r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6656
Expires: Mon, 30 Jan 2023 17:03:50 GMT
Date: Mon, 30 Jan 2023 15:12:54 GMT
Connection: keep-alive
bicellbakiye.com/
92.205.6.6200 OK 2.0 kB IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (374), with CRLF line terminators
Hash 83dff4b4f4aa43bf7fa3d303c94fada2
a1caf9d82e2c3cafadd9460ac8fa0d14de57e7b5
e15f62c7248be57344df5c2535fd84dbf3812b36ceab706c889d310c24064e41
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET / HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
vary: Accept-Encoding
content-encoding: br
content-length: 2015
content-type: text/html; charset=UTF-8
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11310
Expires: Mon, 30 Jan 2023 18:21:24 GMT
Date: Mon, 30 Jan 2023 15:12:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 14:43:12 GMT
content-type: application/json
age: 1782
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5779
Expires: Mon, 30 Jan 2023 16:49:13 GMT
Date: Mon, 30 Jan 2023 15:12:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kB58TRoc0mo3V+IBgGm43+uRW1uaD9JvhiFRk7U4QkivErwEBRoxoqUL17bmFFd3gkRkFTc/c3M=
x-amz-request-id: MGFY7HP6C83EA7MQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 14:50:46 GMT
age: 1328
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 15:12:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bicellbakiye.com/code.jquery.com/jquery-1.9.1.min.js
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/code.jquery.com/jquery-1.9.1.min.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /code.jquery.com/jquery-1.9.1.min.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/kit.fontawesome.com/f07874fbed.js
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/kit.fontawesome.com/f07874fbed.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /kit.fontawesome.com/f07874fbed.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/applications/popup/scripts/kuramsoftdynamichead.js
92.205.6.6200 OK 809 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/applications/popup/scripts/kuramsoftdynamichead.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 344735f35b6221b888d9afbdb126d770
14f697b3c1f94cd83e33195ec6450ffd5316b3b1
521ac0c2d998d6c3da8a914dda31a6a20a09b8a6d2cc73e6aa63d96e5d942002
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /www.bimcell.com.tr/applications/popup/scripts/kuramsoftdynamichead.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:44 GMT
etag: "7ea9-ce5-5c69d34f21a00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 809
content-type: application/javascript
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/code.jquery.com/ui/1.11.0/jquery-ui.min.js
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/code.jquery.com/ui/1.11.0/jquery-ui.min.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /code.jquery.com/ui/1.11.0/jquery-ui.min.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/images/logo.png
92.205.6.6200 OK 2.5 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/images/logo.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 170 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash d39ee84d792707f7fce407bab7ecd4a1
adca826799c7513ffb2e76478763bd667f6401ef
9fa988580b6be1f2d45105d565442715cbfd2223e61f8d7afc7d47581f2387b2
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/images/logo.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:48 GMT
etag: "2c065-9a1-5c69d352f2300"
accept-ranges: bytes
content-length: 2465
content-type: image/png
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/reset.css
92.205.6.6200 OK 404 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/reset.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (734)
Hash 2bcd75a678ed596f959e8152a11e99b6
b1596f7a81df192188110ee49857235fc419676e
08b7c7354a376bbc5d52cf2630445ea3f815b34b774b5dd197b8320c41d4d263
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/reset.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:48 GMT
etag: "8321-316-5c69d352f2300-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 404
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/images/bottom_logo.png
92.205.6.6200 OK 1.3 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/images/bottom_logo.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 109 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ebbd7f7e48df7dd2d0b570f01e6ccb0
4e39ebbbb4cd36d21667821eb8494fc4b1053eca
576478ae1dc83021e5695547c46bb943fee6b8592c4b60372dc37632111942c0
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/images/bottom_logo.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:46 GMT
etag: "2c061-51d-5c69d35109e80"
accept-ranges: bytes
content-length: 1309
content-type: image/png
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/font-awesome/css/font-awesome.min.css
92.205.6.6200 OK 4.4 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/font-awesome/css/font-awesome.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (20859)
Hash 719f77d0e86aa3ba405279f582ba2a0e
b9bbb83082da4de4366883d9b519a323191ac794
1b0ac2b32962279a46fb74f94375a3232e178ebde4a62406e403abb3937df71c
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:44 GMT
etag: "2c05d-521d-5c69d34f21a00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4438
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/style.css
92.205.6.6200 OK 2.9 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/style.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash f6787cef0ae13f9dbd6ac62a953e088d
439b5cf52c25d3cc3d1bf64fa6b83b23b4306a3b
a05e03d8f12c68f749bbd8eee1042259ef672ac60e4ccd821e93450199883f18
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/style.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:48 GMT
etag: "8322-3d9f-5c69d352f2300-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2863
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bicellbakiye.com/www.bimcell.com.tr/templates/css/bootstrap.css
92.205.6.6200 OK 17 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/bootstrap.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (540)
Hash cb4af3dbb34941ec194bbaf853a7fb84
008d485e6e348939430de710a8d2d4176a02faac
7bf0f87100a473aa60ab16e5d4ec48c3dbdecc6defe1cffe6afca08d86105f28
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/bootstrap.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:44 GMT
etag: "8320-1da2d-5c69d34f21a00-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 17084
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/scripts/main.js
92.205.6.6200 OK 81 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/scripts/main.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 1d20a110b986aca0919f291510cb2f3b
e056b0126bb6a21012d14f0ccdae8a2a97f923ea
86f9c473c4a923708a65f137e1821002c0f5df7512cb64256e919dbacff68ff0
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /www.bimcell.com.tr/templates/scripts/main.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:50 GMT
etag: "2c068-7a-5c69d354da780-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 81
content-type: application/javascript
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/scripts/bootstrap.min.js
92.205.6.6200 OK 7.4 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/scripts/bootstrap.min.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (28941)
Hash 3049dfe7eaee2448b1acb1ee75641bc7
0a621b7df81593a91284294fe342e367e2f2fbd1
eb27f4e30fe641e56e5333415b358da5c8373504e01c283c38c1ae97cbb19475
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /www.bimcell.com.tr/templates/scripts/bootstrap.min.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:48 GMT
etag: "2c066-71b6-5c69d352f2300-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7385
content-type: application/javascript
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bicellbakiye.com/code.jquery.com/jquery-1.9.1.min.js
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/code.jquery.com/jquery-1.9.1.min.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /code.jquery.com/jquery-1.9.1.min.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/scripts/jquery-1.10.2.js
92.205.6.6200 OK 78 kB URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/scripts/jquery-1.10.2.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
Hash 7eb53c6d89efa1afbcba63bc6e751213
8fc3906581cc03146a99c1aa5d24406e9df27e38
31cfe1f6e4c2d3935d45ffbc74aecb6711cdc617f1b9f50c5ae6b440be8a4412
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /www.bimcell.com.tr/templates/scripts/jquery-1.10.2.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:50 GMT
etag: "2c067-42b2f-5c69d354da780-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 77453
content-type: application/javascript
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/code.jquery.com/ui/1.11.0/jquery-ui.min.js
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/code.jquery.com/ui/1.11.0/jquery-ui.min.js
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /code.jquery.com/ui/1.11.0/jquery-ui.min.js HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/download.png
92.205.6.6200 OK 369 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/download.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 15 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 42fecfa5937a3960af7788b4bded669d
2676cf8f861d12428d8740312b3cdddef3dc2986
fe63f0ede667ce21480b86f1386827bfc782968f40844b85db75538f5fdc11a7
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/images/icon/download.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/www.bimcell.com.tr/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:46 GMT
etag: "2c062-171-5c69d35109e80"
accept-ranges: bytes
content-length: 369
content-type: image/png
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/phone.png
92.205.6.6200 OK 424 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/phone.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 17 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e4e4113bcfd9131a729a390d0af058a
8dcba519f480380139b0f964888e3d592d257f7a
f8f33ff94a93cb696541eda6b717e708bb09cac46afe5bb3713a479fd373d91b
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/images/icon/phone.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/www.bimcell.com.tr/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:48 GMT
etag: "2c064-1a8-5c69d352f2300"
accept-ranges: bytes
content-length: 424
content-type: image/png
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/monitor.png
92.205.6.6200 OK 418 B URL HTTP/2 bicellbakiye.com/www.bimcell.com.tr/templates/css/images/icon/monitor.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 29 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 157d2db88af73ddf7c5d26781da073fe
6902de5730cd4443eace771ff1f5f6316eb522fd
07c90a81248b93654e3e72d77b6d47abac7554b0f7d73283139827c1b037e411
Analyzer Verdict Alert openphish Bim Cell
GET /www.bimcell.com.tr/templates/css/images/icon/monitor.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/www.bimcell.com.tr/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:46 GMT
etag: "2c063-1a2-5c69d35109e80"
accept-ranges: bytes
content-length: 418
content-type: image/png
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/main.php
92.205.6.6200 OK 3.2 kB URL HTTP/2 bicellbakiye.com/main.php
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 35ebb54bc4fc36aa1614c6f496537196
4561f879f8408ca96f175e76e3fd8ac1d5e63665
72cf522a6391e3dbe4d4e4122ec21dbe8ac4f70d7d3994e1eed31edb9eaefbb0
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /main.php HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
vary: Accept-Encoding
content-encoding: br
content-length: 3161
content-type: text/html; charset=UTF-8
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 61854
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 14:41:41 GMT
age: 1873
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/chosen.min.css
92.205.6.6200 OK 1.8 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/chosen.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (8718), with CRLF line terminators
Hash 7673897888ebe37b0a72b63b3c257fd3
e30fc381cccfce42b073d8b40b7a6a7ea3e85d0a
290c0fd624f3a0bc57df30cb186891066f5a6f0cb47e04ada2753a7231f73c71
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/chosen.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:06 GMT
etag: "2c001-228a-5c69d32ae4480-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1794
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/animate.min.css
92.205.6.6200 OK 4.0 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/animate.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (45426), with CRLF line terminators
Hash ef9bc6798d75aba2951b6933fd1c5bab
cbc5cff84bfa1d53b0ad6d4a355342261497f2cc
5f7de045021bac2efb7a57b85e896e08fa4b1fd15bc7c3f359c71112c058255c
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/animate.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:06 GMT
etag: "2beae-b5fb-5c69d32ae4480-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3951
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick.min.css
92.205.6.6200 OK 393 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (1297), with no line terminators
Hash 1872142853412d953ec439debba2adec
804650d9a4fb3f2cdf566f566af6bd91f939af17
11c2d26acb3c79a0763a9a0783ff1f5de60b429e3ae6cd71c70d5b4119605579
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:08 GMT
etag: "2c008-511-5c69d32ccc900-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 393
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick-theme.min.css
92.205.6.6200 OK 640 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick-theme.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (2386), with no line terminators
Hash 201f3552444b883d4973773817568bfe
f1ba5a0aa5c22a19db5365232946921d2364d9a2
7be7474dfb4b5f33bfc7ecb213ddf78c2ab444490d145e934761552bb901b6a3
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/slick-theme.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:08 GMT
etag: "2c007-95c-5c69d32ccc900-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 640
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/bootstrap.min.css
92.205.6.6200 OK 18 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/bootstrap.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 8f3aec556d6385e02c03899fe70717d3
3feaef1379a37b400a3dba27e8206b459d99ffd9
3d309f856dfdee2292d9b730210d55f1d305caea72417040a0e399a285bdeca0
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/libs/css/bootstrap.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:06 GMT
etag: "2beb2-1db45-5c69d32ae4480-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 18239
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/jquery.smartbanner.css
92.205.6.6200 OK 1.1 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/jquery.smartbanner.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (496), with CRLF line terminators
Hash 7047b99ff5861f09e0a1997e91a9a98f
740bdb1781c5de26f15e71ceb7d101c5e6a607a2
b04d69cc7dca9c9459bdcecb42324332934b87d9cde0266fd5c669baf2fc8fdf
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/jquery.smartbanner.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:18 GMT
etag: "2c01e-1012-5c69d33655f80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1138
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 525828
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 00:55:59 GMT
expires: Mon, 29 Jan 2024 00:55:59 GMT
cache-control: public, max-age=31536000
age: 137815
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/scss/tt.min.css
92.205.6.6200 OK 9.9 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/scss/tt.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d9765d2da8f9d6f27ae77d05db038748
952cad3071164251993717c4645689f84af238d7
091ac27ab154c457009e78137b19a100afc0c80c3cba08ac73a9b44aa70cf709
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/scss/tt.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:12 GMT
etag: "2c00f-154f9-5c69d3309d200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 9944
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 14:50:08 GMT
expires: Wed, 24 Jan 2024 14:50:08 GMT
cache-control: public, max-age=31536000
age: 519766
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/base3abf.css?q=1.0
92.205.6.6200 OK 1.9 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/base3abf.css?q=1.0
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (302), with CR line terminators
Hash 547967aaf05603c4f49765ff14becff5
3347caf6248e342cf61dc91d09ea6fdfd6ae014f
596fdf33d3d567540bb8b8c4449740a98385b2754f8868ff285930b49b41d173
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/base3abf.css?q=1.0 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:12 GMT
etag: "2c010-3554-5c69d3309d200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1854
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 20:58:06 GMT
expires: Thu, 25 Jan 2024 20:58:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
age: 411288
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
92.205.6.6200 OK 465 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 99a50207bc62ff7e9d59b34a95d17f14
519a149871a762225115448964edae3235f371f6
a984986482a3fac7d2eb32f5ab315a573f942f1f809ed335150ab6e45441c756
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/general.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:18 GMT
etag: "2c01d-a3c-5c69d33655f80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 465
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 07:51:59 GMT
expires: Thu, 25 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 458455
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/pluginsc81e.css?2
92.205.6.6200 OK 472 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/pluginsc81e.css?2
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (1837), with CRLF line terminators
Hash 1a59105c84dd4b77982e822f7ea49ab6
e9588b0344d1fe375e036c4e20cbbec2d0e5f0ca
670d26229ba39652702624fefce0f9273d2d0708c12645cf4a751400b410d020
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/pluginsc81e.css?2 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:20 GMT
etag: "2c020-7d1-5c69d3383e400-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 472
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/bootstrap777d.css?1.1
92.205.6.6200 OK 19 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/bootstrap777d.css?1.1
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with very long lines (540), with CR line terminators
Hash 8612eb301dec6e043a178a1a497acdb4
197dca0f2b70d95cda5fd8a22d3a468a448f0e60
c9cecde406b9f066575796e260430f9ecd19698c684e9abcab99ef18ca61e952
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/bootstrap777d.css?1.1 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:12 GMT
etag: "2c011-2338e-5c69d3309d200-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 18987
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsiveeccb.css?3
92.205.6.6200 OK 1.6 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsiveeccb.css?3
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type assembler source, ASCII text, with CRLF line terminators
Hash afa740cb2d89495b79a97fcfc3f32c73
69e10d55f375d68dfcd683619211b2dec9cbd6c0
2ccb58bb986cfa83c60f70250b6bf006f408e1be77046de4be38fd5f0b032db7
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsiveeccb.css?3 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:22 GMT
etag: "2c026-1f41-5c69d33a26880-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1626
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/listbox.css
92.205.6.6200 OK 425 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/listbox.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 567d9bd8a101ab967755ddbda405e357
bbc0dfaf83003800e6809318da2f0335da668020
0e0cf2bd001d975feca2b9f5c942a0902d97c4d81e8a3eac7da264042f984b05
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/listbox.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:18 GMT
etag: "2c01f-4da-5c69d33655f80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 425
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/dataTables.bootstrap.css
92.205.6.6200 OK 1.4 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/dataTables.bootstrap.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash e107386ee76e07ccb29321a7663e8dd1
1324a5bcfa3fecb0f223a763a888d37683789070
600f761036593ff6e3c56dbc5ac1de7784f49ecf85976358ccb7d5a40c3acba8
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/dataTables.bootstrap.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:14 GMT
etag: "2c012-1bbb-5c69d33285680-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1432
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets-ext/images/oi/avea/icon_how_do.png
92.205.6.6200 OK 3.9 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets-ext/images/oi/avea/icon_how_do.png
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bb3609c32e987ff9a0fc969ce4669e6
92f75f0c90be633d73d974540bb20efda755b75d
bae3ba98a456a91085c66342ccabb8b3be47cd152e6820392ac0facc79f3d57b
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets-ext/images/oi/avea/icon_how_do.png HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:08:46 GMT
etag: "2a0f2-f5c-5c69d317d1780"
accept-ranges: bytes
content-length: 3932
content-type: image/png
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/datepicker/bootstrap-datetimepicker.min.css
92.205.6.6200 OK 1.5 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/datepicker/bootstrap-datetimepicker.min.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash f0032d3f85d26013fb7b4caca3eb7882
d1562db6111915377d453600cd2dc0bbb5b7a0b4
8f2d284715b0f0eab47f4259a8a0ed19ab93d5c9f4b0e162c22885da20a5f03e
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/datepicker/bootstrap-datetimepicker.min.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:14 GMT
etag: "2c013-20f4-5c69d33285680-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1468
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/style6512.css?11
92.205.6.6200 OK 45 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/style6512.css?11
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1943), with CRLF line terminators
Hash da7b20a6293822154ee43f3344789754
c5a02bc0ca80eeb6c809107ebd1937b964151449
3d480f981cffc2a4818e52219bf810ebda6a7cd186f0023e36e70b89b2bd048b
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/style6512.css?11 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:22 GMT
etag: "2c027-493c2-5c69d33a26880-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 45431
content-type: text/css
date: Mon, 30 Jan 2023 15:12:54 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts.css
92.205.6.6200 OK 401 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 333aa6644bbd93fed56186427d886017
41320193bd9f3acb86b8ba028ec085d9d44fc064
6cb99914e677888ac60c6cff7e0dcd04af9098a3ca63eff02d9f2a51655bc586
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/scss/tt.min.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:08:58 GMT
etag: "2be14-fa8-5c69d32343280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 401
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/mobile.css
92.205.6.6200 OK 458 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/mobile.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash b6ad9c4a644f25c98b8f63d40602a31f
286c34a4a3588b103783bc6cbd471577facff222
5b00f2ea365b93c0871ecd19afa7581d93138132bf0a36ee6da27a5bae47001a
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/mobile.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:20 GMT
etag: "2c024-c23-5c69d3383e400-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 458
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:12:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/tablet.css
92.205.6.6200 OK 339 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/tablet.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 6afc324cb6c185ae65dd2ee709a9a08a
8fbb3b7e70730f38ab63393cec589662baec71bd
4218c9bf740b1a6c9772ca54819cbb926bbbbe0f7a186e47370210c72b014e7d
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/tablet.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:22 GMT
etag: "2c025-844-5c69d33a26880-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 339
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/maximum-tablet.css
92.205.6.6200 OK 253 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/maximum-tablet.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash f5ff366945dca6eee96875ee7d45078b
c9d3794e79b1edf71d4293435c3ebffbf3efbdfe
38bb4cb6c7ae5c71f5d09e844f34a869b2792a4d576a02d7828e7831205ad060
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/maximum-tablet.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:20 GMT
etag: "2c022-586-5c69d3383e400-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 253
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/desktop.css
92.205.6.6200 OK 307 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/desktop.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash f5b31ca05303bf617c392b39ae8d8aec
f8d928a5a65935a2b7ccc246b96e8fa440184e6b
2966570a69a37fe5650b987b7bcd519f86501f6198d6881702cc11fbbf9be530
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/desktop.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:20 GMT
etag: "2c021-7c5-5c69d3383e400-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 307
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/minimum-tablet.css
92.205.6.6200 OK 401 B URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/minimum-tablet.css
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 1dc4088f308663697062bd340659a691
6e804cd4fea7291d84b64210704d8ae9cee440be
ee3f3390b505a931fff2ccda7086c16edfc103ff238f81dcec7a5c8734ba74d8
Analyzer Verdict Alert openphish Bim Cell
GET /onlineislemler.turktelekom.com.tr/mps/assets/css/responsive/minimum-tablet.css HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/css/general.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:09:20 GMT
etag: "2c023-a2a-5c69d3383e400-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 401
content-type: text/css
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5423
Expires: Mon, 30 Jan 2023 16:43:18 GMT
Date: Mon, 30 Jan 2023 15:12:55 GMT
Connection: keep-alive
bicellbakiye.com/favicon.ico
92.205.6.6404 Not Found 315 B URL HTTP/2 bicellbakiye.com/favicon.ico
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert openphish Bim Cell
GET /favicon.ico HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-regular.woff2
92.205.6.6200 OK 32 kB URL HTTP/2 bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-regular.woff2
IP 92.205.6.6:0
ASN #21499 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 32124, version 1.0\012- data
Hash 846be84526c219fcecce78cf5de559b7
7d4f9e45cb423c3c876fb6820a24a00f85396ede
198a9051bde3e14e464d616fe4f5f9015f62c6f750bb9430e60566e2010e0739
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-regular.woff2 HTTP/1.1
Host: bicellbakiye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://bicellbakiye.com/onlineislemler.turktelekom.com.tr/mps/assets/assets_new_menu/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Jul 2021 14:08:58 GMT
etag: "2be11-7d7c-5c69d32343280"
accept-ranges: bytes
content-length: 32124
vary: Accept-Encoding
content-type: font/woff2
date: Mon, 30 Jan 2023 15:12:55 GMT
server: Apache
X-Firefox-Spdy: h2
www.bimcell.com.tr/templates/css/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0
212.98.241.171404 Not Found 1.2 kB URL HTTP/2 www.bimcell.com.tr/templates/css/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /templates/css/font-awesome/fonts/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: private
content-type: text/html
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=cilzftx4mk2rjjquz3foitop; path=/; secure; HttpOnly; SameSite=None
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Mon, 30 Jan 2023 15:12:54 GMT
content-length: 1245
X-Firefox-Spdy: h2
www.bimcell.com.tr/templates/css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.1.0
212.98.241.171404 Not Found 1.2 kB URL HTTP/2 www.bimcell.com.tr/templates/css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.1.0
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /templates/css/font-awesome/fonts/fontawesome-webfont.ttf?v=4.1.0 HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bicellbakiye.com
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cache-control: private
content-type: text/html
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=jj1doifur553r10apmhv5yoo; path=/; secure; HttpOnly; SameSite=None
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Mon, 30 Jan 2023 15:12:54 GMT
content-length: 1245
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3AMVpX9fqUMyCG4xAAIVaA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wFf2XzzsljcL7uJ1imXSX4E4gFQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14302
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:12:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14302
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:12:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14302
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:12:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14302
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:12:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 66399
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 61938
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 62447
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
142.250.74.106200 OK 12 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP 142.250.74.106:0
Hash dfdbc6de7fcefc9cc5cd1704e53687cf
5bf0f4c8e3f9762a5d071707ffdf633247a03992
4f2888aa0c3cd455d20249c5722342510ba7ba3e0fe6daa6f2f6cedb483ed4d7
GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bicellbakiye.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 15:12:54 GMT
date: Mon, 30 Jan 2023 15:12:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 62255
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 62299
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2