firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kZdtAKLM6lkPjvtgqVNemUUIiJBAYq3Pkgj9xZPzn_4RRcWXQaU_MQ==
Age: 235162
tutmacli.com/hHGFjd
93.89.224.82302 Found 683 B IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Malware
GET /hHGFjd HTTP/1.1
Host: tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sat, 08 Oct 2022 09:06:39 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: http://www.tutmacli.com/hHGFjd
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15018
Expires: Sat, 08 Oct 2022 13:16:58 GMT
Date: Sat, 08 Oct 2022 09:06:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2942
Expires: Sat, 08 Oct 2022 09:55:42 GMT
Date: Sat, 08 Oct 2022 09:06:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4rgG9ZViZ4AvqHonpnIQaxQ9+iFEEUPGz/BqXVoUmsFxESFgyhPJHqcATcy1dqt+6Hiz3k7dsSY=
x-amz-request-id: YJFWQMC8ASM54KZV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 08:59:32 GMT
age: 428
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 09:06:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.tutmacli.com/hHGFjd
93.89.224.82200 OK 8.3 kB IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (599), with CRLF line terminators
Hash bf17faf877d4a2992b0a5e1794f66909
95f903661b5061f1adad987f3510c38140bcad9f
be50eb74ae8ba1167e62fc6028fe605b58247365fcfd242c197dfd4f53134f76
Analyzer Verdict Alert fortinet Malware
GET /hHGFjd HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 8295
content-encoding: gzip
vary: Accept-Encoding
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 08 Oct 2022 08:29:41 GMT
Expires: Sat, 08 Oct 2022 09:23:04 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MhKmX6ph--LnS1kN1pMAgSz1gPuvxnFkQVFU_0H-VfLKuuAxiiOHxA==
Age: 2220
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash e75e7b4c9bf71c4a14d5e1d1946b161a
36148f31ea702a23a3f0dafd907a9069234021e7
e43b40968f165ec7b121020103aa40529d891aa2d03ead26ed47adefc4d6ab6d
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tutmacli.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 08 Oct 2022 09:06:41 GMT
date: Sat, 08 Oct 2022 09:06:41 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1619
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:41 GMT
Last-Modified: Sat, 08 Oct 2022 08:39:42 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 74b63831a0a449c3e37b584db0009072
929f9f036c4a6a078c51c3b3dc2a7f902c9ee9ac
686845b4cf9a67078f03cb221ce13175a72074f6aa3804ba4fa06623ab856bae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tutmacli.com/style/css/responsive.css
93.89.224.82200 OK 5.6 kB URL HTTP/1.1 www.tutmacli.com/style/css/responsive.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash fa079ae0d893c7ff3a7956284d1d78da
e14ec89aba09530472cd1cfce4339452f41d17e1
15119dfe9fdfdf756864540640a5dbee516e943acc0af03e62daf2f4a18d31f4
GET /style/css/responsive.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5603
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/css/bootstrap.css
93.89.224.82200 OK 21 kB URL HTTP/1.1 www.tutmacli.com/style/css/bootstrap.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (65319), with CRLF line terminators
Hash d5903e82e89ebdb55fd408a6be3c7ca2
0525a66a2ad7ba9472596c64b027051baf777df9
5e97e9be2c89769e22c12f63f42da542b45ea8beba8cd8ed3201503a671f212d
GET /style/css/bootstrap.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 21094
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/css/color-themes/brown-theme.css
93.89.224.82200 OK 2.9 kB URL HTTP/1.1 www.tutmacli.com/style/css/color-themes/brown-theme.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (677), with CRLF line terminators
Hash 44d85d40fcd488a207da43bd3e15602b
290be9893ce4c99bc2df9287d43444ae09391fe7
42f67c78a25dd05d920e96f101f26989b3c7c3e0665ba67c154390c48dd9ca96
GET /style/css/color-themes/brown-theme.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2925
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/css/style.css
93.89.224.82200 OK 31 kB URL HTTP/1.1 www.tutmacli.com/style/css/style.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (677), with CRLF line terminators
Hash b4efd5c68029f2b2acd0c17c445bb250
28eda83fc1ac88e5fc7abcc0620737802329f3f6
3a5a86f51f07fa2c904bfcfecab15f7a08398edcb3dbfb6246003ea4327479cc
GET /style/css/style.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 31135
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1d13c38762edee3ea0af663f3e4553be
894a45402ded63c20b5062b2aae8b3894be80996
781d3684b9efe9d34182e7a740c759749a80c085576681bd5077d342e4448ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1d13c38762edee3ea0af663f3e4553be
894a45402ded63c20b5062b2aae8b3894be80996
781d3684b9efe9d34182e7a740c759749a80c085576681bd5077d342e4448ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tutmacli.com/style/sabit/dist/sweetalert.css
93.89.224.82200 OK 2.4 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/dist/sweetalert.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 29fecdefc8c1acd3711b60b3f4a765b3
50cfa346c64cb2171eebba4463be66792a709343
004370b5fed169bc135943cb7c3a315540b04aab1a337474e843be5b35074908
GET /style/sabit/dist/sweetalert.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:29:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2411
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Arimo:400,400i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Arimo:400,400i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i
IP 142.250.74.10:0
Hash 9f27a9aca3ae3ef063b8361f57bb0968
8382d465a9acb280808bd6386f37d32372eb58ad
f62fcee9e207e859f8d0f2a2d88375c7a7d91e5e35248e42770336ee9d18087c
GET /css?family=Arimo:400,400i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tutmacli.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 08 Oct 2022 09:06:41 GMT
date: Sat, 08 Oct 2022 09:06:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tutmacli.com/style/sabit/css/font-awesome.css
93.89.224.82200 OK 5.4 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/css/font-awesome.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 471d7401e31f9cd6fea03d0e447d1de3
a200631acfd919abd77fb43a725cc9574bc7f90d
e0a1bdb9b133a19a25704ed1fe4ee2384653fd12bc6afa61fb0fa03aa71965d4
GET /style/sabit/css/font-awesome.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:29:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5394
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
push.services.mozilla.com/
52.41.246.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.246.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bXgrup8RHEHRY3G0dDV1hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ma94tLmyoDIlgZopO9/q1r0jL34=
www.tutmacli.com/style/sabit/css/jquery-accordion-menu.css
93.89.224.82200 OK 2.0 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/css/jquery-accordion-menu.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 7a7604c2571fce78faef76d65ee9ce6f
d48de5243b34bbf785961590a8b0e99d4d1adda8
e0bb37ef8260af77e365546a3198c7c7229418c0883919ced4bb603db5fec9ed
GET /style/sabit/css/jquery-accordion-menu.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:29:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1951
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
142.250.74.10200 OK 726 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP 142.250.74.10:0
Hash f695a50aad9a7f635d32fb725051cdf9
0528fac2131b6367b6ffde48dd421a0ea945c504
8deb5e5efaca71e5ef829c4fa214913332aba71be8d68fa2c291789f92c9ea18
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 08 Oct 2022 09:06:41 GMT
Date: Sat, 08 Oct 2022 09:06:41 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.tutmacli.com/style/js/bootstrap.min.js
93.89.224.82200 OK 14 kB URL HTTP/1.1 www.tutmacli.com/style/js/bootstrap.min.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (50450), with CRLF line terminators
Hash 4b6539d62300872e49f15ba458367760
655f44cb96cbf6c091a31878d392ab2573e1b996
a264db5b2fa903c625f3c85ce81ce7cf9cb3edd4857ca72ded7dfab3895b43d9
Analyzer Verdict Alert fortinet Malware
GET /style/js/bootstrap.min.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:40 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14055
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/js/popper.min.js
93.89.224.82200 OK 7.2 kB URL HTTP/1.1 www.tutmacli.com/style/js/popper.min.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (20322), with CRLF line terminators
Hash a8d36c1d009a6e6745ff6c09dc691c04
bc73a889821d47f900dad226080247400a6591ce
3e94a706d5ac9349b07e6da41fc1677db13dddc4dc38d66f9dad45c4a8b60855
Analyzer Verdict Alert fortinet Malware
GET /style/js/popper.min.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7243
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/js/wow.js
93.89.224.82200 OK 2.2 kB URL HTTP/1.1 www.tutmacli.com/style/js/wow.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (6269), with CRLF line terminators
Hash 3a0ccdd875f4f4fec83bbbf33b827285
df6193535cfbc57c662a5a67cd88da66fa617347
04cf198b89e33c5bdecf1406e68085cb6d372b567a0653c551f37f4eff76df14
Analyzer Verdict Alert fortinet Malware
GET /style/js/wow.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2212
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/appear.js
93.89.224.82200 OK 1.4 kB URL HTTP/1.1 www.tutmacli.com/style/js/appear.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 6e579d2e7a40e9f29986859858306345
861bd2368d7c3af07957477dca1d7f3161b06cd6
df6e430238f062023873e9cdf6b2dffa7fb53bba0f25143d9cc5463dd069765d
Analyzer Verdict Alert fortinet Malware
GET /style/js/appear.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1368
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/script.js
93.89.224.82200 OK 3.4 kB URL HTTP/1.1 www.tutmacli.com/style/js/script.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Unicode text, UTF-8 text, with very long lines (342), with CRLF line terminators
Hash ceae65cd1ecd7fb876a3fb58601ce577
1ab51fcd5ee3bfed687bbffa082e46afbf5e33cf
df2f280c5aded819904da948f850c81fb4e848aee5d69e931eed8381081a1103
Analyzer Verdict Alert fortinet Malware
GET /style/js/script.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3419
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/mixitup.js
93.89.224.82200 OK 12 kB URL HTTP/1.1 www.tutmacli.com/style/js/mixitup.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (367), with CRLF line terminators
Hash 492f40ec5d351beee3d87272fc135a9a
25660ef5d97b4a0e2a3800948fc8ab68b0ac2aad
9a87511d0c3a6d70e9e251894c9634553399729eef7f1889a328a8196d8f1945
Analyzer Verdict Alert fortinet Malware
GET /style/js/mixitup.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 11456
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/jquery.js
93.89.224.82200 OK 34 kB URL HTTP/1.1 www.tutmacli.com/style/js/jquery.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (32077), with CRLF line terminators
Hash 9b072f23c0316a3e7132c91202d94dcc
52e738814b77b99185b70714c851459c48e25d9b
94c0333acd2dc08c05154a32d6f04256e83c25574d2e6a2e96c92f1403f548df
Analyzer Verdict Alert fortinet Malware
GET /style/js/jquery.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33805
date: Sat, 08 Oct 2022 09:06:40 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/js/jquery-accordion-menu.js
93.89.224.82200 OK 1.1 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/js/jquery-accordion-menu.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 30982b5f8e1f6d7b46c5e522b2dc76b5
0f6e1f12037c89af4d8566f792831517b8169592
99eca6638576075cbac30307deb9ebb75a0df15ed9ba95772c40610b10119833
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/js/jquery-accordion-menu.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1066
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/owl.js
93.89.224.82200 OK 19 kB URL HTTP/1.1 www.tutmacli.com/style/js/owl.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (360), with CRLF line terminators
Hash 9174e81007b9fd95cdd7897a64d46368
76f8241d17adfa12e64cfa429952ea82adb10cbc
c13ed9dd3f8cadaa14cde9ac3b3a9746b669d7bada441c25d69600775046d21a
Analyzer Verdict Alert fortinet Malware
GET /style/js/owl.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18684
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/js/jquery.fancybox.js
93.89.224.82200 OK 36 kB URL HTTP/1.1 www.tutmacli.com/style/js/jquery.fancybox.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 8c67bdbb988e2194af6606391b8a3c27
f01356a4f2502cc214aa363bf73908baa134f516
c3761340c379c4994a2e140beeb5a0c1ab06b191942acbab982a5f5c4b621d33
Analyzer Verdict Alert fortinet Malware
GET /style/js/jquery.fancybox.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:27:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 36466
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/video-resim/YouTubePopUp.css
93.89.224.82200 OK 932 B URL HTTP/1.1 www.tutmacli.com/style/sabit/video-resim/YouTubePopUp.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 2a2ea6e83de12eb93ecb001053435602
fcfc8397226a677ddb5bf6a5c8cb7d3313e979c9
b664c7b5220587b95dfadcedefde7e654e81e297e5eb7a070ae52049c8e11ec2
GET /style/sabit/video-resim/YouTubePopUp.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 932
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/video-resim/YouTubePopUp.jquery.js
93.89.224.82200 OK 977 B URL HTTP/1.1 www.tutmacli.com/style/sabit/video-resim/YouTubePopUp.jquery.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash e124b863453fcf29e82e84557b235b93
2505d45fab37e8994cda43d7b4e5158c711cda9a
3325696cd50c719d29754114a497d22a6a0b548ff988c561a4a7b8392bdd4177
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/video-resim/YouTubePopUp.jquery.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 977
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/dist/sweetalert.js
93.89.224.82200 OK 8.8 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/dist/sweetalert.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (480), with CRLF line terminators
Hash 0a9a4e8666a42c5967637666b57c038f
b8f259ea5c2d43a8c280a4f31ad6eef3616fcfab
bbeefe6c47f1cc1ef711043c8c458daac68fb2cb923557bb690d1c0bf6a4f826
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/dist/sweetalert.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8808
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/video-resim/fresco/fresco.js
93.89.224.82200 OK 19 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/video-resim/fresco/fresco.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (65357), with CRLF line terminators
Hash 4ae9589aec529531eda492803f7bbb6e
40c756c27f633cf3633a53021ccf0efea6cf7980
6209d6a97aaec660e627c6f862aa26111e1b3cd95e02d2597cce24244f8daf5c
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/video-resim/fresco/fresco.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18741
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/ui/jquery.datetimepicker.css
93.89.224.82200 OK 4.3 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/ui/jquery.datetimepicker.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (1959), with CRLF line terminators
Hash ad265246e5b74427d9fffd8755c2fe37
112f32de086cf7ee13bd6d6d3b427246c9cb6993
4610bcd7d773bd552ad5df686bb2897e6e639c9ea27bd6e2f185a2f63ac40f05
GET /style/sabit/ui/jquery.datetimepicker.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4272
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/ui/jquery.datetimepicker.js
93.89.224.82200 OK 18 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/ui/jquery.datetimepicker.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Unicode text, UTF-8 text, with very long lines (2609), with CRLF line terminators
Hash 49dfd368861b45f0732aaf039d43916f
5cd3d7cf46d64999943bc6189ceb32ef9bcfa5b5
12fad91e2d2ed07a4121642c77657e512a9a892715ad7ffb2965fabe8f9c53f7
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/ui/jquery.datetimepicker.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18009
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/flaticon.css
93.89.224.82200 OK 2.1 kB URL HTTP/1.1 www.tutmacli.com/style/css/flaticon.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash f183a988a5198fce2a522427839c7d42
cea1b9b59b4eb8859f37ada76ccb821ee2a4b8f6
c48061c35161677a0abee2701ea58f7ab06357897b41becdb9514130c39efebb
GET /style/css/flaticon.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2131
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/ui/jquery.timepicker.min.js
93.89.224.82200 OK 5.1 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/ui/jquery.timepicker.min.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (14897), with CRLF line terminators
Hash 99a10266a1645000b2266b191495989f
aef29cdf7edf2300c5c9cf587d5424b669a19d80
4835cb3e69241a7b1a33c72dfbf0a862aea480d430f0e62390382473869d7d50
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/ui/jquery.timepicker.min.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5062
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3443
Expires: Sat, 08 Oct 2022 10:04:05 GMT
Date: Sat, 08 Oct 2022 09:06:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3443
Expires: Sat, 08 Oct 2022 10:04:05 GMT
Date: Sat, 08 Oct 2022 09:06:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3443
Expires: Sat, 08 Oct 2022 10:04:05 GMT
Date: Sat, 08 Oct 2022 09:06:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3443
Expires: Sat, 08 Oct 2022 10:04:05 GMT
Date: Sat, 08 Oct 2022 09:06:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3443
Expires: Sat, 08 Oct 2022 10:04:05 GMT
Date: Sat, 08 Oct 2022 09:06:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70128380-51a1-430f-bca1-5212a3dd8807.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70128380-51a1-430f-bca1-5212a3dd8807.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c712a8d12119cdef4376b6055f3493c
e040dc81a71c6a94dc600ecb61bf0c8f1a086e85
6a2c6384e05dae0013a2890ad63c91af7d2f04a0d706ce496f44defc7b209fa7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70128380-51a1-430f-bca1-5212a3dd8807.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11618
x-amzn-requestid: 5a8e397a-41df-41a1-a71e-25cedc35b063
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R5H9aoAMFyew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-3286ff464612a56158b81f4e;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: exgvxCz0xzr_iWe29iXJx8gzCDdejMsZdvflrWVrvXKhUc6c0bz2lQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:39:48 GMT
age: 41214
etag: "e040dc81a71c6a94dc600ecb61bf0c8f1a086e85"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aaHDHE38nByvpccXO4wHgHk6BAOPZDsFdXxi2-KgjUaXvjC58nlGUQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:55:27 GMT
age: 40275
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcf23b32642f7a82a0a7d734a631bca
9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7
add9aab4427819610f8d693758a752910cf314346e974b7636a82381ab9daa4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4252
x-amzn-requestid: 8d6a225c-6389-4f20-9b90-494841f47c99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4GjCIAMFX-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-4076dc933185d9fd6b68e802;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Wb1JAlWtR9sSEi_KuYZivvMivSxZjo92LGpWgFppol5zgapK6eQ-dg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:39:48 GMT
etag: "9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7"
content-type: image/jpeg
age: 41214
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa96a8500-2a22-4035-9ef1-326d1694aabe.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa96a8500-2a22-4035-9ef1-326d1694aabe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15ba06e4cfdbb4480ad9d3d07a70f7d1
54050ea4062695b87d04d69f455b957bc93c9be6
9ee148a18daffcd7e3892ee7818886b7ee8763272c97b627d368d1dc995836bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa96a8500-2a22-4035-9ef1-326d1694aabe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8628
x-amzn-requestid: 858952a7-50aa-4942-a58a-6b1a8ead66cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp2BeG45oAMF0yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409d3c-6e26167b1944a0e518b0686e;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:42:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: olEe_ETm0OBokLbkhr2a5invlm5stvDH86HZKIIDNuytlH7bgr_SpQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:23:04 GMT
age: 38618
etag: "54050ea4062695b87d04d69f455b957bc93c9be6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffec5a542-4e93-4d7a-a09f-5cebcce8d0c5.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffec5a542-4e93-4d7a-a09f-5cebcce8d0c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 778aa3b0222b676e80806676ae716298
6a952d1135175cc4a2fc849cfd844ba069dfee8b
e4c9a9c773e0f50b30fe53039a973d8e1f13f6fbd6599780352ec7d15753060b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffec5a542-4e93-4d7a-a09f-5cebcce8d0c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7624
x-amzn-requestid: 05581c97-c2c5-4216-8241-5fd08619289a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1DkFqqoAMFmQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb0-6c6a6bee11ea0a9f5c573818;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NqPhVPAPNLkBhd5jaZhT-RutgwM9vh7qoNmWxWMFfAGXIYmMTUA4Yg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:44:10 GMT
age: 40952
etag: "6a952d1135175cc4a2fc849cfd844ba069dfee8b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Vy9jQu1a8BGypY4C4u_9gao5wPEkVHgArhG2zMNdH8KfBS0lfmyHBA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:43:41 GMT
age: 40981
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.tutmacli.com/style/css/animate.css
93.89.224.82200 OK 4.7 kB URL HTTP/1.1 www.tutmacli.com/style/css/animate.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash 70858ea0c0f53ec415781867302e93c1
b5b39343c5ec019540528a6f21e17c0c386f1c9a
f97f9d7b4cca153fd82806f736b5a2d57f8197ddae906e306f30729699c17f03
GET /style/css/animate.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4678
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/font-awesome.css
93.89.224.82200 OK 7.5 kB URL HTTP/1.1 www.tutmacli.com/style/css/font-awesome.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type troff or preprocessor input, ASCII text, with very long lines (372), with CRLF line terminators
Hash 6db8b580280056e275e042702f9aabc6
b7edc9bccfc486c75ac474cc51705f3431be74d1
b14b9485ccc86a1bb2635ee5fbe833a9350a3c6d6a4e96c247deb8bf02699398
GET /style/css/font-awesome.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7499
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/jquery.mCustomScrollbar.min.css
93.89.224.82200 OK 4.0 kB URL HTTP/1.1 www.tutmacli.com/style/css/jquery.mCustomScrollbar.min.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (42907), with no line terminators
Hash 4cdf156aceefb3e7969c210b65c6f876
908065d6a5113be004055065c0af9604f7f76bb7
f5c7ff333fd785e09df07df31d74226a606a0e00946487868968738c30276592
GET /style/css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3976
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/owl.css
93.89.224.82200 OK 1.2 kB URL HTTP/1.1 www.tutmacli.com/style/css/owl.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash dca55284c714542952ee523baa74f276
6342cfb26c395df8d0b35aa1e07534a6c2658df3
87c7591e22dc7c602cc2c070d740da2a61e28c22d81a99bb4e9b29d1b108c6e3
GET /style/css/owl.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1167
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/jquery.bootstrap-touchspin.css
93.89.224.82200 OK 310 B URL HTTP/1.1 www.tutmacli.com/style/css/jquery.bootstrap-touchspin.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with CRLF line terminators
Hash a7beb30589f5cec17f692e0dd82b6d30
d22d90412de4f14666f6200485d5e5004209f011
2334886fe452450f8f316955d0520528616ce460c3d0fb48acf3ba4ca5ae21c8
GET /style/css/jquery.bootstrap-touchspin.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 310
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
www.tutmacli.com/style/css/jquery-ui.css
93.89.224.82200 OK 8.5 kB URL HTTP/1.1 www.tutmacli.com/style/css/jquery-ui.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (2363), with CRLF line terminators
Hash 321638e1c7b94b3a8a602359ccc6befa
cf1620bd65dd3797b2b1ab795c5ac8b17f529dcd
f01ce2fbe1db24e5d6c8d134677d4427af48a13504d3193046e03ce19d72d06c
GET /style/css/jquery-ui.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8451
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/style/css/jquery.fancybox.min.css
93.89.224.82200 OK 3.2 kB URL HTTP/1.1 www.tutmacli.com/style/css/jquery.fancybox.min.css
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Hash 4aa83282cfd78eff0eb96f1ef859c41c
2dad526069f66371f4f390c8bd451116e7a3681e
c111dffb462e77cb52ee7474752b18e01ce935d5295e212c9031f42cf30326f5
GET /style/css/jquery.fancybox.min.css HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/style.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: text/css
last-modified: Thu, 01 Aug 2019 07:27:14 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3155
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/ui/jquery-ui.js
93.89.224.82200 OK 116 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/ui/jquery-ui.js
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type ASCII text, with very long lines (547), with CRLF line terminators
Size 116 kB (115874 bytes)
Hash 17c6e7b3057edaa56d78055d721ffa34
264f202f91b5d52c8b552011d95817bf44b833fd
245e8d1523ea40e4cff7e8664747b4a788ada7eeae732201bd218cc1807ee921
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/ui/jquery-ui.js HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:41 GMT
content-type: application/javascript
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 115874
date: Sat, 08 Oct 2022 09:06:41 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 18260, version 1.0\012- data
Hash 6dea752293556883fdae057d588b0bb1
e4d090e03bb920f5ddf7b09937428b2a0a2a9ee0
1ff84f1e03eb15dedc4668f0817372b734934076bc936e12c5c0bd3944dab0c0
GET /s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tutmacli.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 17:03:19 GMT
expires: Fri, 06 Oct 2023 17:03:19 GMT
cache-control: public, max-age=31536000
age: 144204
last-modified: Mon, 11 Jul 2022 21:03:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tutmacli.com/upload/bayraklar/_en.png
93.89.224.82200 OK 5.3 kB URL HTTP/1.1 www.tutmacli.com/upload/bayraklar/_en.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a07beffbd7b0d7a6e284ebb5c4eca61
26b7a475f77f68cbf2915c5c810db1ccd62318fc
eefc59ceb7680afdb3634c9140bd4e1006defdb5c9d7c9bb18ec0eba8605dbb4
GET /upload/bayraklar/_en.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/png
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-length: 5257
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tutmacli.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:08:19 GMT
expires: Tue, 03 Oct 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 388704
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17188, version 1.0\012- data
Hash 393d0ca42a3bfbd34fb5b86f67e426ff
989cf4c13645ec6307b8bf399b448113ab6deaa5
90ebbbbaded0b3957104970c5523090c52c7863ad78cce4f9258f576e154397e
GET /s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tutmacli.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:40:15 GMT
expires: Tue, 03 Oct 2023 21:40:15 GMT
cache-control: public, max-age=31536000
age: 386788
last-modified: Mon, 18 Jul 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10XxCF8jA.woff2
216.58.207.195200 OK 57 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10XxCF8jA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 56608, version 1.0\012- data
Hash ccc1f4546bb8d0d7d8ab5b560c9c1e8e
4da28604056a6bd6973a7f04e5de0f1fb0fd97d5
68d95266c261523aca89fa7ce2f796e14283366d8aa6f175e579e70b4edd06a3
GET /s/arimo/v27/P5sMzZCDf9_T_10XxCF8jA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tutmacli.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 03:09:52 GMT
expires: Tue, 03 Oct 2023 03:09:52 GMT
cache-control: public, max-age=31536000
age: 453411
last-modified: Mon, 11 Jul 2022 21:13:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 09:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tutmacli.com/upload/bayraklar/_ar.png
93.89.224.82200 OK 4.9 kB URL HTTP/1.1 www.tutmacli.com/upload/bayraklar/_ar.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 20a43c76d43202c4f737d8a3674b8b1f
230d81d37363b12270cac8cd47e9d6ce2527e7aa
b9ebaa96cfd76918d4ef5bce94e439d2b62c706ba941c96f72a24fe89d29be38
GET /upload/bayraklar/_ar.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/png
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-length: 4911
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/bayraklar/_ur.png
93.89.224.82200 OK 4.7 kB URL HTTP/1.1 www.tutmacli.com/upload/bayraklar/_ur.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 48f7d3ec197f9df71dc42083f5b211f5
7c8e56c4571e06117976166d2124787a2242e6a5
9e34a4ffd8b10a578f991cc17e75826d7a18cd4333e99f7ece45c386542ea64a
GET /upload/bayraklar/_ur.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/png
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-length: 4724
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/bayraklar/de.png
93.89.224.82200 OK 4.6 kB URL HTTP/1.1 www.tutmacli.com/upload/bayraklar/de.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 31 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash b5eb7c9583ec40a0a643300db4deffb7
50028f72b124ed6e74b5c8013752d00dd335fa79
3f16fedc7c9d865e772860c1cdcd2fd59753b66ab1f263374ce11b14a964d176
GET /upload/bayraklar/de.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/png
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-length: 4570
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/b5.jpg
93.89.224.82200 OK 57 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/b5.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:08:02 20:23:45], baseline, precision 8, 500x500, components 3\012- data
Hash 35eeeaef409ca8d34fa461ad9c0a4034
1537e7b851f3e030ae4b617a7bce49a2fd236fab
50517708e640ad61010bed8700b94968baed3886ed9cc169d3116e252e1a99a1
GET /upload/galeri/b5.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:48:18 GMT
accept-ranges: bytes
content-length: 57405
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/b4.jpg
93.89.224.82200 OK 94 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/b4.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:08:02 20:23:15], baseline, precision 8, 500x500, components 3\012- data
Hash b7e93e26fb9518ee3c07d8ca056124c3
318d70be7f4d1118779b2beb81e3369d60f53bb2
425246012f7fdc5d1616a70906072abf2d4225853517b0a85e810099c8de9c9e
GET /upload/galeri/b4.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:48:10 GMT
accept-ranges: bytes
content-length: 93521
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/b1.jpg
93.89.224.82200 OK 60 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/b1.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:08:02 20:17:52], baseline, precision 8, 500x500, components 3\012- data
Hash dba7c4192028bd9a6f4352283c2c2c88
f828aa362f9d7321b9e941e36a96f9765cafc6d4
a648806722e4c6dd13879414c5bbde6d4a27ceec370289c443fcf9c483024308
GET /upload/galeri/b1.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:47:48 GMT
accept-ranges: bytes
content-length: 60504
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/manset/tutmaclilogo1.png
93.89.224.82200 OK 10 kB URL HTTP/1.1 www.tutmacli.com/upload/manset/tutmaclilogo1.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 252 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 61af2cd7e1261325a33d056747f38b04
47a229cfc87468d244e329a13814e700dcf17dd3
275a216f560a28beb2445c3e907bf1e45507a06fa7406ad50fe7b3f94a89744f
GET /upload/manset/tutmaclilogo1.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/png
last-modified: Tue, 17 Dec 2019 19:41:57 GMT
accept-ranges: bytes
content-length: 10495
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/b2.jpg
93.89.224.82200 OK 69 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/b2.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:08:02 20:20:00], baseline, precision 8, 500x500, components 3\012- data
Hash d94e7a05edc38370466958ddfdebc23b
444eacb6deb20d313c7673133711c485c70c73c9
3c9d384297f9f0f9009250a6635d43f0819ed817b1618be28b00b80f62a048d9
GET /upload/galeri/b2.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:47:40 GMT
accept-ranges: bytes
content-length: 68671
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/style/sabit/css/fonts/fontawesome-webfont.woff?v=4.2.0
93.89.224.82200 OK 66 kB URL HTTP/1.1 www.tutmacli.com/style/sabit/css/fonts/fontawesome-webfont.woff?v=4.2.0
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
Analyzer Verdict Alert fortinet Malware
GET /style/sabit/css/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.tutmacli.com/style/sabit/css/font-awesome.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: font/woff
last-modified: Thu, 01 Aug 2019 07:29:26 GMT
accept-ranges: bytes
content-length: 65452
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/bayraklar/_tr.png
93.89.224.82200 OK 4.8 kB URL HTTP/1.1 www.tutmacli.com/upload/bayraklar/_tr.png
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 17f1452438f1cf68d00c9693f916e597
1f48f08ba0f66d03d919c22731bdbd7903ff730d
502aa119c0c703fd9b61088c5343b15f8c775a562d1449a157df8d41286b52b7
GET /upload/bayraklar/_tr.png HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:43 GMT
content-type: image/png
last-modified: Thu, 01 Aug 2019 07:29:32 GMT
accept-ranges: bytes
content-length: 4824
date: Sat, 08 Oct 2022 09:06:43 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/4-1-1024x964.jpg
93.89.224.82200 OK 138 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/4-1-1024x964.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x964, components 3\012- data
Size 138 kB (137569 bytes)
Hash df108dc0dd0e9ebba9f36ba3e91c1873
f58c654260dec65344ac17890e52971b8af0318b
21b602b86f8cca34d37c5ab74b111fc9b18048c159a24fc50383ad9da64aa7c4
GET /upload/galeri/4-1-1024x964.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:46:52 GMT
accept-ranges: bytes
content-length: 137569
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/galeri/3-1-1024x964_1.jpg
93.89.224.82200 OK 200 kB URL HTTP/1.1 www.tutmacli.com/upload/galeri/3-1-1024x964_1.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x964, components 3\012- data
Size 200 kB (200039 bytes)
Hash 27cce8b68cd7313a1f8ec83eb1e3401b
e0550097e0f227757541c4a187f9ec6f41da80da
0ff66c7351a1587a5df11051e96604a61d21f47e3518ff7a6d3f27b74d2d0a02
GET /upload/galeri/3-1-1024x964_1.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Tue, 17 Dec 2019 19:46:42 GMT
accept-ranges: bytes
content-length: 200039
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/upload/ektraalan/title-bg-motion.jpg
93.89.224.82200 OK 164 kB URL HTTP/1.1 www.tutmacli.com/upload/ektraalan/title-bg-motion.jpg
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x638, components 3\012- data
Size 164 kB (164541 bytes)
Hash df8994101c8bdb629486545334140f44
34969a2cedada212f63aded1a1145d14ce46430d
aef0fae93c4ed6c6669ed7b53b8de3128994b756663429e062c7b47e18407944
GET /upload/ektraalan/title-bg-motion.jpg HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:42 GMT
content-type: image/jpeg
last-modified: Thu, 01 Aug 2019 07:29:46 GMT
accept-ranges: bytes
content-length: 164541
date: Sat, 08 Oct 2022 09:06:42 GMT
server: LiteSpeed
www.tutmacli.com/style/fonts/fontawesome-webfont.woff2?v=4.7.0
93.89.224.82200 OK 77 kB URL HTTP/1.1 www.tutmacli.com/style/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /style/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.tutmacli.com/style/css/font-awesome.css
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:43 GMT
content-type: font/woff2
last-modified: Thu, 01 Aug 2019 07:27:16 GMT
accept-ranges: bytes
content-length: 77160
date: Sat, 08 Oct 2022 09:06:43 GMT
server: LiteSpeed
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Sat, 08 Oct 2022 08:22:04 GMT
Expires: Sat, 08 Oct 2022 10:22:04 GMT
Cache-Control: public, max-age=7200
Age: 2680
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.tutmacli.com
Connection: keep-alive
Referer: http://www.tutmacli.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 216277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tutmacli.com/upload/manset/favicon.ico
93.89.224.82200 OK 872 B URL HTTP/1.1 www.tutmacli.com/upload/manset/favicon.ico
IP 93.89.224.82:0
ASN #51557 Isimtescil Bilisim A.S.
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash cda7dd753e48ba64cd278a3c2910af21
454efdcee3dcf6742e4160b2ac216904b51a0e05
f7c15698458b414382c79ae66d09086776145bcac72fa60d84039f505fdc7399
GET /upload/manset/favicon.ico HTTP/1.1
Host: www.tutmacli.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tutmacli.com/hHGFjd
Cookie: PHPSESSID=b5db9a4dd989fcbaddd8998f139cfaf7
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 09:06:43 GMT
content-type: image/x-icon
last-modified: Thu, 01 Aug 2019 07:30:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 872
date: Sat, 08 Oct 2022 09:06:43 GMT
server: LiteSpeed
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wWlD3C6HI9oxa0VAYA6N5afAcUDTQXdO8X31eZUglfdC6jSQo_gew==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 04:44:42 GMT
age: 15727
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=BenchNine:300,400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=BenchNine:300,400,700
IP 142.250.74.10:0
GET /css?family=BenchNine:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tutmacli.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 08 Oct 2022 09:06:41 GMT
date: Sat, 08 Oct 2022 09:06:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2