f5ajans.com/
301 Moved Permanently 228 B IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80fc735d7644bc3ce7813b223b5f5327
5897bf3f01b3b677a293573407bfc926563c89a7
d5c134f4ef25df6e221b71527fcd5082b9b193c17912519fac02ac96e68a9576
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 00:21:10 GMT
Server: Apache
Location: https://f5ajans.com/
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20889
Expires: Thu, 26 Jan 2023 06:09:19 GMT
Date: Thu, 26 Jan 2023 00:21:10 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5018
Expires: Thu, 26 Jan 2023 01:44:48 GMT
Date: Thu, 26 Jan 2023 00:21:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 23:42:51 GMT
content-type: application/json
age: 2299
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2794
Expires: Thu, 26 Jan 2023 01:07:44 GMT
Date: Thu, 26 Jan 2023 00:21:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rMiHRXjMGFyEH0dN7t2O6pmH6AQI+HFtijeg3vfy0QhDKKemfkANmE1uAtX3iwjhjaKeUtu3VGA=
x-amz-request-id: 12Q74VZ6YMC9R5EH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 23:48:45 GMT
age: 1945
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 00:21:10 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913264c0fb605903d8439053ad9820a
b1541264e3dfb8857abc25e3fb1ea3eba7434efc
4ad48e88bf5ba13fd6c908aa536c79586540001f79161511815afd04cdc5d1a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AD48E88BF5BA13FD6C908AA536C79586540001F79161511815AFD04CDC5D1A6"
Last-Modified: Tue, 24 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 26 Jan 2023 06:21:10 GMT
Date: Thu, 26 Jan 2023 00:21:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 23:48:59 GMT
age: 1931
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19345
Expires: Thu, 26 Jan 2023 05:43:35 GMT
Date: Thu, 26 Jan 2023 00:21:10 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HH2J5c6Ceut8q2s9bWXBqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0n0nzdeekpycSBRbArZr6Zn7ruc=
f5ajans.com/
200 OK 43 kB IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46264)
Hash 72f9261c74975f0fba828d9f0e48be58
6c2788515ce99b8ce9046134a8b54ccc26fbc886
1bf7d64d9c6b10c8f6b211255152cd2854efc0c1ba993e479844d37f054a84d9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:10 GMT
Server: Apache
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/", <https://f5ajans.com/wp-json/wp/v2/pages/2952>; rel="alternate"; type="application/json", <https://f5ajans.com/>; rel=shortlink
Set-Cookie: vchideactivationmsg_vc11=6.5.0
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Thu, 26 Jan 2023 00:21:10 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 43059
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0bf8fccb276521254634abcdcb4b3f0d
a5b7ffa58daf7d1ea3e312b68533d4d0271348f4
991b03387ddbe0b07a9aee23ea7a98863fa85035cb26e631e0d22a1b999ee487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css
200 OK 304 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (607), with no line terminators
Hash c0e0c84455c91447767668980791c49b
eb0a49c4f714eba209648b8b708151077d653dc8
f1603b574b2ad999be6b4d6c1ae135a0cac9d28e78886a2d49db1a7bbf129247
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:11 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:11 GMT
X-Powered-By: PleskLin
Content-Length: 304
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
www.googletagmanager.com/gtag/js?id=UA-197116259-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-197116259-1
IP
File type ASCII text, with very long lines (1759)
Hash 2688b234eb54a484592193f5dd1eb5ce
e1a3d3623d0a37b751124233f993259331aac8d0
cf9803006479d4fe0063f44bff1275a71b01b61dccbfb7ca5a0e32388a951aff
GET /gtag/js?id=UA-197116259-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 26 Jan 2023 00:21:11 GMT
expires: Thu, 26 Jan 2023 00:21:11 GMT
cache-control: private, max-age=900
last-modified: Thu, 26 Jan 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44082
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 15 Nov 2022 23:24:39 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 12518
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
200 OK 9.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (50505), with no line terminators
Hash 072dbf4f6a4480bd2ddf68836618aa7b
d26138229512d24b6ce053ce5b3e58e07e94bad7
f8cd4bbf86e1a88ef650e1ed2d58bc1673d8b516f1e48e2d69f7089355a9b19f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 9500
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 189 B URL HTTP/1.1 f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css
200 OK 228 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (526), with no line terminators
Hash 11dd4a3762ed1077bdd0940b9e6f6f46
56a5245711c6d653b40b1a484de9e43b7f5590fe
324b86c570d1f17665410d3a333b820c81f1ca6d189a77a05a8dc1917a66e8ad
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css
200 OK 854 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2237), with no line terminators
Hash c32d27fc309681153da63de98aaff6a5
73f0323c876b6bd28259d6c62a2368fa264c6494
86b7134de37f8ef8abe492992f7fa041baf56ada3318ac967ed5f9dbe5c3e82e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 854
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css
200 OK 88 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with no line terminators
Hash 3b7f5df41b642a693b1ef357ecbc68d2
a9cc6166fc9106327eaec187d47d794e112f8e61
0c2e7380163dd16e4df76568ff56a96aa343ad2079ab7382a5ff02f493314840
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 88
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (57233)
Hash f63de6e9825762bacc6b733499464697
4957b8c5d14978cd1fada281301a0af1348e22ff
9520c47f7f13ceba096eaaa30fc6b7c6484c772f387b45f4cd57671508ff9ae6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 12292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css
200 OK 1.2 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (4115)
Hash 33429ccbb8cda2a2b149bce9104ac071
1039527f0b6b1087994bc0c56fa3e3371058b614
0b9e08029a6a2ecee528fcd3b730ba6256daee15f72e39be0affc3443b63bee0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1234
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css
200 OK 3.7 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (53122)
Hash 017d1bf7f5291bd7da91e23af2a04af4
d828e569c95c0dc2ed7007450db3b3ed2c7e3fbe
c9cf3cc90c918dc57634cc9dec6a38739218a06a5faa09267a9807abaae37fa6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 3689
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (6939), with no line terminators
Hash 18e953f02b58b63b9dd772e1e13cd1d8
a6fa007d26ae7131653d3526e5316cf713f541ac
7219a399470e875d55a165ceeb12d535080e91ac3448efbdb620e5cd615b7493
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1523
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css
200 OK 2.0 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (15221), with no line terminators
Hash 8d6843f258f239fb8b1345faae9ce93a
caf42170e921b93d6e439ed4d5c39953ab9ef1a1
ae1f2a23c55e214450c5c1e6071dbe9b0f5a901c2c01f25f3ac492a020d45abd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 2000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 5.0 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 21 Jun 2022 01:30:16 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (6826), with no line terminators
Hash 45dc63cec549cd8f1549939051502130
7b872738e94ae45bc326c859f05230d883ad3bc3
46f7e7e5dce285fc54ef800801f08ce563d219a04dbe4789cd2a6cb233c7eb71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1529
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1.1
200 OK 443 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1.1
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
Hash a11f3ff8181293fe95aaf74a79ec9657
c1b75352ce45f92f484d4e6d45e804cfd40fc993
3699488f4dd939d210d633d11a99ff3a6c2bc58403a8968f69551647e0d95abc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/style.css?ver=6.1.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 25 Aug 2020 08:32:32 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 443
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (53997)
Hash 53842c0e2c7e10f7b481d5255580a581
a0eaaa5ded250c0c3414ae820af88f9e6e9505ac
0b9b7393d51b1197eb8733ff39e2abf0f4099cea90a88878396f444f5a1c87c3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 11932
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css
200 OK 3.0 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (19308), with no line terminators
Hash 6e10cf5685c18133c2c9be2d62f15d82
a10231172bdbe06aa5b08d495fc4b5f5ea70183f
5c60394e07f8ffea554186a4f8a5ee9fbef13fe6c86d113d57a558fc417f4fe5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 2959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
200 OK 63 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash de7a3d23f28aa973120ccaad669aac9a
fbc57cff4fea4a3995d075e5372d6a72400bfe97
866d09f4be3e3f7b09211c8f234a3023a91575ed8f05002a3c4165d02f9da3bc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 62832
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cc2b9a26cf016c0cf9e73531f6004051
408990c14ea8af4c979a277da755c89771672356
36e955bd017c3febc7623ad388bb260757294ca612b94ae5417de6cc04073a82
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1005c9e99dc8d4390861d6730c7a403b
0e3858ae26a1c01e0160e3b60e400bea202ebd05
4ff7ceb81a3dad4fefd3a15ece4ce13898624c01bf5a0cb4fdd90958978ed6b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css
200 OK 14 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65536), with no line terminators
Hash a4f2debe10119a6f5fd93c9f959d8321
3b48d9fffc2dbb3d5ecd707661b78fc51f7db477
9c25ecc3c364f42d2044402894df5d4b3f00d9cfe9afa75295b03c8c52e09e20
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 14331
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
www.google.com/recaptcha/api.js?hl=tr&ver=5.1.4
200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=tr&ver=5.1.4
IP
File type ASCII text, with very long lines (850), with no line terminators
Hash 24ac42470d0a7089c75bedad4491aef8
597f0a1463438aeebe45958764c2a6a800c33dfb
58b0d3b1e484755d3c148ddf14a99d6e183e094652146309df5b39ddd6e9643e
GET /recaptcha/api.js?hl=tr&ver=5.1.4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 26 Jan 2023 00:21:12 GMT
date: Thu, 26 Jan 2023 00:21:12 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 78ed7b7d814d987601b30851546309b5
12a653dabfd738fef99fad2295eec55e4651bc7c
a55164c954f0255d6d360ac0fac8b4598f8e0e01ec646105eed2e9b0abf5e2bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1
200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1
IP
Hash a0b7756dee33a9762dbb0e5e3c23be6f
ad1c9024a58fa5dcb9ddad8b35624a3ec486dfca
39689a7b244e1a56460ed059c3c0cb1793a3bb1b5f0880def859d6f224651152
GET /css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 00:21:12 GMT
date: Thu, 26 Jan 2023 00:21:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css
200 OK 46 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65359)
Hash b95490b8aa4182c6578b631568241845
9f3a3c9846684666cab0b4816bbf9f9658436596
db6cea54df089a6d2535242604e48fa5c99673a44a282f9f346dea82b45b8236
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 45985
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 04cb7fc8b1e2a65a0b198cc53eb5e5cd
6d04611612d81108e856467f0e4b0479cbb37d33
1c745d8ace7ea6f8e5d7da5e9c067b7b3427ce9c5a5e2c5c35d1c345266de518
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
200 OK 85 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (64270)
Hash 5c4c9100dc4d7d89e37e9f422b5a1488
5fa1f3c688087031200421fc0b573c138497f605
ceec6ae869a887d18e4ed5d094ddb26a4a0530f5c4d84e25a00dc528c377afac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:22:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index-d3043fe1cf8db318aa055d2ce4042397.js
200 OK 3.0 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index-d3043fe1cf8db318aa055d2ce4042397.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (10564), with no line terminators
Hash 190ae72ca380ee888db74c58f6f5bd69
d98d63ab7cef58b6a669d0679fc8e77f89113567
d1496f05df476c1b51f6aacbc39c141c8b46e18f194ed275dea7164a26da49b4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index-d3043fe1cf8db318aa055d2ce4042397.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 07 Jan 2023 23:34:43 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 3039
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13799
Expires: Thu, 26 Jan 2023 04:11:11 GMT
Date: Thu, 26 Jan 2023 00:21:12 GMT
Connection: keep-alive
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js
200 OK 6.6 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (21904), with no line terminators
Hash 6338eb3d6b3c8e012fbd69faff9d1f31
e4a06b74ccdc8c6a48b390188abb563fb96bd55c
efe4b5fd5f71484a2f5c8d768f23c0d635dba433f5f4b4b54071a42400063e78
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 6564
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
200 OK 46 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (42889)
Hash 71eab11cb0b4102cd28a75f8776b01bd
2fd9497fbce8c459cc023feedaf182dab410c2e3
5388666fa82846ed8fbc6e60ed53ab4d0d04617cc8f08de299630a1f94dca4da
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:22:47 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 46107
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377b8e8b-f550-4274-9793-f7c7ae2dc208.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377b8e8b-f550-4274-9793-f7c7ae2dc208.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4346c1dacad291243ef79ba66e6e9040
fdb82da3dee21a1dbd4387381074b23eeeb4a810
20838f600b2749627d0e013f7248e3f62786c92aa642088e2995e84cf642691c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377b8e8b-f550-4274-9793-f7c7ae2dc208.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13606
x-amzn-requestid: 823a9979-1097-4f9f-a79f-423c93872eeb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfEr9oAMFc8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-2acff24836bad6533b0601e9;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EEu_pHR6hRhe7idyWimx99IbAzkBVU9wkgl5Ngg4M717RjGcO0aTZQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:51:33 GMT
age: 8979
etag: "fdb82da3dee21a1dbd4387381074b23eeeb4a810"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13799
Expires: Thu, 26 Jan 2023 04:11:11 GMT
Date: Thu, 26 Jan 2023 00:21:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 9150
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74736a6-2e9e-46aa-9c09-e96ce23f160c.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74736a6-2e9e-46aa-9c09-e96ce23f160c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13fa7641221298b50dd96428df4a60a7
8f306f479049964b44288c97919e3abf3196f785
c5063d45d5222aaf0bf9ddd3a5a24c9856d2684e3c7650e48cd1e9f90d365295
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74736a6-2e9e-46aa-9c09-e96ce23f160c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4774
x-amzn-requestid: 280effa4-1bf4-4c89-9831-e1982ff23153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSYeyG6voAMFzAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d45e-0db1bd5e44404c964dec763a;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:03:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bE-O-xdBLQ_A14Me54-PoMs5VDqRYTdIHCUglJuMIKDV-pPdRY703g==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 07:36:43 GMT
age: 60269
etag: "8f306f479049964b44288c97919e3abf3196f785"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0617a6db-4b92-4745-b454-37fcbea9f1e0.jpeg
200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0617a6db-4b92-4745-b454-37fcbea9f1e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4aaca9804bfc17f83d66373ce67c0dc
9d0a0f828e312f615ddaa342522ab2ff7872beac
6871737d359006f7eb3086f488b1576283385000fd4ad66718f73faafbcf77ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0617a6db-4b92-4745-b454-37fcbea9f1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2869
x-amzn-requestid: aaa2e4cd-1f31-4be2-b498-6bf758387859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOiraEF0oAMF1Dw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b15-4a250a9e5486c22112b28239;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:05:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g0c8aXRRDp_Poq7SqDtnvOvUEyM2tO4PdmCcG_i4yvN9KKn7_8JSrw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:25:07 GMT
age: 68165
etag: "9d0a0f828e312f615ddaa342522ab2ff7872beac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400
200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400
IP
Hash c696b371a8fc2bcfc2740c814ecc27b3
9cf265eae45cb213c8ea00d95a85d1c638f07b9b
5d82b6c1344202e5afc7a90eb3ea3e10ee714e4c9dae4c0748eae34f09badc89
GET /css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 00:21:12 GMT
date: Thu, 26 Jan 2023 00:21:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13799
Expires: Thu, 26 Jan 2023 04:11:11 GMT
Date: Thu, 26 Jan 2023 00:21:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 07:33:54 GMT
age: 60438
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js
200 OK 19 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1956)
Hash 30af1359c2f365be05f4196a20d787eb
2588834ba493585523f2b1428e0c6166d68a9a18
cc368fcd96182e6131488a162e207962173d15f05f6a9947364e0e15d616a9ef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 19275
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js
200 OK 491 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (628)
Hash eec3987dcf7c3a9d7e291fe8e57385fc
4208a8d30f0913b4f9854365d2aef868fb1d863f
8818c5ae93d5d56c0a6e8001e4bec9917a2d0fcfa3adbbaffa874940848e7d88
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 491
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js
200 OK 6.7 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (3622)
Hash c926cbc059f70566e289c0e1ecb493c5
aaa5f7dc2b69a0e3a9ef3ec1b8691c00a403ee0b
f431cdc5410701a7e45016eb50c7abceb33757e827334ce017c7a225b55c0434
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 6656
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js
200 OK 1.3 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1414)
Hash 60535e9fa93951c881ce4537cb071970
5ed0f7bf2edf7ae24d9ce4d6bf7c734eb7f3566f
0656e18bcaac21f22ab610219ef4471b057cf42cb8c442124f8bf7b522c0a085
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1252
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0
200 OK 10 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (42862)
Hash 49473c84b4d22550a618192eb064f66e
ba73379f5b95dd06705278488f19197c678cf286
3418a24a2984774d030cdb5882a8aaccb1336a2573918da59dd121532d6d0640
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/js/slick.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 06:20:55 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 10443
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-fdb1d41858c7ff53c75d52f8c199b847.js
200 OK 490 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-fdb1d41858c7ff53c75d52f8c199b847.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1086), with no line terminators
Hash f495b9aeb3f7e3ec94b815d73dcfc1e7
1672396a2fe57f704af9d9a0c1305386ce88f6de
afc45197622473ed2e31caa511abcefb376786d4e6b78b08af511ce4725dcf55
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-fdb1d41858c7ff53c75d52f8c199b847.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 490
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js
200 OK 1.9 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document, ASCII text, with very long lines (932)
Hash 296ffe5cefcc3940eb8e300e24a25eff
43f63a21c60fdc87ebb2b293b28677d6c2f2f9f8
3fda313e2eab64d81f556ac1a7916c74a96178afd82b5fdf96ed5e762d47ded1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1921
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0
200 OK 1.8 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (3524)
Hash e8cfce58064ea661c60a996c77810250
5dc24e2578c3c71c9a390bb5875d6aa610c140ff
66e16db6252c38b5efcdd33193c35ce2c9fc6da1d57c05c8032a06a7877e7b5a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 08:02:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1827
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js
200 OK 789 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1266)
Hash d249b2f834bb7f748365189b4bda007c
a3136f07732ad8d022cf44e8e09e9e7ed20f3993
4d7b72cafedfe54292c9db9b5be6a777d66d0a2cf568ed27729fa7bbbd33d71a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 789
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.7
200 OK 3.6 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.7
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (18644), with no line terminators
Hash cbe690a876111311c8dc8c47d1f675c8
396873013fabe92d3e33c73252482c4b091ed285
f7c8996634123f22daf76b8f4ccbbb73e0e1be1c15a67ddb2586a272fde596b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.7 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sat, 07 Jan 2023 23:19:39 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 3600
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.digicert.com/
200 OK 279 B IP
Hash 8275d20840ece3a935d605d5d45f2648
b7bed8d9117e6e2778e9371290211d3cf5d42cb4
b5d250acf93b18975b5469500034ab6f7d0c6499b5ab2c6ff19b4eccd7d6510d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6186
Cache-Control: max-age=146805
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Etag: "63d149c3-117"
Expires: Fri, 27 Jan 2023 17:07:57 GMT
Last-Modified: Wed, 25 Jan 2023 15:24:51 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3e7fdf1ab4be9ee80518d0400683f0d3
dd2ec6511ba05e7fb89d32a1ad407db5eaa1520b
eb789178a0b528aad87a5bf0d05aecd45e7623ebaf198820f9310887757e1d5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js
200 OK 13 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (8762)
Hash 940c54b4128969ab75bf0553506fa6c7
00e2d9c41163dc64eabb2f70b2c7f7b991609255
7801ae2a2078d97fead92facfb82d1e73c6b0c1f221b0944034a978b97d81d06
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 12687
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 05:58:30 GMT
expires: Sun, 21 Jan 2024 05:58:30 GMT
cache-control: public, max-age=31536000
age: 411762
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nPrXyi0A.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17448, version 1.0\012- data
Hash 8dc25b41d24ea46d17b7b9c6e2f95e49
5a9f03a40e42cdfc08680c8b42ed675ebab00f30
2480681802b149d958832bde06d2b4fa35964652c258cb8c62dfc768889e51b6
GET /s/rubik/v23/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 21:59:36 GMT
expires: Sat, 20 Jan 2024 21:59:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:08:42 GMT
content-type: font/woff2
age: 440496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 17:41:43 GMT
expires: Sat, 20 Jan 2024 17:41:43 GMT
cache-control: public, max-age=31536000
age: 455969
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
200 OK 5.8 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (20422)
Hash a1f0bae161b820176df3906769a1c37b
5a75598a989d789b7f77d8278852b44b9a3c3732
d5758982448d9afbb73111a8dde6a82b7de19c81a2f8c9ecc3ad8f1dd78c8f8c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:10:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 5817
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js
200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1709)
Hash f7e26d3e8ebcdfaa7cdaf5b652db0ac8
b4a0443ba317b7265b84c2b27a094803f3979898
8c0fddabc90f02c47ca227f1a85dfd60040d44bfb20941c764431a09410ed367
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1487
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0
200 OK 5.9 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (24010), with no line terminators
Hash 51f6b729141ae1f3401d186d04116ac5
88629bfbe81228d542dfa28cf270332c0312e35e
92c80e75c05e58a3d3568599d528c989350fe9b7016f4149305cc3c49c45c1e2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/js/particles.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 07:37:20 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 5932
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0
200 OK 10 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (32004)
Hash f3c3a6db5d9c1d0581cb21a1f41c2623
bbbed7f4f95f94a7cdaf2eeb09376e09be28a013
9364f57a5c55b4b059d2f9ed023def8e987ba8a84e6c9a4568700f7a5f547e9e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:15:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 9978
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.8 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 1834
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js
200 OK 9.8 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2471)
Hash 8099fb35e544de23d2414f595ac777ea
b9d61f0a622094397c92a8824eaecde6f0d8a513
2ea1a54fc82a942e26aa4554978ccbd56f857dc39a9adbb254ed688abfe0c586
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 9789
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js
200 OK 4.4 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2358)
Hash b14074548745608d26039dab6f31d93a
14a0d4dddccd62ea29c500717e47355d188b8461
c7a256f9fc1c0f1457a94a8cdb0ea669e1071e772488ed80a5580ceec38b30b0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 4394
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
200 OK 2.7 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (7889)
Hash f30be0c895abc6e9806990de4a5c6a3f
4c3a309acb1a36dfc1196d0f99648efecc63edc6
5527d8cc1ff8638d6eb220120e306257877fcaf9c25f1b3e58c428808293a7d0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 27 Feb 2022 22:29:39 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Fri, 26 Jan 2024 00:21:12 GMT
X-Powered-By: PleskLin
Content-Length: 2704
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2
200 OK 28 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Hash 9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:12 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2
200 OK 28 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Hash 9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:12 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png
200 OK 4.4 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 421 x 265, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d21efeade653bc05947b55ee728a487
f0f19f7c2d8133803fe9fff1d9ab856e49e992cb
d895cdf13f95441afc565b3542170ba84a9cadefc1c5dcd0bc41fe4bad75671c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/bg-service-card-media.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:56:40 GMT
Accept-Ranges: bytes
Content-Length: 4446
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png
200 OK 2.8 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 256 x 94, 8-bit colormap, non-interlaced\012- data
Hash 9d732ac7cf364a10e5336306bb1039ed
523b2fdc7f91cf416961b0fe498c344eed330e62
fa765334727fbcb94cb05bfcc5c5fe4cd5aac720e82ca3487d243d8d1766770d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/form-arrow-1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:26 GMT
Accept-Ranges: bytes
Content-Length: 2846
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/img/enter.png
200 OK 514 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/enter.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 32 x 27, 8-bit colormap, non-interlaced\012- data
Hash 3fd2c8be7f198619f20e8ed5e6d46285
258217ef9b8471d979c1b691e58dd384866a1f5c
fe97a3755b2273a02bdf7e3c9a2fb416b00762eb563f8b6bd3497d245c2f00ee
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/enter.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:44 GMT
Accept-Ranges: bytes
Content-Length: 514
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png
200 OK 5.5 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 221 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 9787a3c349d510781a9f25cfb6cc077f
d8a7966f2f9d0cf7954a7d518a78e4ad1472ae3d
cdc12d7f7e2a607f6a2827c8b6f9084a49a5619ab449a23525a6b6e371152012
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/form-arrow-2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:51:38 GMT
Accept-Ranges: bytes
Content-Length: 5492
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66
200 OK 4.3 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 585x585, components 3\012- data
Hash c453a4eaf934083493cd5393c055327f
81625301168b9e430964499ec6bcb994b6ff2828
ac23743686aeffe39f030d809c983638552bb251f6b9a421434474e7f40c6ade
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2019/07/bg_text_b.jpg?id=66 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 18:59:55 GMT
Accept-Ranges: bytes
Content-Length: 4254
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff
200 OK 102 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size 102 kB (101652 bytes)
Hash 100da06a3856fc4aac8fae7315367988
878c2b32627953f388a76489f6c3ab2747e3daca
c95af5277e77da5473984e2519a9da7290d7422f5065547d8fa9df604150e542
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Last-Modified: Sat, 07 Jan 2023 23:19:39 GMT
Accept-Ranges: bytes
Content-Length: 101652
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:12 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100
200 OK 5.3 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Hash 7ef3a1dec54f562e93e276cf87b99e68
a0b85dfa5421eebec32bb15b858aa5799706c503
610ec2ced5a11beced9d49ff008bd15b293b596fc68b5dc7db4a07637ab86484
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/07/Bg_n.jpg?id=100 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:04 GMT
Accept-Ranges: bytes
Content-Length: 5251
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2
200 OK 14 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Last-Modified: Wed, 18 Mar 2020 14:40:58 GMT
Accept-Ranges: bytes
Content-Length: 13564
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:12 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png
200 OK 7.4 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 198 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 11cf3b0c24c45809668efae12eb51207
39c2c0e492a07151aa354604e5229c9f94736b4b
fe0ea0ce14494e9e39e8390080518e70dbcb58e1cf83ae497d6b905d31588de3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 00:35:29 GMT
Accept-Ranges: bytes
Content-Length: 7449
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png
200 OK 1.2 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash de9f31ae40750aee64ca9aab5edbc487
d0fa6bc142dcc4ffba03624e089cbf68f8362572
54bcce524c0982b96591c80caaae8c41638dc9f914a5f8183711957058ea6a04
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon_003200320_3281.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:27:30 GMT
Accept-Ranges: bytes
Content-Length: 1156
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff
200 OK 90 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 90060, version 331.-31261\012- data
Hash 423ddcd1c3685d59de8eb5ab68b2f007
b6f3cc5710bed4370123567befcfa143e7c2dfe5
7bbff24dee1b2ffa70e60a06a202d789b3fe9248200e3f89afa239f850eb5097
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
Last-Modified: Sat, 07 Jan 2023 23:19:39 GMT
Accept-Ranges: bytes
Content-Length: 90060
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:12 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png
200 OK 6.6 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 157 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 27b5c87227925590a9bf457ac034b8b0
773bd21e71652a5fff00d472ed450a17553afb3f
f3c0283eb86a7f7807d274bcfec07d6c8eb5dc7239987dd2e82bda0f7d8c0c7c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/logo-2_009d00321_3055.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 20:52:53 GMT
Accept-Ranges: bytes
Content-Length: 6632
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg
200 OK 75 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2019-07-25T05:31:46+03:00], baseline, precision 8, 1920x990, components 3\012- data
Hash 9b87cffda0d6a534833aa5ec31224af2
b83eddcd9115c974a41a81d83b44ad55bc915cfd
f30de2addac76456f5e7dde3233276b81fe9cde201577ce2b1ab5347150ddd73
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_bg.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 74881
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg
200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x600, components 3\012- data
Hash 91464dea2f3edb3b4359a0112a66009c
cfcefa0cfeb5142e68f4ea0de8f472af49aafaa0
9ca42026e2398bff07330c704dc6ffd1d5ff670bafbb1458e72d0d45b73d11e5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/07/bg_a.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:49 GMT
Accept-Ranges: bytes
Content-Length: 30715
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
200 OK 279 B IP
Hash 8275d20840ece3a935d605d5d45f2648
b7bed8d9117e6e2778e9371290211d3cf5d42cb4
b5d250acf93b18975b5469500034ab6f7d0c6499b5ab2c6ff19b4eccd7d6510d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6187
Cache-Control: max-age=146805
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 00:21:13 GMT
Etag: "63d149c3-117"
Expires: Fri, 27 Jan 2023 17:07:58 GMT
Last-Modified: Wed, 25 Jan 2023 15:24:51 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png
200 OK 143 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size 143 kB (143265 bytes)
Hash 8cd364eba2762e2887aa4c028d781630
cea072f7cbe656d4b4d9b20a8b8264acd304a990
ece17bc56bd5542046bcd5d1004b5a6000fcbc898931a9d33982da2b0249ab5b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/09/welcome_img_045603481_2087.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:02:12 GMT
Accept-Ranges: bytes
Content-Length: 143265
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png
200 OK 88 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Hash 9455a9256201f7a71a437eab2db22a08
e16bdca6905251110c11506c64f9cba231dd35db
9d6db0cbc64055e8bd1f6a1be82ea4de0bee33ddc2db257a3de01e45ffe40949
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:18:49 GMT
Accept-Ranges: bytes
Content-Length: 87625
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png
200 OK 185 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size 185 kB (184691 bytes)
Hash 056cd87da8a61b27e4d6a2053eaf1e37
1b61e9111a87016fe4e4d5df46c90734e55ee5ec
1752824e860c71ab9279f8961989a593b879e68f0baeb8a58a40df1fb317da28
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:15:06 GMT
Accept-Ranges: bytes
Content-Length: 184691
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 25 Jan 2023 23:45:20 GMT
expires: Thu, 26 Jan 2023 01:45:20 GMT
cache-control: public, max-age=7200
age: 2153
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__tr.js
200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__tr.js
IP
File type ASCII text, with very long lines (763)
Size 166 kB (165489 bytes)
Hash 01d09de2ed5e8fb0cd5a0c938c5d0131
cd40b713b08c55f5bdb19024e920d9c71061c7ad
235b76f367f5c5c42ee1596ade2d53a5031f9b1d6d7c29eaad3e9ba91bd6d43d
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__tr.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165489
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 00:57:37 GMT
expires: Thu, 25 Jan 2024 00:57:37 GMT
cache-control: public, max-age=31536000
age: 84216
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png
200 OK 779 B URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 1df7e80889c3b56ee55d2aacbc11522b
3ea51e9b255a2b92053345a3e3f8930a53b96616
e61da40a5b08686577e4c3c2478929ddf59b1e1a4931d22b8930d85fd94f0a62
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon-32x32.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 779
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png
200 OK 4.6 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 590886c93d6bb8a37d06de0a9b87eadb
6237bafee73c2a9267ed4549961b34d599ca7381
b31140344bf1b3adb30986492b3fb643917e6fb4081c9e90fb87d12518228e71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon-192x192.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 4640
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png
200 OK 57 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 461 x 586, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a598f89171795fbb4db710696ef06fa
44be03b0531e504107e62741a671f276d1d22690
326102cbd6b6a2f80ddcff2fa909d0963646cb92614789f7d6735de001245e75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 57101
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png
200 OK 19 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 453 x 429, 8-bit/color RGBA, non-interlaced\012- data
Hash 030347cad80ea77c85f5f19deb873e90
580860119306c544c610f418321791b08a799ff6
b2ebb818e4f3babbfe6b7a1596331c5f58b79ac6a7c18d2f8c42534cdedc4664
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 18852
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png
embed.tawk.to/58a9f0de57ed180aac2168b3/default
200 OK 19 kB URL HTTP/2 embed.tawk.to/58a9f0de57ed180aac2168b3/default
IP
Hash 62d121349a567f7dcf2aba8d382ceb29
aaa2c19384a3232ebda8217bc2554697b3f87aa0
9367d3592482479197e7b798f6f966730adbfc61c421e571ab8aa4957e6f18d8
GET /58a9f0de57ed180aac2168b3/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:13 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516521f48b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png
200 OK 25 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 449 x 342, 8-bit/color RGBA, non-interlaced\012- data
Hash 13f30f2ba6109f68004f7b3f186534b9
ecbd7072697b20431245b95059e3387cea459258
f92605540a4af1468406540b537d88b657ca6e7fc55e94aecf7c682e8d4f94f8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 24591
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png
200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 283 x 248, 8-bit/color RGBA, non-interlaced\012- data
Hash 17a459df9d5b95bf7a166680a66ee541
1acf65c897a4695c21f6de7a9e1ed6116a56bfa5
f67f6f42bf929c2d92e9999e4322653f7c139651ea21d265fd451cdd15616f5f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 31109
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
200 OK 7.5 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Last-Modified: Mon, 28 Dec 2020 00:32:39 GMT
Accept-Ranges: bytes
Content-Length: 7536
Cache-Control: max-age=2592000
Expires: Sat, 25 Feb 2023 00:21:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png
200 OK 25 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 375 x 169, 8-bit/color RGBA, non-interlaced\012- data
Hash 0495ab24c0f9e944f8f2a47cf1cdb87c
627f5ded074643e5f2a63218a6e78b5aee4375e9
1821b4a1f51dbf39e21c2171250f4f449e6f277e8ee4cb0759d406853047c8e7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 25316
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png
200 OK 57 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 740 x 547, 8-bit colormap, non-interlaced\012- data
Hash 66a85608a506550bfeb96c5f56f46952
87ed6cd40cb0137be370b32383aaf699e8daf4c0
f402e257306ecb0cf253d7687a1fdd91d6b94925e8ab15f21875ef7bb962b090
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 56749
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png
200 OK 22 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 119 x 482, 8-bit/color RGBA, non-interlaced\012- data
Hash c8870a4f25db85f6584569385762209c
390621196d6fb1da6c196bd7362dde9afdc91bee
8be1e624b483799ee66f6cfe318ffef6984eece21f8d48c8ef00dc739fa0c52e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 22248
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png
200 OK 38 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 263 x 382, 8-bit/color RGBA, non-interlaced\012- data
Hash 609c7a2139ac3feca7bd747bc2d44eea
c1837467c63df0cdd151c1e8bf1167bc1bf0f047
1fab602e9f40b0819daa8f60ad979fcd068692de3ab2861f9d44e9821a2d5583
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 38112
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png
200 OK 62 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 474 x 717, 8-bit/color RGBA, non-interlaced\012- data
Hash cf592fcf352be2eb0a27049a4d86828c
91e58437ec0d8ed49fba0dd898fba1e04351cf4c
3ede6d98c9d8a515c07794b8d601e72bb3a4bba0ef48427de068a05015e91379
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 61517
Cache-Control: max-age=10368000, public
Expires: Fri, 26 May 2023 00:21:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema
200 OK 163 B URL HTTP/1.1 f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JSON data\012- , ASCII text, with no line terminators
Hash 61b4ebaa454da22809f2efdcc997ad34
b3d86a86d6b06934fcdbd1f9a40b3dad8443d671
f1c1247b34b41dfdbff10de8d1553048e48f0d3ff6827830c065280717fc2408
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-json/contact-form-7/v1/contact-forms/4/feedback/schema HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Connection: keep-alive
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:12 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Thu, 26 Jan 2023 00:21:12 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 163
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
200 OK 41 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP
File type ASCII text, with very long lines (65466)
Hash c420f1310a089b5dc9c71bde270010de
8d97c28575df6620265c7b01468d3e1c9270e369
c0139f3bd24eb76708ff6c6188c33bf5db36947c261dfc3df38edf77677594b4
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d79b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
200 OK 426 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Hash 5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Sat, 25 Feb 2023 00:21:14 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/svg+xml
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
200 OK 63 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
IP
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 2208764a674ae5efded7be10a71966aa
193cd9f5886a963d8dbeda6fd2b573ae85a56b5b
e29172eebbb43f6063165cd6b07a4910f6d70dc7b4a461bfe5360352e2b57d28
GET /_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d78b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
200 OK 426 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Hash 5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Sat, 25 Feb 2023 00:21:14 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg
200 OK 316 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (482), with no line terminators
Hash c1ad17aedbdf47a4655933cbbe580fd1
ed39ff310f343a3a0d12ca5c1151a08c34fe75ea
01fdb21518306b24ae8534a6e146d232ee4c87e668b31bb37f1dbeae0ac7fd89
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-3.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Sat, 25 Feb 2023 00:21:14 GMT
X-Powered-By: PleskLin
Content-Length: 316
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg
200 OK 281 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (401), with no line terminators
Hash a7e7af5d29fc3b189eb62e42ca37055e
eab9520fe1b9c6065c064149ad2d73b3e34df7d8
4d0ba39a06d6cca297cab001daf88cee527de59592f8bd2db694650564827ff5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-4.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Sat, 25 Feb 2023 00:21:14 GMT
X-Powered-By: PleskLin
Content-Length: 281
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg
200 OK 248 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg
IP
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (352), with no line terminators
Hash 439b2c1f5e5bae3e03f46476b6b86d95
48597fc205cdb4e1ed81311798b2ba9fd7860538
e987669bf8ef818d5e4249f750ead65157779f804fe03e9f7ae1fc7bdf904e3b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-2.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1550371034.1674692472; _gid=GA1.2.775480479.1674692472; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Sat, 25 Feb 2023 00:21:14 GMT
X-Powered-By: PleskLin
Content-Length: 248
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/svg+xml
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-2d0b9454.js
200 OK 5.6 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-2d0b9454.js
IP
File type ASCII text, with very long lines (546), with no line terminators
Hash 28bef23bd7bbc27fe68614facebe72cd
6bc1313361d4c7fcaa6d311c15ecf08ddcfe5a66
0a0686a86c52a1fe6019a18ab6649604ffd39d7ab5a09d33b017f5d56d4a2b40
GET /_s/v4/app/63b77dcd282/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"09c3819d373bd4178a620d721429fada"
age: 1349783
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651bb6b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-32507910.js
200 OK 78 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-32507910.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2a157aaae899b2ba7b80b7ea45d16132
401a0ddc4c8594461295cfa4508a6581ec893ac5
05933959830920dcd6e293ae6586f179c90e417f08a0618a6729055c9c7bac0c
GET /_s/v4/app/63b77dcd282/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"b931365947ecaea657544f82994716af"
age: 587796
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516652bbcb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash fed18bba25b162f40f625e79e7f61d6d
ca36d36c1faf5eb95c092cc260ee495e9b8501cb
0e508c94e85426d96473dbf8a86e63827d99fd44cecda4d136b31ec4d43259b4
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 00:21:16 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9162906564AA4D3AE3E3D1572BCE1F650A85C5D4"
Expires: Thu, 26 Jan 2023 11:00:00 GMT
Last-Modified: Wed, 25 Jan 2023 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2627
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f51667dbc20b61-OSL
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
200 OK 35 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
IP
File type ASCII text, with very long lines (65472)
Hash 86a14ccd5ab5426ecbe983ab6115e3af
d094b4163d8d58f0f4c5c0beddac7d79c355ae86
6d21187a1954a95486bc74caf767c9ef50a0286b8633eccb60112bff178223a1
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d77b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
200 OK 35 kB URL HTTP/2 va.tawk.to/v1/session/start
IP
Hash b368b870a93cbaef1c31f4e0bd7a0356
6c5dcb98ec6e15c0785c8dc12fe45d7c6bbe0682
245b068f5387d9063e5ff7a70763aea72fa349df326a386b82e593d320728313
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
x-served-by: visitor-application-preemptive-lggk
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5166088e7b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d75b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
200 OK 0 B URL HTTP/2 va.tawk.to/log-performance/v3
IP
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:16 GMT
x-served-by: visitor-application-preemptive-rnbr
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516691e3eb51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-f1596d96.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-f1596d96.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-f1596d96.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"058710526a0979b9e77a4babe9adfcd7"
age: 1349784
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651bb1b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-48f46bef.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-48f46bef.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"d9f3d1c4504d77c3e7c2e3e2f126fd9b"
age: 1349783
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651bb2b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-4fe9d5dd.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-4fe9d5dd.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 1349784
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651bb3b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d7cb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:14 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f5165b6d7fb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-696bc286.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-696bc286.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"2aa8e4d8fcf9760a324a8b2e7902f6ca"
age: 1349783
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651babb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-f163fcd0.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-f163fcd0.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-chunk-f163fcd0.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 00:21:15 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"a92075fd9ac5ba130387a80453676099"
age: 1349784
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78f516651bb9b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
212.98.224.64
142.250.74.14
104.22.24.131
23.33.119.27
93.184.220.29