
Connection: keep-alive
www.ikizlerjaponbursa.com/wp-includes/js/masonry.min.js?ver=4.2.2
78.135.65.20200 OK 7.4 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (23966)
Hash c64ef876a5380269bf01eee5dc898d2c
ec456158fe4cf279a2ce25a613fc97202acf2b87
6a084e003863350fb53e74d1b75d732cdfd0489a8f1b15907b406f64a40c95be
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 21:23:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 7376
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
78.135.65.20200 OK 715 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (1626)
Hash 46cfee7a6b6ed76c0fd609b98415e886
27a59318b05327183e1b7807e2071626f4a08419
21245efcfeb0ee1d850f895f472eca45c5d471e10f03e8f10e826218be1c356a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2016 21:25:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 715
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/common.js?ver=5.5.11
78.135.65.20200 OK 6.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/common.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (383)
Hash cc1d7ba1483d52ff126c1657a03eb8da
e9c12510d8a970c6731936a783b3c1d399f0ab41
6194e660fad2bdedda3948527cdc48b566005bb53fa12d7dd96ed5ed501beaef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/common.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 5983
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/yit-testimonial-frontend.js?ver=5.5.11
78.135.65.20200 OK 511 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/yit-testimonial-frontend.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 5c4f759f8bee0e406222a356aaddfeaf
005d250514f659b25100e03d837fb37cf5697164
3ab5bc8668f0acac632ab30a6989b662b7186983490d2095561daa3653864a16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/yit-testimonial-frontend.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 511
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/js/wp-embed.min.js?ver=5.5.11
78.135.65.20200 OK 769 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/wp-embed.min.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
GET /wp-includes/js/wp-embed.min.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 21:08:53 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 769
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ikizlerjaponbursa.com/wp-includes/js/underscore.min.js?ver=1.8.3
78.135.65.20200 OK 5.7 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (16010)
Hash ac96a92fbcb61ca2509282264595e191
2851d3744e640a845e527d31f89d3cc54e31085e
fefed46b805b00ca34aa87ecf65cc842a0b6aa6aa567859b1fdfc902f269b1c4
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 21:08:53 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 5681
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-includes/js/wp-util.min.js?ver=5.5.11
78.135.65.20200 OK 593 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-includes/js/wp-util.min.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (1042)
Hash 5af2abd2e5613650ebcc8206cf399fee
65d4db194fd69bdd51be228912e3189db37d204f
ee127776860574650d2ddf26c40bcbe63ff3cdacef8f2859fdcdf8805515920d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 21:08:53 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 593
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.7.4
78.135.65.20200 OK 3.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.7.4
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with very long lines (13534), with no line terminators
Hash 9febc03a9ac32efc55ef18b779ead191
8cf4884e8cec1e34b0737e48545ec496150d1367
41553f3928d27467f3a822314073313b12d5db15588c566e2cb74b42ab8f7b84
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=4.7.4 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 02:00:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 3643
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ikizlerjaponbursa.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 21:39:58 GMT
Expires: Tue, 21 Nov 2023 21:39:58 GMT
Cache-Control: public, max-age=31536000
Age: 277189
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
mapsengine.google.com/map/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A
142.250.74.46302 Found 0 B URL HTTP/2 mapsengine.google.com/map/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /map/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A HTTP/1.1
Host: mapsengine.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 02:39:47 GMT
location: https://www.google.com/maps/d/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=NvUagsl_K0VyQ10BZGRnLTmPCrrSgRqNSk6DR557IOiXxI4anDoT38Jp9gudY3-zB0jNx4cmiKRTM8weHXrs_1wNUQ1vUYt0LOPRqkH55nwTn9WxArG3ndXMSF54VI-ALlWuWslXfY5AMxWIy_HKPkKFvBWZq86X2qYE_dqNkZs; expires=Sat, 27-May-2023 02:39:47 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/woocommerce.js?ver=5.5.11
78.135.65.20200 OK 5.2 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/js/woocommerce.js?ver=5.5.11
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash b78771647690963f1f78c394496fd231
3cdcea7ba0f8aaf6bdf7aeda00ceaaea56d64547
9b9744a1e5e9c380ec593d65bbe574e720ec5c0132e6e9de13ba371eb360da52
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/js/woocommerce.js?ver=5.5.11 HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: application/javascript
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
content-length: 5196
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
216.58.207.195200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ikizlerjaponbursa.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 01:33:01 GMT
Expires: Wed, 22 Nov 2023 01:33:01 GMT
Cache-Control: public, max-age=31536000
Age: 263206
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
www.ikizlerjaponbursa.com/wp-content/uploads/dayco.jpg
78.135.65.20200 OK 1.1 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/dayco.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 37dadb610f8bff9b8985d1fbeda66d25
34f0b24ac1e76aaff43986f0bdb2ac927a4bfa15
15956d8e9c7f3152e6d3fad776828b764205614d6705a1a3c149b7892e4c623e
GET /wp-content/uploads/dayco.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1124
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/depo.jpg
78.135.65.20200 OK 1.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/depo.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 7fe12940fe41f0fc3beb9b979a606149
649eae0b72b00398a7f1fbc7bb4b7c749c9c82c3
983b377e78ba3fe8337e39eb7eafd9124c47dce72893530087742ebb965c124b
GET /wp-content/uploads/depo.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1591
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/exedy.jpg
78.135.65.20200 OK 1.8 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/exedy.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 518cc095d62000afa967afec6ea824cf
1195163c8fdc6a879b63f17758077afc304cf9ab
04f3a962d28ae37b88e059f6402347ef7bef672bc6599c2584acbb73c504d315
GET /wp-content/uploads/exedy.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1756
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/facet.jpg
78.135.65.20200 OK 4.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/facet.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash d0eb0596d5aa1f63cd9e9c0f0df90847
56ca75bb9f5e6d580a1b761ee6d35fa047195a45
d800e0d21fdc0131a4489ae2b72783d896306150363cd6c1ca705969ac49a7c4
GET /wp-content/uploads/facet.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 4522
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/goetze.jpg
78.135.65.20200 OK 1.9 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/goetze.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 008b67f5f795f710b349bd395215f88e
f1c3bc651f0f51164a915eb0a1cba88e77c7169a
ae90f862d345e8e2fcc1156811525a668442d110b86b5f1f545f2e91266835d3
GET /wp-content/uploads/goetze.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1881
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 76544babbcf6515110bd81aaee8e7e63
043497692868c67ac84cdfe70d0a484517abd1c2
a19d5958d683662375a2469d1d7e551188469b967eb6f2bae2d5e43dac51a4f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ikizlerjaponbursa.com/wp-content/themes/nielsen/theme/assets/images/backgrounds/404.jpg
78.135.65.20200 OK 69 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen/theme/assets/images/backgrounds/404.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1165x208, components 3\012- data
Hash a475fcd85d06520d3dc6dc0186301ad1
f5b0ecffe76a02ebaff72c2f68d5541b9a25d864
ad0d16eeafb258a876c5757b4775f17833400b46078d6d905b2487ef86c1b9ae
GET /wp-content/themes/nielsen/theme/assets/images/backgrounds/404.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Fri, 20 Nov 2020 11:50:36 GMT
accept-ranges: bytes
content-length: 68728
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/kyb.jpg
78.135.65.20200 OK 1.7 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/kyb.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 98x48, components 3\012- data
Hash 3d463e513fcf4b402c804e59c9a9fe3c
8e57b9be857dbbe96cbfa983c8d7b061bbef44fa
a5c941b4efc72c070d16624ce9d54ec1d91bfe190899437c04ce12b0921a0bab
GET /wp-content/uploads/kyb.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1660
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/ikizlerjapon-logo-2.png
78.135.65.20200 OK 17 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/ikizlerjapon-logo-2.png
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type PNG image data, 319 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash 383097ae752c39ddb14730100536cc92
930d362a6906185a45c64f02589fd24eb2a16fd1
2cb6a8ff912a226bed43ba971bf6b78cebc8c5a53a4dbc89a0874cfe06b580ad
GET /wp-content/uploads/ikizlerjapon-logo-2.png HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/png
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 17264
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/luk.jpg
78.135.65.20200 OK 1.2 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/luk.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash c850595e4648d40b3c1090cb27d9e316
a6399eade4e078cec1799827d7577df82607afbb
5bc1753630ec0c7b1288948ac01359b3276baa5575dc91e7d4003156d83a4d18
GET /wp-content/uploads/luk.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1248
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/fonts/retinaicon-font.woff
78.135.65.20200 OK 225 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/fonts/retinaicon-font.woff
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type Web Open Font Format, CFF, length 224676, version 1.0\012- data
Size 225 kB (224676 bytes)
Hash 6de3862ee9943fd76c559807c7f7b04f
2f0ba3293bdbe6cbbd153fd056a09e9b415a742d
c6ed5f41c0fa361410dd82899fec73790f8f883939a2cfcfaa45e60a7a29cb2a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/fonts/retinaicon-font.woff HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/fonts/retinaicon-font/style.css?ver=5.5.11
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:46 GMT
content-type: font/woff
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-length: 224676
date: Fri, 25 Nov 2022 02:39:46 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/mobili.jpg
78.135.65.20200 OK 1.7 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/mobili.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 9aed6843da0d424c2ddfadce486b502b
2d35297c485978d1b5bfa8873b0eb08ccdd3230b
ec132bdadd59cd67115ad2f7d77cd378c9048a26c86b3b5489ec565520c18d4d
GET /wp-content/uploads/mobili.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1725
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/monroe.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/monroe.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash e52528a7265aa368e080d7597ff0c19c
0432e8bd0a8cac6bfc1c1c007eeb89c092b9606d
e028e7aab6b5d63b8872b98927499535ef8d068a30968d112efa2622000637e4
GET /wp-content/uploads/monroe.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1333
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/ngk.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/ngk.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash ba4dc3352f4457c64ab9f4a279914591
6577784085db7d1872e3e29e73566bdf04233e60
5c521a21d9dfa679d5dce3e8e979ac23fe4c303171badbde8a1398b4e587b08c
GET /wp-content/uploads/ngk.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1274
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/sachs.jpg
78.135.65.20200 OK 1.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/sachs.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 2d9059f658aa5157d0942f3bed4ceeb2
fb7479dc752ca4bdb880a784286f9f6fee344bc2
d1f2580f8d76cbb5045790b26a6cce81126aeb87844808d0cba07122ea56c977
GET /wp-content/uploads/sachs.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1466
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.google.com/maps/d/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A
142.250.74.164301 Moved Permanently 0 B URL HTTP/2 www.google.com/maps/d/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps/d/embed?mid=zmyb8Qzn9WiY.kpQhMTWeiU8A HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ikizlerjaponbursa.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: application/binary
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 02:39:48 GMT
location: /maps/d/embed?mid=1g_4Kxj8u024_1KJhWNL3zPWN_KA
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info.", CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-BKPqFx1oByIVoMVwKVdLxg' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /maps/d/cspreport
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=jFvD3IoFkcBEBHfLxj_kALH69Z3iNh0e8d2DYfEF3tWKiBR14Efzj1XZnH343MrR5EZ639-mBsXp1kQUnRtjLkmRtgi0Q44IJw3IOwReCCk9J8IMLYER6DGIbggNHsFm8JErca6-DVAze8izx0hsqpeF77AxQg9lJgZL2wc8N98; expires=Sat, 27-May-2023 02:39:48 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
NID=511=SvGznoc55XLIvB9LEw2CPSNCD0aoyTq7myfOmZWc7BJgKJfdn-bjt7-LIAw5KAgd1v3h52h-rq13YeBUP7qDa9_vVvDZmMwag5TB3SqSoxlYlziSgCgXyWdWWp9uKzurH2HwDaIGFHjVCX_07X6gq729FliijpVuT7XDw6A_UZY; expires=Sat, 27-May-2023 02:39:48 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ikizlerjaponbursa.com/wp-content/uploads/supsan.jpg
78.135.65.20200 OK 1.5 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/supsan.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash e44401f91ac454adae016d8a28ec0062
0d5a42462a7283083cad8bd47cb60789572f98e8
da53442f97d223324c07f9b0756c2f6c96de16726f72b1e36c1184c16f798d23
GET /wp-content/uploads/supsan.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1528
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/trw.jpg
78.135.65.20200 OK 1.1 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/trw.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 7104fa3455905ee30aa7f920a3f34ea1
b29a05cc40e9cf376e3a9b2d11b62c28d7637636
5603acc66ad92a21f2a5767f75d3fdd1fe71ebbdfb28dbd3b0738cb37dc7b6b5
GET /wp-content/uploads/trw.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1111
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/teknorot.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/teknorot.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 2c20e77e75f651fd76a637f2ad369771
dc9eefd2871b493dde6d0d742b1e95ed0159cee9
73ea4921584313a69c1568b7a453a7445402228a4ae4ac249700a65e60eb152b
GET /wp-content/uploads/teknorot.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1336
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/images/backgrounds/404_text.jpg
78.135.65.20200 OK 5.8 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/theme/assets/images/backgrounds/404_text.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 194x57, components 3\012- data
Hash 7a16cf501bd73373a893b01927970253
257606ffc5632b102d907e6120f193b111c56942
3544ffc628b7e5a4cd0f4c85b5d7c43ebbae6aaed482b71b619cf293d22dd8fb
GET /wp-content/themes/nielsen-1/theme/assets/images/backgrounds/404_text.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-length: 5844
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/valeo.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/valeo.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 141660f141aebf738aad6444ed812489
030f457ef7a27ab4c3ee0e1d69286d94a6c6604f
39996279c1f1d0221385bc245a6022885d2c5c4477da19050018499893614ce7
GET /wp-content/uploads/valeo.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:51 GMT
accept-ranges: bytes
content-length: 1271
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/aisin.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/aisin.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash b282b941bfde88a2e251c88e494cfc21
a90c2a3de4345daf2925d2e137d0f76bf6636b19
1dba9d165ce5a35b932726f246cb3c95257d022006e0bd2a50d8a1115144640a
GET /wp-content/uploads/aisin.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:49 GMT
accept-ranges: bytes
content-length: 1259
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/boschdenso.jpg
78.135.65.20200 OK 1.6 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/boschdenso.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 98x48, components 3\012- data
Hash 41e4e4fbf5eaa11107520cc2e237e749
98349c7caa309960b4efeda61e68886da5327fd9
63d59a4254cd663ce0e19d1487b7f294f4fa863bcf6928714999ae140edc5bb4
GET /wp-content/uploads/boschdenso.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1595
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
www.ikizlerjaponbursa.com/wp-content/uploads/castrol.jpg
78.135.65.20200 OK 1.3 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/castrol.jpg
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 98x48, components 3\012- data
Hash 229419aab2d1071acc02a0ed03afdf08
f703abff9eea0f6187f31d9a5c1155e781d35c69
95433aa7c1df5ff5326f315a0963217b489235929056f2f3199175a7f589079d
GET /wp-content/uploads/castrol.jpg HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/jpeg
last-modified: Sun, 25 Oct 2020 22:28:50 GMT
accept-ranges: bytes
content-length: 1290
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/mapspro/_/ss/k=mapspro.gmeviewer.Pn-J8qJAyaY.L.F4.O/d=0/rs=ABjfnFW8C0AVCS9qvHgY8qPLpX-XQvsc8w
142.250.74.163200 OK 42 kB URL HTTP/2 www.gstatic.com/mapspro/_/ss/k=mapspro.gmeviewer.Pn-J8qJAyaY.L.F4.O/d=0/rs=ABjfnFW8C0AVCS9qvHgY8qPLpX-XQvsc8w
IP 142.250.74.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7095418a3d7057369a9bdf84d7f05e18
fcfbc3a2e0dffcb6e5d40e96098866dd87876749
1e3773a417c072becfd7f5df9ee0a90e7f99fafc6de28f5f684b328308913890
GET /mapspro/_/ss/k=mapspro.gmeviewer.Pn-J8qJAyaY.L.F4.O/d=0/rs=ABjfnFW8C0AVCS9qvHgY8qPLpX-XQvsc8w HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-mapspro
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="geo-mapspro"
report-to: {"group":"geo-mapspro","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-mapspro"}]}
content-length: 41997
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 22:01:11 GMT
expires: Tue, 21 Nov 2023 22:01:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Nov 2022 04:33:13 GMT
content-type: text/css; charset=UTF-8
age: 275917
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?v=3.50&client=google-maps-pro&language=no®ion=NO&libraries=places,visualization,geometry,search
142.250.74.10200 OK 59 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3.50&client=google-maps-pro&language=no®ion=NO&libraries=places,visualization,geometry,search
IP 142.250.74.10:0
File type ASCII text, with very long lines (2543)
Hash 800accf0d01a503eaddf2fb5c725765b
e92671fc631c0082a77ba74caf335670a89abd56
28f906f2c53d26d9c007722333956d50fdc23a712bb5c60283336fe48b31f65c
GET /maps/api/js?v=3.50&client=google-maps-pro&language=no®ion=NO&libraries=places,visualization,geometry,search HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 58994
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
date: Fri, 25 Nov 2022 02:18:43 GMT
expires: Fri, 25 Nov 2022 02:48:43 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 1265
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/apple-touch-icon-144x.png
78.135.65.20200 OK 5.0 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/apple-touch-icon-144x.png
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced\012- data
Hash a34332b6d7c789584228c9b97cef5eb3
73a91e2f714ed0d679983d7824b576fbdb1f0f53
818ca52bb6eaf151c612d5e1412bdb8d444940a50bf78394055732f5288a37fb
GET /wp-content/themes/nielsen-1/apple-touch-icon-144x.png HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 02:39:47 GMT
content-type: image/png
last-modified: Fri, 16 Oct 2020 15:30:10 GMT
accept-ranges: bytes
content-length: 5043
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
vary: User-Agent,User-Agent
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:39:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 111940
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 114359
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mapspro/_/js/k=mapspro.gmeviewer.no.WBrZ3eq7CV4.O/d=0/rs=ABjfnFXdEtvBH2WtS4AS2L_7S9V6O3S5qA/m=gmeviewer_base
142.250.74.163200 OK 27 kB URL HTTP/2 www.gstatic.com/mapspro/_/js/k=mapspro.gmeviewer.no.WBrZ3eq7CV4.O/d=0/rs=ABjfnFXdEtvBH2WtS4AS2L_7S9V6O3S5qA/m=gmeviewer_base
IP 142.250.74.163:0
File type ASCII text, with very long lines (549)
Hash 54c2c0480b84fd3b20676bc4573a814f
c79ba39fe578473ae5571f8b755c0299347a5c52
f91d4a03754404850dd369b44a09e81f12b9b914562b9b646478f8bf9987bd2f
GET /mapspro/_/js/k=mapspro.gmeviewer.no.WBrZ3eq7CV4.O/d=0/rs=ABjfnFXdEtvBH2WtS4AS2L_7S9V6O3S5qA/m=gmeviewer_base HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-mapspro
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="geo-mapspro"
report-to: {"group":"geo-mapspro","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-mapspro"}]}
content-length: 239659
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 04:29:35 GMT
expires: Thu, 23 Nov 2023 04:29:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Nov 2022 06:31:05 GMT
content-type: text/javascript; charset=UTF-8
age: 166213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 131537
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mt.googleapis.com/vt/icon/name=icons/onion/1493-wht-blank_maps-4x.png&filter=ffDB4436
142.250.74.46200 OK 537 B URL HTTP/2 mt.googleapis.com/vt/icon/name=icons/onion/1493-wht-blank_maps-4x.png&filter=ffDB4436
IP 142.250.74.46:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 1a80367ea5d86bb83df303c1fdf2095f
f0754f98a6f8035b3b2e6d7cd12bd3a0a123dfda
8d58cb08208ce32c62febc81888bfaf8cf9770b11c69389899cb38c46cb387b6
GET /vt/icon/name=icons/onion/1493-wht-blank_maps-4x.png&filter=ffDB4436 HTTP/1.1
Host: mt.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'none'; object-src 'none'; base-uri 'none'
x-content-type-options: nosniff
x-server-version-bin: CggIBBDUkvKbBg==
server: scaffolding on HTTPServer2
content-length: 537
x-xss-protection: 0
x-frame-options: SAMEORIGIN
date: Thu, 24 Nov 2022 08:46:05 GMT
expires: Tue, 08 Aug 2023 13:36:27 GMT
cache-control: public, max-age=22222222
content-type: image/png
age: 64424
server-timing: gfet4t7; dur=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ikizlerjaponbursa.com/?wc-ajax=get_refreshed_fragments
78.135.65.20200 OK 573 B URL HTTP/1.1 www.ikizlerjaponbursa.com/?wc-ajax=get_refreshed_fragments
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type JSON data\012- exported SGML document, ASCII text, with very long lines (1487), with no line terminators
Hash 870b85874038bec91a3eadf4172e141b
50345118e431d24040b357543d278a464af38d40
222236898af0d1077eec7e3bf8473889db4c710390f8afe74ea74467597e9ae7
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://www.ikizlerjaponbursa.com
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
access-control-allow-origin: http://www.ikizlerjaponbursa.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 573
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
date: Fri, 25 Nov 2022 02:39:48 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/uploads/logo.tif
78.135.65.20404 Not Found 14 kB URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/uploads/logo.tif
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2587), with CRLF, LF line terminators
Hash f0fbdd1b473725e54faebb4680da866f
286c46b6d4d3e4606481dcee438105c12d0742cb
973a99375bb976019f074c96f74ede731e68d397ea4f66bafae0167ce7d570b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/logo.tif HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <http://www.ikizlerjaponbursa.com/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
date: Fri, 25 Nov 2022 02:39:48 GMT
server: LiteSpeed
ssl.gstatic.com/ui/v1/star/star4.png
142.250.74.99200 OK 294 B URL HTTP/2 ssl.gstatic.com/ui/v1/star/star4.png
IP 142.250.74.99:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash c3e38fc01d8bd2d4a1150aa6b4414852
e4d1abd103711b8e2d863b75815f893f602b7561
e5b7b36c80b9444eefd181c2862412165e771328f66b0b95ee96d6c59957d13e
GET /ui/v1/star/star4.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gstatic-ui-assets
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="gstatic-ui-assets"
report-to: {"group":"gstatic-ui-assets","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gstatic-ui-assets"}]}
content-length: 294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 01:57:22 GMT
expires: Sun, 19 Nov 2023 01:57:22 GMT
cache-control: public, max-age=31536000
age: 520947
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ikizlerjaponbursa.com/info/login.php
78.135.65.20404 Not Found 0 B URL HTTP/1.1 www.ikizlerjaponbursa.com/info/login.php
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Analyzer Verdict Alert fortinet Malware
GET /info/login.php HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/info/login.php
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.ikizlerjaponbursa.com/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
date: Fri, 25 Nov 2022 02:39:48 GMT
server: LiteSpeed
www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/cache/custom
78.135.65.20404 Not Found 0 B URL HTTP/1.1 www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/cache/custom
IP 78.135.65.20:0
ASN #49334 Sh Online Iletisim Anonim Sirketi
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/nielsen-1/cache/custom HTTP/1.1
Host: www.ikizlerjaponbursa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/wp-content/themes/nielsen-1/cache/dynamics.css?ver=5.5.11
Cookie: PHPSESSID=e3f7ea0f8875f560f0674a88b62043fc
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <http://www.ikizlerjaponbursa.com/wp-json/>; rel="https://api.w.org/"
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent,User-Agent
date: Fri, 25 Nov 2022 02:39:47 GMT
server: LiteSpeed
maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3
IP 104.18.10.207:0
GET /font-awesome/4.6.3/css/font-awesome.min.css?ver=4.6.3 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ikizlerjaponbursa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 02:39:47 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-04-23 06:04:33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: b2542e4bd9184b6b49f42c999639b8b3
cdn-cache: HIT
cf-cache-status: HIT
age: 17454150
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76f70410be26b4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/maps/d/embed?mid=1g_4Kxj8u024_1KJhWNL3zPWN_KA
142.250.74.164200 OK 0 B URL HTTP/2 www.google.com/maps/d/embed?mid=1g_4Kxj8u024_1KJhWNL3zPWN_KA
IP 142.250.74.164:0
GET /maps/d/embed?mid=1g_4Kxj8u024_1KJhWNL3zPWN_KA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ikizlerjaponbursa.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 02:39:48 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info.", CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-jEHDD4JTgiMM41yJ-exxVg' 'unsafe-inline' 'strict-dynamic' https: http:;object-src 'none';base-uri 'self';report-uri /maps/d/cspreport
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=hhFojEuliihNjhh_ca1ZDfjd6jlAIwb9cVRdo7uqyTF1Rq0Oaol8r01R-bRG1R1F68MQzHMcN_-DdxVaOVj_iWr1wVi9OsuH9N7sN1NhS2WH8NGNo-jYuGWhxXT7W5ZLyQFZ-pgzDo0T_Uf8EWGY4PmxBvtbXgSLBsmAxOx06ng; expires=Sat, 27-May-2023 02:39:48 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
NID=511=Q_2aGHaXTRZxeBRY69tifIGEv9fzy7V-ZyC2Qx_PaN791onJxTWNFYFH3Rk7zH4Z2uOXYff8oKvNOyMyQ0pVilRMRs5bVJ2r8yUchQ1Ia9ROpptGqIQMoc102tKpv0kTvK4LcuI41vLD7nbn-aLRaS7mQglsA73eTW_GAfI3A1g; expires=Sat, 27-May-2023 02:39:48 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 02:39:48 GMT
date: Fri, 25 Nov 2022 02:39:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2