www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
301 Moved Permanently 162 B URL HTTP/1.1 www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert openphish Idaho Central Credit Union
fortinet Phishing
GET /wp-admin/wwicu/resolve/card.php HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 14:27:08 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11302
Expires: Sat, 28 Jan 2023 17:35:30 GMT
Date: Sat, 28 Jan 2023 14:27:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11197
Expires: Sat, 28 Jan 2023 17:33:45 GMT
Date: Sat, 28 Jan 2023 14:27:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 13:43:05 GMT
content-type: application/json
age: 2643
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5283
Expires: Sat, 28 Jan 2023 15:55:11 GMT
Date: Sat, 28 Jan 2023 14:27:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bMNlIMGRExAi9dfE5sQQ5cg/bUOjWVzjjkJY66jV1quQ/BKUq2Xw3X1tE8oeeFyk5BM2h/4JCyY=
x-amz-request-id: Q0C0KSWB161E25ER
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 14:21:00 GMT
age: 368
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0c7b5164cf8997810de9fecaf0db1e2e
3120e1128fb83c5a8d50a758a006878bdb7122c6
b98e3797d3c53c2a29355b8a4e1ae434a9db144640b207bad1da7ca256dd8008
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B98E3797D3C53C2A29355B8A4E1AE434A9DB144640B207BAD1DA7CA256DD8008"
Last-Modified: Thu, 26 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Sat, 28 Jan 2023 20:26:45 GMT
Date: Sat, 28 Jan 2023 14:27:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 13:41:40 GMT
age: 2729
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9604
Expires: Sat, 28 Jan 2023 17:07:13 GMT
Date: Sat, 28 Jan 2023 14:27:09 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VYQJX1sRmxZ5u5kzKMklzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c/L2x/3NfGk+qlOYLge/tDM2pzs=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5563
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:27:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5563
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:27:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5563
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:27:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5563
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:27:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5563
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:27:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 56458
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:07 GMT
age: 59884
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Gf-xQLbrbbXCRM8Q720PrSNSrvoelOoNlqbKwfiZHNIKCD_59TARLQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:06 GMT
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
age: 59045
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LUa_R8g8Rlv7JJA0_okht-vGe-xBSyZ5TPJTFakAHlncQPZKEdULQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 59893
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 59425
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:14:23 GMT
age: 58368
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
404 Not Found 19 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1782), with CRLF, LF line terminators
Hash 3d8cb93939416f3db0e3d8c0205138ae
dfd44832b814d3f1ddc7e94400dd7891338e391a
fd43073b22ba65b22dd82486c3803e8bf5ef04107d35090450306f6729675dd5
Analyzer Verdict Alert openphish Idaho Central Credit Union
fortinet Phishing
GET /wp-admin/wwicu/resolve/card.php HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, must-revalidate, max-age=0
link: <https://www.minahalikoltukyikama.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding, Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-encoding: br
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?ver=4.9.15
200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js?ver=4.9.15
IP
File type ASCII text, with very long lines (2518)
Hash b05faaa951d84140232abab64136c0dd
b689173a5f00835b7f9e3ca584d809c08a98ea07
9de111533dc420ecd6a1b19f4380c847f45f5189f82ebad3aba55dcedec674b1
GET /maps/api/js?ver=4.9.15 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.minahalikoltukyikama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sat, 28 Jan 2023 14:27:13 GMT
expires: Sat, 28 Jan 2023 14:57:13 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 52825
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=30
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4
200 OK 1.0 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Hash c68bb655d78a5fe649b460078793da29
65c2c78881426b208ecdb746a9469d311b9db1cf
be7f043ac346fc7474d45a02e4ddd9609243383bc9f6c93d6f7ae3941a5d3a8e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:41:22 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d92-695"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.4.7
200 OK 351 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.4.7
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Hash caa6ca5d23d1adf35e63b219631fff8e
786acb0cf5a9033939c4c4b8f5c4109e2e15401f
50973c0a98e9463c4417b2ccd9424a5f89a9924b80878548f19422b25d23d901
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=5.4.7 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
content-length: 351
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Thu, 19 Aug 2021 14:41:28 GMT
etag: "37f-5c9ea8bc49600-gzip"
accept-ranges: bytes
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
cache-control: public
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/uploads/2021/08/mina-ankara-hali-koltuk-yikama.png
200 OK 5.0 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/uploads/2021/08/mina-ankara-hali-koltuk-yikama.png
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type PNG image data, 280 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash f2a02dd29d56e2a435bc63e7cd796fad
3353e3f5c4829d4c90b0a3d5a997f71a30363062
9b49b7408e8f97812843655dd9d52b0488f53b020a063d07c032524017810612
GET /wp-content/uploads/2021/08/mina-ankara-hali-koltuk-yikama.png HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: image/png
content-length: 5034
last-modified: Fri, 20 Aug 2021 08:25:07 GMT
cache-control: public
etag: "611f66e3-13aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/images/gotop_icon.png
200 OK 1.0 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/images/gotop_icon.png
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type PNG image data, 12 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 455ae131709ab60b193f00079762972e
fc588b22bf3532ce4b29a7708d1f58ebfe5ed093
d32ff402b6d3d91032113c07d35f2e00f2272f5f52990ff82be00493d7a1a07f
GET /wp-content/themes/thebuilders/images/gotop_icon.png HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.minahalikoltukyikama.com/wp-content/themes/thebuilders/style.css?ver=4.9.15
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:14 GMT
content-type: image/png
content-length: 1040
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
cache-control: public
etag: "611e6dac-410"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/css/header-im.css?ver=4.9.15
200 OK 39 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/css/header-im.css?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type ASCII text, with very long lines (34898), with no line terminators
Hash a293f9f584eff72c7a7f43a451799166
015baa8149240de9ba0ad525bea75e7435bc905c
dfd2fe749af8f7daf5adba6312de15201e526928065e681dad860bef53963919
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thebuilders/css/header-im.css?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-8852"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/creame-whatsapp-me/public/css/whatsappme.min.css?ver=3.0.2
200 OK 139 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/creame-whatsapp-me/public/css/whatsappme.min.css?ver=3.0.2
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type ASCII text, with very long lines (7103), with no line terminators
Size 139 kB (139154 bytes)
Hash a61f09e10a8ed7eccf65ec32fa1f4c79
c18351a4b16648352542de2efb74a161e7ba4733
d3e272e6b4aa196bc2dc8c37bdae52651f801b5d9505692fe72e7e9e66442c6a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/creame-whatsapp-me/public/css/whatsappme.min.css?ver=3.0.2 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:41:25 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d95-1bbf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/uploads/2021/08/265325.jpg
200 OK 563 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/uploads/2021/08/265325.jpg
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2560x1440, components 3\012- data
Size 563 kB (562833 bytes)
Hash e96e9c3cc6b90b7ac80503ef889f3eaa
2dbafae387f4e8b388ecb61209479c10b9e7bec3
aadaecb266177780fee619c022d177c6c6931019e6fdd3df0b070e36a09db90b
GET /wp-content/uploads/2021/08/265325.jpg HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: image/jpeg
content-length: 562833
last-modified: Fri, 20 Aug 2021 09:03:10 GMT
cache-control: public
etag: "611f6fce-89691"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
200 OK 17 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.5.3/webfont.js
IP
File type ASCII text, with very long lines (1322)
Hash b1214132e520a7e9bd89af99237c5f24
45b3a11f70e46248a30471795ab43861e98b48e7
36ef095d011c4ced97b0acef551ca36d76b95299518595dc1acab792a2344601
GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.minahalikoltukyikama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 17380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:25 GMT
expires: Sun, 28 Jan 2024 10:20:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 14809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/favicon.ico
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/favicon.ico
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:14 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-powered-by: PHP/7.3.33, PleskLin
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.minahalikoltukyikama.com
Connection: keep-alive
Referer: https://www.minahalikoltukyikama.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 28 Jan 2023 14:27:14 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.minahalikoltukyikama.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.minahalikoltukyikama.com/wp-includes/js/masonry.min.js?ver=3.3.2
200 OK 9.1 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/masonry.min.js?ver=3.3.2
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type ASCII text, with very long lines (28817)
Hash 2171c84360958c26df063126c9df392b
121f9b4edd7828f97d0ec9df1ede7c75eb765504
26111ba8d42403eec6471ad03444c90b37198ae199545b680adb900750cda8ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-711a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:27:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ropasans/v15/EYqxmaNOzLlWtsZSScy6XTNp.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/ropasans/v15/EYqxmaNOzLlWtsZSScy6XTNp.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16896, version 1.0\012- data
Hash 4cfc3799b74742ab67cd209d12665ed9
5b95148af7f7d7f5c3d69bfa189e8f82af368adc
cd897864f13027439efd9f5ed277d7d26f24c57f15899d33844995e9d13ebf83
GET /s/ropasans/v15/EYqxmaNOzLlWtsZSScy6XTNp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.minahalikoltukyikama.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:05:38 GMT
expires: Sat, 27 Jan 2024 10:05:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:57:33 GMT
content-type: font/woff2
age: 102097
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4
200 OK 22 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Hash 5a74d57020f0c221973655094fe2cc30
8236f8e0a3a63d1d06fb5ec93901850cb4c3097a
1036d56b303fab372cdbd56a569acc3576267155c9142c135dbe0569dd573059
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:22 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d92-3868"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
200 OK 2.8 kB URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type ASCII text, with very long lines (7994), with no line terminators
Hash 134690b93a4a3bde3f3606dba4548e03
40d0260cd142d226a90e32230ec130c8552528ef
3e7b4f6f19eae309f258c7af63cf14b425c48642f2d1f83b5cdb046d9c572b7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-1f3a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/?wc-ajax=get_refreshed_fragments
200 OK 347 B URL HTTP/2 www.minahalikoltukyikama.com/?wc-ajax=get_refreshed_fragments
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
File type JSON data\012- , ASCII text, with very long lines (733), with no line terminators
Hash d675d1d36e4341634db0ea9281a112e7
69e67b140f28cf72044e379e8d50af72da799bff
ca0d895c8552b156141fd6ff6f200a84a845830bb1461e2816c7a0a4b1098d1c
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.minahalikoltukyikama.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:16 GMT
content-type: application/json; charset=UTF-8
content-length: 347
access-control-allow-origin: https://www.minahalikoltukyikama.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
x-powered-by: PHP/7.3.33, PleskLin
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-includes/js/wp-embed.min.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/wp-embed.min.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
GET /wp-includes/js/wp-embed.min.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-57b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.4
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 01 Jul 2021 14:10:26 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"60ddccd2-1e570"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:39 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6da3-736"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/jquery.shuffle.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/jquery.shuffle.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thebuilders/js/jquery.shuffle.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-31db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/modernizr.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/modernizr.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
GET /wp-content/themes/thebuilders/js/modernizr.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-4072"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.4
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 01 Jul 2021 14:10:26 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"60ddccd2-5b56c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/controller.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/controller.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thebuilders/js/controller.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-306c4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-17a6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/ninzio-addons/js/ninzio-contact-form.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/ninzio-addons/js/ninzio-contact-form.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ninzio-addons/js/ninzio-contact-form.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:22 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d92-c30"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/ninzio-addons/js/ninzio-projects-ajax.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/ninzio-addons/js/ninzio-projects-ajax.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ninzio-addons/js/ninzio-projects-ajax.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:22 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d92-1914"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/creame-whatsapp-me/public/js/whatsappme.min.js?ver=3.0.2
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/creame-whatsapp-me/public/js/whatsappme.min.js?ver=3.0.2
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/creame-whatsapp-me/public/js/whatsappme.min.js?ver=3.0.2 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:25 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6d95-c3f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.7.0
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.7.0
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.7.0 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:38 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6da2-abe"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.7.0
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.7.0
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.7.0 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:38 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6da2-5c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.7.0
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.7.0
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.7.0 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:38 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6da2-b7c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/css/icomoon.css?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/css/icomoon.css?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
GET /wp-content/themes/thebuilders/css/icomoon.css?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-7db7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.4
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.4
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.4 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: text/css
last-modified: Thu, 01 Jul 2021 14:10:26 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"60ddccd2-e6aa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/elevateZoom.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/themes/thebuilders/js/elevateZoom.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/thebuilders/js/elevateZoom.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:48 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dac-809a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-includes/js/wp-emoji-release.min.js?ver=4.9.15
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/wp-emoji-release.min.js?ver=4.9.15
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.15 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-2efa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:50 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6dae-2748"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
200 OK 0 B URL HTTP/2 www.minahalikoltukyikama.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP
ASN #201520 Dedicated Telekomunikasyon Teknoloji Hiz. Tic. San. LTD. STI.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: www.minahalikoltukyikama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.minahalikoltukyikama.com/wp-admin/wwicu/resolve/card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:27:13 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:41:38 GMT
vary: Accept-Encoding
cache-control: public
etag: W/"611e6da2-255e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
185.15.196.176
216.58.207.202
23.36.76.226