Report - f5ajans.com/

Report Overview

Submitted URL
f5ajans.com/
IP
212.98.224.64
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
Submitted
2022-11-12 00:18:22
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
242

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.0 kB	2.2 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2.7 kB	5.6 kB	142.250.74.35
va.tawk.to	8297	2017-01-30T05:20:46Z	2023-03-10T15:02:54Z	1.9 kB	2.4 kB	172.67.38.66
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	1.0 kB	1.5 kB	142.250.74.10
f5ajans.com	unknown	2015-05-28T06:12:59Z	2023-03-10T01:22:33Z	43 kB	1.7 MB	212.98.224.64
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	44.238.3.246
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.3 kB	57 kB	34.120.237.76
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.9 kB	123 kB	216.58.207.195
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	368 B	21 kB	216.239.34.178
tawk.link	48589	2015-06-24T13:31:14Z	2023-03-10T05:00:51Z	412 B	722 B	172.67.162.230
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.0 kB	5.3 kB	23.36.76.226
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	381 B	44 kB	142.250.74.168
embed.tawk.to	8650	2014-03-19T22:03:49Z	2023-03-10T10:36:32Z	7.3 kB	123 kB	172.67.38.66
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-10T05:11:21Z	368 B	1.9 kB	104.18.20.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-12	medium	f5ajans.com/	Malware
2022-11-12	medium	f5ajans.com/	Malware
2022-11-12	medium	f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1	Malware
2022-11-12	medium	f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3	Malware
2022-11-12	medium	f5ajans.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js	Malware
2022-11-12	medium	f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2	Malware
2022-11-12	medium	f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2	Malware
2022-11-12	medium	f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff	Malware
2022-11-12	medium	f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg	Malware
2022-11-12	medium	f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed
2022-11-12	medium	f5ajans.com	Sinkholed

JavaScript (62)

	URL	Size	First Seen	Last Seen
	f5ajans.com/	363 B	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:03 Times Seen9 Hash 53c9ab155aaf2ca1859de36c1291c26f f94d774f65331d5e89482419ae9aee2c7b078a46 8662a13aaae55a6646bc4afea40ee683768d18b1d067cdec6979567ce8ed6922 Loading...

	f5ajans.com/	814 B	2023-03-07	2024-04-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-26 15:38:52 Times Seen1500 Hash 23cf2c7af3b45114175019972b07a0b8 adf17024a1fa3a00bc6eae0c67244cfba15e8712 5cbf7f9ad6b7e0e058648ddcfa9834e6b38152d133838352b2b51aa4ae5989b8 Loading...

	f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0	24 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen19 Hash c714efac043c41afd090e3d9160dde9e a75dfdaf7262421e7ca72c655520d01fa7c45fce cfa2be6115bdb489c0cf00ad3691310d815b83728072e232794c7abf0cb67331 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js	42 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen11 Hash a9de7827d27344a2688928288f943958 b82b5edaa28fdb6772c09ce4d104c4e283669167 680c0f9b5f1f4b1e18e2360282765aea791a255d1058abcee3289d5b3366b602 Loading...

	f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0	21 kB	2023-03-07	2024-01-15
Pretty URL f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2024-01-15 21:48:51 Times Seen27 Hash 12f5ce43dae674d816d5a94c2c558bd2 660ffd17d075d2436b3e199fcbe038bfd3840c26 22a87591300e52f84c35cd934c9c5e4a4a486e8237b2855f1484e2da7cc5d5f7 Loading...

	f5ajans.com/	2.1 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 06:21:32 Times Seen6356 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js	546 B	2023-03-07	2023-12-03
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2023-12-03 21:40:45 Times Seen7208 Hash 09c3819d373bd4178a620d721429fada fc407211bc5ed4384dc85e981c5947f727254bd9 48126b4a0cc388ba014594d6d64a6c6c6bb1c0ea145bb1c3c2b1da1a514e4a5c Loading...

	f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	19 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 21:27:40 Times Seen38069 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-26
Pretty URL f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-26 21:27:40 Times Seen31835 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	f5ajans.com/	134 B	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen9 Hash c8f619f5527785e8da85c457ef72b4a6 fe37a8177b213c5978717ba8c42645d368701e6a 5ac6ae73f38769b7bc103b1ebba412d125e0b374b920e260b1d7cf8aab440924 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js	151 B	2023-03-07	2024-04-26
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-26 08:36:19 Times Seen46611 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	f5ajans.com/	237 B	2023-03-07	2023-10-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-10-26 04:12:00 Times Seen6 Hash f37704cb1227d256bdffba9b9117cc4a f79a145288656c6599f58b0504a61eab8803ed0d 43a897145d64ba2da79eb6b148cdc700ce623d600ebe9fd3fcb45d9cd89b4117 Loading...

	f5ajans.com/	140 B	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen9 Hash 919e78b82b00785553e0435d0a6f6d79 94a1ad9e0e0d6a63e25d74262d13459bfaf0cc76 35488d075d9f3788de2fb7a84601d9fd509626b7071016e4fd104abc8205b9ff Loading...

	embed.tawk.to/58a9f0de57ed180aac2168b3/default	2.1 kB	2023-03-11	2023-03-11
Pretty URL embed.tawk.to/58a9f0de57ed180aac2168b3/default IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:59:44 Last Seen2023-03-11 11:00:22 Times Seen1 Hash ff87b5093dbcacd3328ecea0d50cbf4d 4f44e3011f76632822a4f08344f4eb6ed6b332d0 646ba15e18f1e78c9817e83cdb6edc81bdd4c13009632a214b920b17a0ab9881 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 216.239.34.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js	942 B	2023-03-07	2023-12-03
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-03 21:40:45 Times Seen7224 Hash 5f434bdd806571a4e1b385bee9316ff6 ca69e13015a6b7769e4174179dc8befd4c543c43 fc129f67c34d70578dc66a2ac6be2d44011eab5a05077797b8e56dbc2f2c9867 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js	22 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:37 Last Seen2023-11-26 03:11:04 Times Seen34 Hash 9f341bce5bef5216b9453cc598448eb5 baa968730a248eb1b9da8932586a911ed83e7bfb 82cb75396bee9f7fbe20e70892ad37b9a0badec602f21dfe3ce65ece1099698e Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 21:59:51 Times Seen37102254 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	f5ajans.com/	1.9 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:03 Times Seen10 Hash 81acfc5f8103956f8d588c1fd4cd9320 18941a8dad70d1aa7ffcb7a67b7c98f1cf7f1ee3 4408d13eec48729e092c148d5108c243e7912cea654605c6a8173dab4b69c781 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js	14 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen20 Hash af4d814b66d1505bbea65debd4b70947 f33a710e01a53797c0385002cdb14ba5fadefd58 4ff1f752c338166379f0d11dd2a08f91e55f204a05ed0feb90c52d7eccc1269c Loading...

	f5ajans.com/	139 B	2023-03-11	2023-03-11
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:00:22 Last Seen2023-03-11 11:00:22 Times Seen1 Hash 83dda9819408e0ec0daf190bebf7e24e ebed9aa9ee5cd7535319aa9b993019d6a87c2a9c b928adfeb8b2b54255c9330da19f566f9badb30d346c1565d02abaa8a876042f Loading...

	f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js	7.9 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-26 14:21:46 Times Seen3341 Hash d18523e4a4aaa9420a86e4dddfb07554 fa22a3d38dc3c87ca92f1456846682abeb696b96 6e86a52a9858206302e32036d89907e3ac87762055e7f9c6364aec33221b3e41 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js	11 kB	2023-03-07	2023-12-01
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2023-12-01 20:53:29 Times Seen11867 Hash a92075fd9ac5ba130387a80453676099 4b5b13cf9479b8311d574356e53f8da74200c57a 544039b2ff06226afd008c3625818bbfe76a2598d7159145d06965afaf4f09de Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js	74 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:43:49 Last Seen2023-05-11 04:21:02 Times Seen3 Hash 7031f234532c26d04cce67a704e934f4 c1ab15f65c3673b1938c2c43553f8812ce5ec57f 8dc60e6c2f43477d53de0cd15c72b092937771c648a09772f28cd2a2e67ee74c Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js	32 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 83e26b7bf681c9d99b94f9ba8ca781ce d78d479676f4c079dc77ccfe18312978c6c25904 dc8507854830b08cb52aed9c40542c1bc55db6c6be7055f3f2e41c552e851cb1 Loading...

	f5ajans.com/	1.4 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:03 Times Seen10 Hash c518f98fc17e3987350124f74c19cd9b ad796761b0278ac9ff36a34a720e134a8962d8f4 082e9efe2fdc68f3f5c0c2b0c254583c66712ee13f100c7ee054b0d30b53c03b Loading...

	f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6	19 kB	2023-03-07	2023-12-17
Pretty URL f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2023-12-17 17:00:06 Times Seen119 Hash ad75d6fd79f8d8ae1fbe7667ca27bf11 e6a682fa04c6d0d3de7ea66f2e5526e6c99b7b87 abe877050450746e1e4d4965aee16a3b66b223de2ffb2d74f170341728a882e1 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js	2.3 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:42:23 Last Seen2023-05-11 04:21:02 Times Seen3 Hash 28824857224eeeac7394f7755fa2d3ed 0ff784f2680b77b43ec9ca69282407c14f405fcf d218a82c89d203d9aa4cd01c04fc5fec48cb61810661368af7e17813f86f4523 Loading...

	f5ajans.com/	264 B	2023-03-07	2023-10-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-10-26 04:12:00 Times Seen7 Hash 74fa1d3db8842dd6de65a22d2c7eef2c 9d6d2ab0e1e8b9a6f502c8ec377a543e5feb320f 84d65f3bfa14cf4f71d001248baea06106c044c2da1e5dea6b362d440d33a5cb Loading...

	f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0	7.0 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 64347556182659c4a99fc49eb15a4d86 799db84cb33055fbb2deb08e2409ecdc5c3e8ecd 22580210abc0e12656f5e451d4b22136e4280ff0eac06c89204f4ed95c8f8964 Loading...

	f5ajans.com/	1.6 kB	2023-03-07	2024-04-17
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:28 Last Seen2024-04-17 00:44:57 Times Seen236 Hash 05bc964c065d6fc030b180185bc97ece 2f3f0b54ee68047a4de27b40eb1f7e6646065f77 00ca86ab31db6d1607d4c69cdc953c8c9f24f5247c6461ada24a138434dc19b8 Loading...

	f5ajans.com/	420 B	2023-03-07	2024-04-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:56 Last Seen2024-04-26 15:38:51 Times Seen221 Hash 2811bbf0dd3ea366908b32e20689df18 b0c2f70015b5b238fbb6eaee262395a0a5442011 47858b93a63d43eea3932e994407e1e92ae786d3b4e9e759161b715d10eff8f0 Loading...

	f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 21:53:57 Times Seen15501 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	f5ajans.com/	1.1 kB	2023-03-07	2024-04-24
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-24 19:47:52 Times Seen778 Hash 8cc3dfe80cdcf93b3bf65d522483e93f 66a8c6cd99278a2b28d113dd600f0ef48f07c739 baae8264dd0b62cda8bfa2bce0f58de3ac46044647c0c089c7e437385e4760ba Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js	121 B	2023-03-07	2024-04-26
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-26 08:36:19 Times Seen45931 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-26 15:37:45 Times Seen30983 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js	31 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 0227bcda4a1f7f0f3f41853bbd750364 4e6642a763d601879c54ab8957b113e0509cdbe4 06218bee5482fc69cf92e46fe08d32171b155933ba0d5915a883095a75de63b1 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js	78 kB	2023-03-07	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-01-03 04:29:13 Times Seen8812 Hash 7dcb496e4882926f93f2e73fa87062c0 f84d8f772336f305bbbd882a1e5d48d9aa8bd16a 5958b8f2069b0a3292ed7a9db46b8109adac7e81591238557125893ee7e87bb7 Loading...

	f5ajans.com/	167 B	2023-03-07	2023-11-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:03 Times Seen9 Hash a3cfa84e6d3293186a09334375f046bd f7d0f4e726897952a42298488aa33c095a921378 53cf6130a427b3a17ae1284f98f35dbc9ff76d47fd376a20f7e77a1e109d4731 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js	1.0 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 37754d1ca9f10c6d3ad96bc85da8e8ed 334a0d27966b6ab647a51184ce882ebf4d79ff8c 8fbd25c3c1855315d241814d0ef0f142dfb6e71362ccec1a2dcc6875582c6280 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js	4.9 kB	2023-03-07	2023-12-05
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:12 Last Seen2023-12-05 00:09:07 Times Seen22 Hash 051d621ab3be584df30117c405b0546d 57158162f87aa0754cba2a2b638f124f0f727ea8 9242174ce5abf2486ca557f190b62cb4bad4f94e404e313ecd5e700af92f3ad5 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js	10 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:43:49 Last Seen2023-05-11 04:21:02 Times Seen3 Hash 6dba9d01f672f86fe4df10013a74a548 740b52c8e679c68f173453c94d5dcd5bb6f078c0 5d8de5fd7696ce8610a5ae5e428cf9856eba21b5758eb09f9c404a7158bc69ac Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js	16 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:43:49 Last Seen2023-05-11 04:21:02 Times Seen3 Hash 35b74b4d87efe5782e575c273fce182b ecac9028f852d3aab21a5b68a094fa22dec57eb2 3f1b94b300055cae1502d615576118b05029df79850f15d7ced13b865dd3eb98 Loading...

	f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 21:27:40 Times Seen68680 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.googletagmanager.com/gtag/js?id=UA-197116259-1	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-197116259-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:00:22 Last Seen2023-03-11 11:00:22 Times Seen1 Hash 167db76ff47f1e6d080e331dcf5c53b6 7153fd134ba9e34cc7e3012d647471930bd6dcb9 909c1a3c6579b0383a922660875e760eda8992d08d6455ab9d6f768185917610 Loading...

	f5ajans.com/	125 B	2023-03-07	2023-07-15
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-07-15 03:18:51 Times Seen3 Hash 081c3842577bd03bd76ad008a61a5825 78353b9b52f3946d82d1698b5b5af031fca949ab 3bc85ec9b2a402ee0c85e431052b56b647e1cdbb74d3079117653bc5deea32fd Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js	17 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:43:49 Last Seen2023-05-11 04:21:02 Times Seen3 Hash 7a1cce8ba15e49dc07d33b416f0fda26 810da5dda8a5b09fa0f17b36bb9df041ea5d064e 54f0c530a8feefb10c1b62cf90baeefdac87ad734fb34cff4850f6f1642d05f9 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js	6.6 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash a3c900439df892316d7a20e6a48d2fa1 d1ab62f323b9efe777e6fee7511436cc21e62a93 512aabd56ba52fb38ab4e125392cc2e94074ba91cb7ef630a3bb90250a2c9333 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-fdb1d41858c7ff53c75d52f8c199b847.js	1.1 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-fdb1d41858c7ff53c75d52f8c199b847.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 053fac25f08cd1d1afef43a9d0012399 74aa0411182188d2b619e7fde371557967d7c454 e64d2d92bf01cce64b483d92339f665dd29110754a5673e8c494047fc0ccd4d2 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js	211 kB	2023-03-08	2024-01-03
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:02:52 Last Seen2024-01-03 04:29:13 Times Seen92 Hash 70dac54eca3bb2143032bc4db3237623 b072b86acccf5e05a52ebfbff58ec2961b200063 299a4f2bad31c68a87c725376227e4e71d3fa3be5ac21776509b6a526bfd603b Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js	1.4 kB	2023-03-07	2024-03-21
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2024-03-21 11:15:56 Times Seen27 Hash e47c5d674a48a073e1edb5c4f47dbc55 bb7c89253fec1c46f293692be3e60e33cfa51df8 2215cf86f0c0bc8d48000733d8f355bd9f4ad381bb2d6f320a76599ba43d8103 Loading...

	f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0	36 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen23 Hash c00bd29a42331acc7a747b9515b42633 0045b1081837d6d3c3d6e288b58e1656d903d819 bcb4345d8f322b54ba9e537cd37c04b9ff6329199adbcab0c73ccb8fb894e979 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js	4.5 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 3c59eb148d34aa7a34d79eb67aa5709a fe051a001187264f55f062598e18edd15bc86bef a550f9e00541912a3ab77b2c6cd38134614c859b5d0e8d9ddf4d49f60ab5a1b8 Loading...

	f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3	122 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 93b13ab6f446c4e64f6b28bd2122c9f5 a2e0d2f21908ab58c27d0b2a547b0e721c9912c8 7cb77a66c41da892ac99c6f82e489c20c9ffb752a42f86819ac8f579dcf4e962 Loading...

	f5ajans.com/	2.3 kB	2023-03-07	2024-04-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-26 15:38:51 Times Seen4798 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	f5ajans.com/	87 B	2023-03-07	2024-04-26
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:26 Last Seen2024-04-26 21:59:49 Times Seen6020 Hash bd5f648f4fa75f28b17faffe66049687 c9c2791b295684a919a2bfd7b7e2ef5aab3c178a 1a4ba4a340b3f30596d32c1b272ddcfdbf3ccb8e89c2fa917ea60469017aeee4 Loading...

	f5ajans.com/	2.1 kB	2023-03-11	2023-03-11
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:59:44 Last Seen2023-03-11 11:00:22 Times Seen1 Hash ef36246c62dd6a72ecb4942d352e24c2 f6dd153bd4719ecf39c3b7faaa51925625345162 26e637742bb8382dd3eb7d3a4421fc12283cbd826cc979d8835a926b64e9aa49 Loading...

	f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js	82 kB	2023-03-07	2023-11-26
Pretty URL f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2023-11-26 03:11:04 Times Seen18 Hash 8695cb93ba20631a3c1a70b0f21011aa cb88ee8c82a3c163af8094d37da80fea7a95d32b f32f6537c8ca217d4b9f06b031b8b80b3aee458f584fdb1268a7ee59f2bb1db4 Loading...

	f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0	43 kB	2023-03-07	2024-03-30
Pretty URL f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0 IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:03:06 Last Seen2024-03-30 19:37:52 Times Seen459 Hash e20b9e392c8559b6b8de4a03746ae1da 7c29bd8c2e359a49b49fb964321c1f6cade2e589 49b8410314b193a32a965b1b0ea5cae3ebceb37c9f76050aff554d5c94b73c1f Loading...

	f5ajans.com/	1.6 kB	2023-03-07	2024-04-21
Pretty URL f5ajans.com/ IP 212.98.224.64 ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-21 20:00:43 Times Seen507 Hash 834f353d7deaa1ddaff40b1102c61342 992d8c153befcd8b9948e1a402ae911ccdd0c730 542ba5fdc176745cddf311d282fe7a4fef8b2e4a864588a0806108512ab80d85 Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js	196 kB	2023-03-10	2023-05-11
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:42:24 Last Seen2023-05-11 04:21:02 Times Seen4 Hash 37e555e4ffba86d238c6b19fb69bad9e 8f5b299cda023594e2240000f57d1e1d1eaf77e7 c9da9d620cd1b9d05fc1f826406dcfd9fa524c32b8a41281f5c7b63355f56e1c Loading...

	embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js	7.1 kB	2023-03-07	2023-12-01
Pretty URL embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:09 Last Seen2023-12-01 20:53:29 Times Seen7234 Hash fac25ff2d2c405e1ac7e156dca1f819c 9e7c83d4eefe4f64b4f1c43d15f21b248697a125 97ca66991150a4c1263837600fe4338f33d96b74979cd7740ab07d22b883b8e0 Loading...

HTTP Transactions (146)

URL IP Response Size

f5ajans.com/

212.98.224.64

301 Moved Permanently

228 B

URL HTTP/1.1
f5ajans.com/
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
228 B (228 bytes)
Hash
80fc735d7644bc3ce7813b223b5f5327
5897bf3f01b3b677a293573407bfc926563c89a7
d5c134f4ef25df6e221b71527fcd5082b9b193c17912519fac02ac96e68a9576

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 12 Nov 2022 00:18:10 GMT
Server: Apache
Location: https://f5ajans.com/
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11462
Expires: Sat, 12 Nov 2022 03:29:12 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3171
Cache-Control: max-age=126368
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:10 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 11:24:18 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5319
Expires: Sat, 12 Nov 2022 01:46:49 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 23:44:06 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2044
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: sv5y2DwBs3+4gv1/lrrXiNfDHuW8n32t7fqCZuLu3uLB+pHQEddU59RsvJJTnoCqrtbM1ikCjNg=
x-amz-request-id: 34E9Y4CRDSW57DQ3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 00:12:46 GMT
age: 324
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 00:18:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
20f75784a3740d4b76334234c53ff241
7f1e63420f4f332f5aba87652f7b42cd7e51972f
37b829fdab29feb0608495e53ec1b891cc90a3ff9ff00bc1ea3aeb8620fab770

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37B829FDAB29FEB0608495E53EC1B891CC90A3FF9FF00BC1EA3AEB8620FAB770"
Last-Modified: Sat, 12 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 12 Nov 2022 06:18:10 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 23:24:58 GMT
cache-control: public,max-age=3600
age: 3192
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6504
Cache-Control: max-age=124625
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:11 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:55:16 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.238.3.246

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.3.246:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0ZYe2u/Tk9619/EF2zSZRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XVDPC3namjCVzACRbCjh7br16aU=

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

f5ajans.com/

212.98.224.64

200 OK

43 kB

URL HTTP/1.1
f5ajans.com/
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46242), with CRLF, LF line terminators
Size
43 kB (42893 bytes)
Hash
4ab76e8e1e96040f11fc2fe264a141a7
bf57e404016da79f9b61e4b28497f293cfa4c7a6
0e8535ff264ca61255d8bef80032ecdfad19284b00c1e4dddfbf3e668d778dc2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:10 GMT
Server: Apache
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/", <https://f5ajans.com/wp-json/wp/v2/pages/2952>; rel="alternate"; type="application/json", <https://f5ajans.com/>; rel=shortlink
Set-Cookie: vchideactivationmsg_vc11=6.5.0
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Sat, 12 Nov 2022 00:18:10 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 42893
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css

212.98.224.64

200 OK

88 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
3b7f5df41b642a693b1ef357ecbc68d2
a9cc6166fc9106327eaec187d47d794e112f8e61
0c2e7380163dd16e4df76568ff56a96aa343ad2079ab7382a5ff02f493314840

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 88
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1

212.98.224.64

200 OK

12 kB

URL HTTP/1.1
f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (47826)
Size
12 kB (12505 bytes)
Hash
3b8c4b8f6260a403d6206f241159bb38
4ccf913d00b5b7f54b195883578c678ca92457ed
1e4d3d74bdad2b40969b13402b41765b074c8fbd0e2587840e2aa70a0c3c9121

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 12505
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css

212.98.224.64

200 OK

304 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (607), with no line terminators
Size
304 B (304 bytes)
Hash
c0e0c84455c91447767668980791c49b
eb0a49c4f714eba209648b8b708151077d653dc8
f1603b574b2ad999be6b4d6c1ae135a0cac9d28e78886a2d49db1a7bbf129247

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1

212.98.224.64

200 OK

189 B

URL HTTP/1.1
f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css

212.98.224.64

200 OK

854 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (2237), with no line terminators
Size
854 B (854 bytes)
Hash
c32d27fc309681153da63de98aaff6a5
73f0323c876b6bd28259d6c62a2368fa264c6494
86b7134de37f8ef8abe492992f7fa041baf56ada3318ac967ed5f9dbe5c3e82e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 854
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css

212.98.224.64

200 OK

228 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (526), with no line terminators
Size
228 B (228 bytes)
Hash
11dd4a3762ed1077bdd0940b9e6f6f46
56a5245711c6d653b40b1a484de9e43b7f5590fe
324b86c570d1f17665410d3a333b820c81f1ca6d189a77a05a8dc1917a66e8ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css

212.98.224.64

200 OK

9.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (50505), with no line terminators
Size
9.5 kB (9500 bytes)
Hash
072dbf4f6a4480bd2ddf68836618aa7b
d26138229512d24b6ce053ce5b3e58e07e94bad7
f8cd4bbf86e1a88ef650e1ed2d58bc1673d8b516f1e48e2d69f7089355a9b19f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 9500
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css

212.98.224.64

200 OK

12 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (57233)
Size
12 kB (12292 bytes)
Hash
f63de6e9825762bacc6b733499464697
4957b8c5d14978cd1fada281301a0af1348e22ff
9520c47f7f13ceba096eaaa30fc6b7c6484c772f387b45f4cd57671508ff9ae6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 12292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css

212.98.224.64

200 OK

1.2 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (4115)
Size
1.2 kB (1234 bytes)
Hash
33429ccbb8cda2a2b149bce9104ac071
1039527f0b6b1087994bc0c56fa3e3371058b614
0b9e08029a6a2ecee528fcd3b730ba6256daee15f72e39be0affc3443b63bee0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1234
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css

212.98.224.64

200 OK

2.0 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (15221), with no line terminators
Size
2.0 kB (2000 bytes)
Hash
8d6843f258f239fb8b1345faae9ce93a
caf42170e921b93d6e439ed4d5c39953ab9ef1a1
ae1f2a23c55e214450c5c1e6071dbe9b0f5a901c2c01f25f3ac492a020d45abd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11715 bytes)
Hash
cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13fa5c30-6136-43f2-a03b-10bef31fb9ca.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7278 bytes)
Hash
f50fc8e620dd1609bd5551d3cc883bc7
2e7020da5b16b5a4b70a770e5c86d31cdbbb437c
dee271c7472440f751722b893089188cc500182616cb4e4ad08f4501285e0423

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13fa5c30-6136-43f2-a03b-10bef31fb9ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7278
x-amzn-requestid: 9a988a74-3789-40df-b9b9-bcb632980fef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQE6toAMF30A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-01b8f9bc4195e9f93cb981c2;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AuiV1YptN3Qa2t4aC7Jj5gXIhbmNuO25w9Gd-o54Dz-qn7YYeyYB1w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:47:57 GMT
age: 9015
etag: "2e7020da5b16b5a4b70a770e5c86d31cdbbb437c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F292d386e-36b4-4614-bebd-2fe9361cfd1d.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12114 bytes)
Hash
4e83775b8f2c36b850c9d82a13ed2a2a
784ce1f6b6aea8fdf1fab68595ae2617318036d6
8ccec617059cbb0ecf2bc4d4ea6734b1427e169ccb57547a1e04f67a23321751

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F292d386e-36b4-4614-bebd-2fe9361cfd1d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 12114
x-amzn-requestid: f30767b8-93f7-4ba5-8e36-252bbacaaf22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM6-EBMoAMF_Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-7272e2a57ea9295b3c2429d7;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e-KN8k5ImyNWZ8tTxFqS0RncJXMslQs4UzXDtacRUiZJtvxSdtBxng==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:13 GMT
age: 9179
etag: "784ce1f6b6aea8fdf1fab68595ae2617318036d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4268 bytes)
Hash
701700f42e1b0e528a63c3bd2a4c54e7
a3af603900538ea10e094981d298a0b37d0ab896
c84ac2d3524eb950a433aa01e1226d995d87948452e4e135a4661094923ca465

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 4268
x-amzn-requestid: 19d2f4e7-b6c1-4093-b54c-70a9a476ad89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEwYIAMFg7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-6e2f5a6147153e5c32cc4499;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1tbxcsSYcJuquYxeYfqcwaQaHpWmL9jwX31h1ZIyXO6i5A8gIbFQmA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "a3af603900538ea10e094981d298a0b37d0ab896"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cabc8a-e59f-4a5a-9daf-efc2f08dd558.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8188 bytes)
Hash
93b7017621a1a6181f14a2f125a1ad50
ab420d5a89044e863e543330e00aa00f12f1c490
da668278aacf51a38a1aaf687f3baf938dd288cf90ec791533c92e61ba716ed2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cabc8a-e59f-4a5a-9daf-efc2f08dd558.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8188
x-amzn-requestid: 27e084b6-0fc0-4398-a591-8317e81b96c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMiTFvJoAMF4gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec141-33db0c401d7e5c1721b4365d;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: MXrj42s2oh1Fwhea0h3w20rZeSE7DCOIx0XvaXBL9EeLnseNffwveQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "ab420d5a89044e863e543330e00aa00f12f1c490"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f5d648-d178-4f63-98ef-7a2f4504174e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7493 bytes)
Hash
93d01c3c2422df3f7994d3496069dc37
96a4243e7f538fdd4e0aec4f39b058a08a4898e9
1fbc7efb3dfb058984abf1fbe60021212ff1bca8e366f03b1752c615e5249e55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f5d648-d178-4f63-98ef-7a2f4504174e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7493
x-amzn-requestid: 077e815e-bbfc-472c-9d22-a9f0e7cda511
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNDhGYvIAMFygQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec216-3a8a5a6f41b8ade53ff48dce;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:50 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4OOiKELCGHOkACWtRl9DqyfkKqKzqa1FwNJKQ5aOq2Ivb6pDfPYLWw==
via: 1.1 feda34dcbf6a00e232656b7983c2c7f0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:55 GMT
age: 8237
etag: "96a4243e7f538fdd4e0aec4f39b058a08a4898e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css

212.98.224.64

200 OK

3.7 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (53122)
Size
3.7 kB (3689 bytes)
Hash
017d1bf7f5291bd7da91e23af2a04af4
d828e569c95c0dc2ed7007450db3b3ed2c7e3fbe
c9cf3cc90c918dc57634cc9dec6a38739218a06a5faa09267a9807abaae37fa6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 3689
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1

212.98.224.64

200 OK

5.0 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (15660)
Size
5.0 kB (5009 bytes)
Hash
e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 21 Jun 2022 01:30:16 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css

212.98.224.64

200 OK

1.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (6939), with no line terminators
Size
1.5 kB (1523 bytes)
Hash
18e953f02b58b63b9dd772e1e13cd1d8
a6fa007d26ae7131653d3526e5316cf713f541ac
7219a399470e875d55a165ceeb12d535080e91ac3448efbdb620e5cd615b7493

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1523
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b474f74278f0bc7d8a7d6a66c3dcc2dd
6aad727d11a42fefbcabe6af4f0d32c42c946043
db18a18706d236333a7e8671728aea6adbe89e54905799cb5dc8d32feadf2e53

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css

212.98.224.64

200 OK

1.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (6826), with no line terminators
Size
1.5 kB (1529 bytes)
Hash
45dc63cec549cd8f1549939051502130
7b872738e94ae45bc326c859f05230d883ad3bc3
46f7e7e5dce285fc54ef800801f08ce563d219a04dbe4789cd2a6cb233c7eb71

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1529
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=UA-197116259-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-197116259-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43685 bytes)
Hash
36389bd1cc70b33ef4ac11de1f231b2a
44aaf8e27dbaa21872df397a7a4250d676f5b6e0
3dc0ba2df26089e1d93b71db78d3cc03c73c79ce320f7ca311fd35d1d6eb7136

HTTP Headers

GET /gtag/js?id=UA-197116259-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 00:18:12 GMT
expires: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1

212.98.224.64

200 OK

443 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text
Size
443 B (443 bytes)
Hash
a11f3ff8181293fe95aaf74a79ec9657
c1b75352ce45f92f484d4e6d45e804cfd40fc993
3699488f4dd939d210d633d11a99ff3a6c2bc58403a8968f69551647e0d95abc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/style.css?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 25 Aug 2020 08:32:32 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 443
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css

212.98.224.64

200 OK

12 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (53997)
Size
12 kB (11932 bytes)
Hash
53842c0e2c7e10f7b481d5255580a581
a0eaaa5ded250c0c3414ae820af88f9e6e9505ac
0b9b7393d51b1197eb8733ff39e2abf0f4099cea90a88878396f444f5a1c87c3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 11932
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css

212.98.224.64

200 OK

14 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (65536), with no line terminators
Size
14 kB (14331 bytes)
Hash
a4f2debe10119a6f5fd93c9f959d8321
3b48d9fffc2dbb3d5ecd707661b78fc51f7db477
9c25ecc3c364f42d2044402894df5d4b3f00d9cfe9afa75295b03c8c52e09e20

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 14331
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css

212.98.224.64

200 OK

3.0 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (19308), with no line terminators
Size
3.0 kB (2959 bytes)
Hash
6e10cf5685c18133c2c9be2d62f15d82
a10231172bdbe06aa5b08d495fc4b5f5ea70183f
5c60394e07f8ffea554186a4f8a5ee9fbef13fe6c86d113d57a558fc417f4fe5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

212.98.224.64

200 OK

4.2 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3

212.98.224.64

200 OK

46 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (42889)
Size
46 kB (46107 bytes)
Hash
71eab11cb0b4102cd28a75f8776b01bd
2fd9497fbce8c459cc023feedaf182dab410c2e3
5388666fa82846ed8fbc6e60ed53ab4d0d04617cc8f08de299630a1f94dca4da

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:22:47 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 46107
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css

212.98.224.64

200 OK

63 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
63 kB (62832 bytes)
Hash
de7a3d23f28aa973120ccaad669aac9a
fbc57cff4fea4a3995d075e5372d6a72400bfe97
866d09f4be3e3f7b09211c8f234a3023a91575ed8f05002a3c4165d02f9da3bc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 62832
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css

212.98.224.64

200 OK

46 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (65359)
Size
46 kB (45985 bytes)
Hash
b95490b8aa4182c6578b631568241845
9f3a3c9846684666cab0b4816bbf9f9658436596
db6cea54df089a6d2535242604e48fa5c99673a44a282f9f346dea82b45b8236

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 45985
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8

f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

212.98.224.64

200 OK

31 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (65447)
Size
31 kB (30995 bytes)
Hash
1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

212.98.224.64

200 OK

6.5 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
6.5 kB (6532 bytes)
Hash
287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6532
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

212.98.224.64

200 OK

2.5 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.5 kB (2457 bytes)
Hash
27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 21 Jun 2022 01:30:16 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2457
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js

212.98.224.64

200 OK

6.6 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (21904), with no line terminators
Size
6.6 kB (6564 bytes)
Hash
6338eb3d6b3c8e012fbd69faff9d1f31
e4a06b74ccdc8c6a48b390188abb563fb96bd55c
efe4b5fd5f71484a2f5c8d768f23c0d635dba433f5f4b4b54071a42400063e78

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6564
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js

212.98.224.64

200 OK

19 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (1956)
Size
19 kB (19275 bytes)
Hash
30af1359c2f365be05f4196a20d787eb
2588834ba493585523f2b1428e0c6166d68a9a18
cc368fcd96182e6131488a162e207962173d15f05f6a9947364e0e15d616a9ef

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 19275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js

212.98.224.64

200 OK

6.7 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (3622)
Size
6.7 kB (6656 bytes)
Hash
c926cbc059f70566e289c0e1ecb493c5
aaa5f7dc2b69a0e3a9ef3ec1b8691c00a403ee0b
f431cdc5410701a7e45016eb50c7abceb33757e827334ce017c7a225b55c0434

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6656
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js

212.98.224.64

200 OK

491 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (628)
Size
491 B (491 bytes)
Hash
eec3987dcf7c3a9d7e291fe8e57385fc
4208a8d30f0913b4f9854365d2aef868fb1d863f
8818c5ae93d5d56c0a6e8001e4bec9917a2d0fcfa3adbbaffa874940848e7d88

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 491
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js

212.98.224.64

200 OK

1.3 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (1414)
Size
1.3 kB (1252 bytes)
Hash
60535e9fa93951c881ce4537cb071970
5ed0f7bf2edf7ae24d9ce4d6bf7c734eb7f3566f
0656e18bcaac21f22ab610219ef4471b057cf42cb8c442124f8bf7b522c0a085

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1252
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3

212.98.224.64

200 OK

85 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (64270)
Size
85 kB (85257 bytes)
Hash
5c4c9100dc4d7d89e37e9f422b5a1488
5fa1f3c688087031200421fc0b573c138497f605
ceec6ae869a887d18e4ed5d094ddb26a4a0530f5c4d84e25a00dc528c377afac

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:22:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0

212.98.224.64

200 OK

10 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (42862)
Size
10 kB (10443 bytes)
Hash
49473c84b4d22550a618192eb064f66e
ba73379f5b95dd06705278488f19197c678cf286
3418a24a2984774d030cdb5882a8aaccb1336a2573918da59dd121532d6d0640

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/js/slick.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 06:20:55 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 10443
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0

212.98.224.64

200 OK

1.8 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Unicode text, UTF-8 text, with very long lines (3524)
Size
1.8 kB (1827 bytes)
Hash
e8cfce58064ea661c60a996c77810250
5dc24e2578c3c71c9a390bb5875d6aa610c140ff
66e16db6252c38b5efcdd33193c35ce2c9fc6da1d57c05c8032a06a7877e7b5a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 08:02:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1827
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js

212.98.224.64

200 OK

1.9 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
HTML document, ASCII text, with very long lines (932)
Size
1.9 kB (1921 bytes)
Hash
296ffe5cefcc3940eb8e300e24a25eff
43f63a21c60fdc87ebb2b293b28677d6c2f2f9f8
3fda313e2eab64d81f556ac1a7916c74a96178afd82b5fdf96ed5e762d47ded1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1921
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js

212.98.224.64

200 OK

789 B

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (1266)
Size
789 B (789 bytes)
Hash
d249b2f834bb7f748365189b4bda007c
a3136f07732ad8d022cf44e8e09e9e7ed20f3993
4d7b72cafedfe54292c9db9b5be6a777d66d0a2cf568ed27729fa7bbbd33d71a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 789
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6

212.98.224.64

200 OK

3.6 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (18644), with no line terminators
Size
3.6 kB (3600 bytes)
Hash
cbe690a876111311c8dc8c47d1f675c8
396873013fabe92d3e33c73252482c4b091ed285
f7c8996634123f22daf76b8f4ccbbb73e0e1be1c15a67ddb2586a272fde596b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 3600
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js

212.98.224.64

200 OK

13 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Unicode text, UTF-8 text, with very long lines (8762)
Size
13 kB (12687 bytes)
Hash
940c54b4128969ab75bf0553506fa6c7
00e2d9c41163dc64eabb2f70b2c7f7b991609255
7801ae2a2078d97fead92facfb82d1e73c6b0c1f221b0944034a978b97d81d06

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 12687
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b123921e6757174aa4f1b66832fccc92
3f486a171fa31bc86225cccced1a9a0cfe6ad0ba
d4c31b8348849e5301d819265ac6986dc2a018d1a67fb4331e753c10ae2f9455

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: max-age=147000
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Etag: "636e6962-117"
Expires: Sun, 13 Nov 2022 17:08:13 GMT
Last-Modified: Fri, 11 Nov 2022 15:25:22 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279

f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0

212.98.224.64

200 OK

5.8 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (20422)
Size
5.8 kB (5817 bytes)
Hash
a1f0bae161b820176df3906769a1c37b
5a75598a989d789b7f77d8278852b44b9a3c3732
d5758982448d9afbb73111a8dde6a82b7de19c81a2f8c9ecc3ad8f1dd78c8f8c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:10:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 5817
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2

216.58.207.195

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size
34 kB (33580 bytes)
Hash
848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:38:57 GMT
expires: Fri, 10 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 95956
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17188, version 1.0\012- data
Size
17 kB (17188 bytes)
Hash
393d0ca42a3bfbd34fb5b86f67e426ff
989cf4c13645ec6307b8bf399b448113ab6deaa5
90ebbbbaded0b3957104970c5523090c52c7863ad78cce4f9258f576e154397e

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:41:04 GMT
expires: Tue, 07 Nov 2023 21:41:04 GMT
cache-control: public, max-age=31536000
age: 355029
last-modified: Mon, 18 Jul 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2

216.58.207.195

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Size
36 kB (35904 bytes)
Hash
c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357

HTTP Headers

GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:11:05 GMT
expires: Tue, 07 Nov 2023 21:11:05 GMT
cache-control: public, max-age=31536000
age: 356828
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0

212.98.224.64

200 OK

5.9 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (24010), with no line terminators
Size
5.9 kB (5932 bytes)
Hash
51f6b729141ae1f3401d186d04116ac5
88629bfbe81228d542dfa28cf270332c0312e35e
92c80e75c05e58a3d3568599d528c989350fe9b7016f4149305cc3c49c45c1e2

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/js/particles.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 07:37:20 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 5932
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js

212.98.224.64

200 OK

1.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (1709)
Size
1.5 kB (1487 bytes)
Hash
f7e26d3e8ebcdfaa7cdaf5b652db0ac8
b4a0443ba317b7265b84c2b27a094803f3979898
8c0fddabc90f02c47ca227f1a85dfd60040d44bfb20941c764431a09410ed367

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 1487
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0

212.98.224.64

200 OK

10 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (32004)
Size
10 kB (9978 bytes)
Hash
f3c3a6db5d9c1d0581cb21a1f41c2623
bbbed7f4f95f94a7cdaf2eeb09376e09be28a013
9364f57a5c55b4b059d2f9ed023def8e987ba8a84e6c9a4568700f7a5f547e9e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:15:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 9978
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

212.98.224.64

200 OK

1.8 kB

URL HTTP/1.1
f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (5477)
Size
1.8 kB (1834 bytes)
Hash
951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 1834
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2

216.58.207.195

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 32720, version 1.0\012- data
Size
33 kB (32720 bytes)
Hash
272ba1c184e00d2f0280ebcba62a1a17
d359beb5700a9216c4d9dc7ad590790ec09cc748
89def7428656f40331c1430ee1dc1846ed1e30d7001707b548f9f816d27264a5

HTTP Headers

GET /s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:46:41 GMT
expires: Tue, 07 Nov 2023 21:46:41 GMT
cache-control: public, max-age=31536000
age: 354692
last-modified: Mon, 18 Jul 2022 19:31:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js

212.98.224.64

200 OK

9.8 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (2471)
Size
9.8 kB (9789 bytes)
Hash
8099fb35e544de23d2414f595ac777ea
b9d61f0a622094397c92a8824eaecde6f0d8a513
2ea1a54fc82a942e26aa4554978ccbd56f857dc39a9adbb254ed688abfe0c586

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 9789
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js

212.98.224.64

200 OK

4.4 kB

URL HTTP/1.1
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (2358)
Size
4.4 kB (4394 bytes)
Hash
b14074548745608d26039dab6f31d93a
14a0d4dddccd62ea29c500717e47355d188b8461
c7a256f9fc1c0f1457a94a8cdb0ea669e1071e772488ed80a5580ceec38b30b0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 4394
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js

212.98.224.64

200 OK

2.7 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
ASCII text, with very long lines (7889)
Size
2.7 kB (2704 bytes)
Hash
f30be0c895abc6e9806990de4a5c6a3f
4c3a309acb1a36dfc1196d0f99648efecc63edc6
5527d8cc1ff8638d6eb220120e306257877fcaf9c25f1b3e58c428808293a7d0

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 27 Feb 2022 22:29:39 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 2704
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png

212.98.224.64

200 OK

4.4 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 421 x 265, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4446 bytes)
Hash
8d21efeade653bc05947b55ee728a487
f0f19f7c2d8133803fe9fff1d9ab856e49e992cb
d895cdf13f95441afc565b3542170ba84a9cadefc1c5dcd0bc41fe4bad75671c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/bg-service-card-media.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:56:40 GMT
Accept-Ranges: bytes
Content-Length: 4446
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2

212.98.224.64

200 OK

28 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Size
28 kB (28524 bytes)
Hash
9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive

embed.tawk.to/58a9f0de57ed180aac2168b3/default

172.67.38.66

200 OK

929 B

URL HTTP/2
embed.tawk.to/58a9f0de57ed180aac2168b3/default
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
929 B (929 bytes)
Hash
143a05818944d7291c89cfb73acb6606
2fc23e73be5bd1b466074ec95497da1f5bbba751
c542a792f596c42b745bde74a32c9cc92041fae43f63a03c54412122b3826ac0

HTTP Headers

GET /58a9f0de57ed180aac2168b3/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:13 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-635a92a45e8"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16d00f4c0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2

212.98.224.64

200 OK

28 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Size
28 kB (28524 bytes)
Hash
9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive

f5ajans.com/wp-content/themes/metamax/img/enter.png

212.98.224.64

200 OK

514 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/enter.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 32 x 27, 8-bit colormap, non-interlaced\012- data
Size
514 B (514 bytes)
Hash
3fd2c8be7f198619f20e8ed5e6d46285
258217ef9b8471d979c1b691e58dd384866a1f5c
fe97a3755b2273a02bdf7e3c9a2fb416b00762eb563f8b6bd3497d245c2f00ee

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/enter.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:44 GMT
Accept-Ranges: bytes
Content-Length: 514
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png

212.98.224.64

200 OK

2.8 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 256 x 94, 8-bit colormap, non-interlaced\012- data
Size
2.8 kB (2846 bytes)
Hash
9d732ac7cf364a10e5336306bb1039ed
523b2fdc7f91cf416961b0fe498c344eed330e62
fa765334727fbcb94cb05bfcc5c5fe4cd5aac720e82ca3487d243d8d1766770d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/form-arrow-1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:26 GMT
Accept-Ranges: bytes
Content-Length: 2846
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg

212.98.224.64

200 OK

31 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x600, components 3\012- data
Size
31 kB (30715 bytes)
Hash
91464dea2f3edb3b4359a0112a66009c
cfcefa0cfeb5142e68f4ea0de8f472af49aafaa0
9ca42026e2398bff07330c704dc6ffd1d5ff670bafbb1458e72d0d45b73d11e5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/07/bg_a.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:49 GMT
Accept-Ranges: bytes
Content-Length: 30715
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png

212.98.224.64

200 OK

5.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 221 x 257, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5492 bytes)
Hash
9787a3c349d510781a9f25cfb6cc077f
d8a7966f2f9d0cf7954a7d518a78e4ad1472ae3d
cdc12d7f7e2a607f6a2827c8b6f9084a49a5619ab449a23525a6b6e371152012

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/form-arrow-2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:51:38 GMT
Accept-Ranges: bytes
Content-Length: 5492
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66

212.98.224.64

200 OK

4.3 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 585x585, components 3\012- data
Size
4.3 kB (4254 bytes)
Hash
c453a4eaf934083493cd5393c055327f
81625301168b9e430964499ec6bcb994b6ff2828
ac23743686aeffe39f030d809c983638552bb251f6b9a421434474e7f40c6ade

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/07/bg_text_b.jpg?id=66 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 18:59:55 GMT
Accept-Ranges: bytes
Content-Length: 4254
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff

212.98.224.64

200 OK

102 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size
102 kB (101652 bytes)
Hash
100da06a3856fc4aac8fae7315367988
878c2b32627953f388a76489f6c3ab2747e3daca
c95af5277e77da5473984e2519a9da7290d7422f5065547d8fa9df604150e542

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Length: 101652
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/font-woff

f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100

212.98.224.64

200 OK

5.3 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Size
5.3 kB (5251 bytes)
Hash
7ef3a1dec54f562e93e276cf87b99e68
a0b85dfa5421eebec32bb15b858aa5799706c503
610ec2ced5a11beced9d49ff008bd15b293b596fc68b5dc7db4a07637ab86484

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/07/Bg_n.jpg?id=100 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:04 GMT
Accept-Ranges: bytes
Content-Length: 5251
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2

212.98.224.64

200 OK

14 kB

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Size
14 kB (13564 bytes)
Hash
e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Wed, 18 Mar 2020 14:40:58 GMT
Accept-Ranges: bytes
Content-Length: 13564
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive

f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png

212.98.224.64

200 OK

1.2 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1156 bytes)
Hash
de9f31ae40750aee64ca9aab5edbc487
d0fa6bc142dcc4ffba03624e089cbf68f8362572
54bcce524c0982b96591c80caaae8c41638dc9f914a5f8183711957058ea6a04

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/cropped-icon_003200320_3281.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:27:30 GMT
Accept-Ranges: bytes
Content-Length: 1156
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png

212.98.224.64

200 OK

7.4 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 198 x 63, 8-bit/color RGBA, non-interlaced\012- data
Size
7.4 kB (7449 bytes)
Hash
11cf3b0c24c45809668efae12eb51207
39c2c0e492a07151aa354604e5229c9f94736b4b
fe0ea0ce14494e9e39e8390080518e70dbcb58e1cf83ae497d6b905d31588de3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 00:35:29 GMT
Accept-Ranges: bytes
Content-Length: 7449
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png

212.98.224.64

200 OK

6.6 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 157 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6632 bytes)
Hash
27b5c87227925590a9bf457ac034b8b0
773bd21e71652a5fff00d472ed450a17553afb3f
f3c0283eb86a7f7807d274bcfec07d6c8eb5dc7239987dd2e82bda0f7d8c0c7c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/logo-2_009d00321_3055.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 20:52:53 GMT
Accept-Ranges: bytes
Content-Length: 6632
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff

212.98.224.64

200 OK

90 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format, TrueType, length 90060, version 331.-31261\012- data
Size
90 kB (90060 bytes)
Hash
423ddcd1c3685d59de8eb5ab68b2f007
b6f3cc5710bed4370123567befcfa143e7c2dfe5
7bbff24dee1b2ffa70e60a06a202d789b3fe9248200e3f89afa239f850eb5097

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Length: 90060
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/font-woff

f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg

212.98.224.64

200 OK

75 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2019-07-25T05:31:46+03:00], baseline, precision 8, 1920x990, components 3\012- data
Size
75 kB (74881 bytes)
Hash
9b87cffda0d6a534833aa5ec31224af2
b83eddcd9115c974a41a81d83b44ad55bc915cfd
f30de2addac76456f5e7dde3233276b81fe9cde201577ce2b1ab5347150ddd73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_1_bg.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 74881
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png

212.98.224.64

200 OK

143 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size
143 kB (143265 bytes)
Hash
8cd364eba2762e2887aa4c028d781630
cea072f7cbe656d4b4d9b20a8b8264acd304a990
ece17bc56bd5542046bcd5d1004b5a6000fcbc898931a9d33982da2b0249ab5b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2019/09/welcome_img_045603481_2087.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:02:12 GMT
Accept-Ranges: bytes
Content-Length: 143265
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png

212.98.224.64

200 OK

88 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size
88 kB (87625 bytes)
Hash
9455a9256201f7a71a437eab2db22a08
e16bdca6905251110c11506c64f9cba231dd35db
9d6db0cbc64055e8bd1f6a1be82ea4de0bee33ddc2db257a3de01e45ffe40949

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:18:49 GMT
Accept-Ranges: bytes
Content-Length: 87625
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png

212.98.224.64

200 OK

185 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size
185 kB (184691 bytes)
Hash
056cd87da8a61b27e4d6a2053eaf1e37
1b61e9111a87016fe4e4d5df46c90734e55ee5ec
1752824e860c71ab9279f8961989a593b879e68f0baeb8a58a40df1fb317da28

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:15:06 GMT
Accept-Ranges: bytes
Content-Length: 184691
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.google-analytics.com/analytics.js

216.239.34.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.34.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 11 Nov 2022 22:46:56 GMT
expires: Sat, 12 Nov 2022 00:46:56 GMT
cache-control: public, max-age=7200
age: 5478
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png

212.98.224.64

200 OK

779 B

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
779 B (779 bytes)
Hash
1df7e80889c3b56ee55d2aacbc11522b
3ea51e9b255a2b92053345a3e3f8930a53b96616
e61da40a5b08686577e4c3c2478929ddf59b1e1a4931d22b8930d85fd94f0a62

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/cropped-icon-32x32.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 779
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png

212.98.224.64

200 OK

4.6 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
4.6 kB (4640 bytes)
Hash
590886c93d6bb8a37d06de0a9b87eadb
6237bafee73c2a9267ed4549961b34d599ca7381
b31140344bf1b3adb30986492b3fb643917e6fb4081c9e90fb87d12518228e71

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2021/01/cropped-icon-192x192.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 4640
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png

212.98.224.64

200 OK

19 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 453 x 429, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18852 bytes)
Hash
030347cad80ea77c85f5f19deb873e90
580860119306c544c610f418321791b08a799ff6
b2ebb818e4f3babbfe6b7a1596331c5f58b79ac6a7c18d2f8c42534cdedc4664

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_3_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 18852
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_3_el4.png

212.98.224.64

200 OK

19 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el4.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 172 x 305, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18612 bytes)
Hash
59a42b71df548d08153bfad9daa0c72f
e59e8d5ee645f086e0add485919b12001e7214e8
89c60832f7578052e099518912a2bd57cad6827ffd0dc17d72749e66f152d3d1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_3_el4.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 18612
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png

212.98.224.64

200 OK

57 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 461 x 586, 8-bit/color RGBA, non-interlaced\012- data
Size
57 kB (57101 bytes)
Hash
6a598f89171795fbb4db710696ef06fa
44be03b0531e504107e62741a671f276d1d22690
326102cbd6b6a2f80ddcff2fa909d0963646cb92614789f7d6735de001245e75

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_3_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 57101
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema

212.98.224.64

200 OK

163 B

URL HTTP/1.1
f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
JSON data\012- , ASCII text, with no line terminators
Size
163 B (163 bytes)
Hash
8f17d00d334598b97e1e6bb2485fb163
2775aa3f9c1d2c19d82f63bc1714b5ee32341db8
136f53792ca12f8f9b164f0699fcf893a14cc4f2d2951cad95aa7112fc268772

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-json/contact-form-7/v1/contact-forms/4/feedback/schema HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Connection: keep-alive
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Sat, 12 Nov 2022 00:18:13 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 163
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8

f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888

212.98.224.64

200 OK

7.5 kB

URL HTTP/1.1
f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Last-Modified: Mon, 28 Dec 2020 00:32:39 GMT
Accept-Ranges: bytes
Content-Length: 7536
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:14 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/font-woff

f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png

212.98.224.64

200 OK

25 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 449 x 342, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24591 bytes)
Hash
13f30f2ba6109f68004f7b3f186534b9
ecbd7072697b20431245b95059e3387cea459258
f92605540a4af1468406540b537d88b657ca6e7fc55e94aecf7c682e8d4f94f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_3_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 24591
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png

212.98.224.64

200 OK

31 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 283 x 248, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (31109 bytes)
Hash
17a459df9d5b95bf7a166680a66ee541
1acf65c897a4695c21f6de7a9e1ed6116a56bfa5
f67f6f42bf929c2d92e9999e4322653f7c139651ea21d265fd451cdd15616f5f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_1_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 31109
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png

212.98.224.64

200 OK

25 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 375 x 169, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (25316 bytes)
Hash
0495ab24c0f9e944f8f2a47cf1cdb87c
627f5ded074643e5f2a63218a6e78b5aee4375e9
1821b4a1f51dbf39e21c2171250f4f449e6f277e8ee4cb0759d406853047c8e7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_1_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 25316
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png

212.98.224.64

200 OK

22 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 119 x 482, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22248 bytes)
Hash
c8870a4f25db85f6584569385762209c
390621196d6fb1da6c196bd7362dde9afdc91bee
8be1e624b483799ee66f6cfe318ffef6984eece21f8d48c8ef00dc739fa0c52e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_2_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 22248
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png

212.98.224.64

200 OK

57 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 740 x 547, 8-bit colormap, non-interlaced\012- data
Size
57 kB (56749 bytes)
Hash
66a85608a506550bfeb96c5f56f46952
87ed6cd40cb0137be370b32383aaf699e8daf4c0
f402e257306ecb0cf253d7687a1fdd91d6b94925e8ab15f21875ef7bb962b090

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_1_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 56749
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png

212.98.224.64

200 OK

38 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 263 x 382, 8-bit/color RGBA, non-interlaced\012- data
Size
38 kB (38112 bytes)
Hash
609c7a2139ac3feca7bd747bc2d44eea
c1837467c63df0cdd151c1e8bf1167bc1bf0f047
1fab602e9f40b0819daa8f60ad979fcd068692de3ab2861f9d44e9821a2d5583

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_2_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 38112
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png

212.98.224.64

200 OK

62 kB

URL HTTP/1.1
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
PNG image data, 474 x 717, 8-bit/color RGBA, non-interlaced\012- data
Size
62 kB (61517 bytes)
Hash
cf592fcf352be2eb0a27049a4d86828c
91e58437ec0d8ed49fba0dd898fba1e04351cf4c
3ede6d98c9d8a515c07794b8d601e72bb3a4bba0ef48427de068a05015e91379

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/revslider/default/slide_2_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 61517
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg

212.98.224.64

200 OK

426 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Size
426 B (426 bytes)
Hash
5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/svg+xml

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js

172.67.38.66

200 OK

41 kB

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65466)
Size
41 kB (41161 bytes)
Hash
b882434bc64460a7bd36463c1b380f03
4c4b93c15fb41a045ddf5ca60c74ae6cb1c20a49
3cfcc8fb141511816414b0ef20feabce1b5b3e91811adce2f8447deb8a42d286

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"37e555e4ffba86d238c6b19fb69bad9e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d5a0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg

212.98.224.64

200 OK

426 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Size
426 B (426 bytes)
Hash
5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml

f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg

212.98.224.64

200 OK

426 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Size
426 B (426 bytes)
Hash
5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml

f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg

212.98.224.64

200 OK

316 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (482), with no line terminators
Size
316 B (316 bytes)
Hash
c1ad17aedbdf47a4655933cbbe580fd1
ed39ff310f343a3a0d12ca5c1151a08c34fe75ea
01fdb21518306b24ae8534a6e146d232ee4c87e668b31bb37f1dbeae0ac7fd89

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-3.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 316
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml

f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg

212.98.224.64

200 OK

248 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (352), with no line terminators
Size
248 B (248 bytes)
Hash
439b2c1f5e5bae3e03f46476b6b86d95
48597fc205cdb4e1ed81311798b2ba9fd7860538
e987669bf8ef818d5e4249f750ead65157779f804fe03e9f7ae1fc7bdf904e3b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-2.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 248
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/svg+xml

f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg

212.98.224.64

200 OK

281 B

URL HTTP/1.1
f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg
IP
212.98.224.64:0
ASN
#48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (401), with no line terminators
Size
281 B (281 bytes)
Hash
a7e7af5d29fc3b189eb62e42ca37055e
eab9520fe1b9c6065c064149ad2d73b3e34df7d8
4d0ba39a06d6cca297cab001daf88cee527de59592f8bd2db694650564827ff5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/metamax/img/particles/particle-4.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 281
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js

172.67.38.66

200 OK

10 kB

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (15846), with no line terminators
Size
10 kB (10023 bytes)
Hash
656e3542c73aa752ffefc72aff880dbc
c8004202997067847b287e6e7071b2ddf980c12f
af9050f8525b5943e509165a61c1679282f8014b4f09ff913513ed539068cb28

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"35b74b4d87efe5782e575c273fce182b"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e219320b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js

172.67.38.66

200 OK

58 kB

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (11056), with no line terminators
Size
58 kB (57660 bytes)
Hash
c31c00765970a5f13a03d5f006cb4830
e844fbc1976b74eb0fe78f833e8a28ed76b91f6f
336b6dabcf501372a3752b186cd19d802f3ba8034e376f0b0d47078d84018aea

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"a92075fd9ac5ba130387a80453676099"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229350b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
3ae323859d4702bcc31063e89fc25f7e
37b9ed7c51ea0ec0ef8f68422e259dccaeb040fb
c2c8bf2820553d2eb3943f03a26a2efe6f1274ec08d54bc75c1713ef5c67ae66

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:16 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "988F3BCE4B016F75489A0EF7D21CBCFD758B3046"
Expires: Sat, 12 Nov 2022 10:00:00 GMT
Last-Modified: Fri, 11 Nov 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3543
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 768b16e45ebc1c06-OSL

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js

172.67.38.66

200 OK

2.3 kB

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (7068), with no line terminators
Size
2.3 kB (2252 bytes)
Hash
a5b05f036d8991ef25fb88905f31a084
7db2cdc735972fb4f3bf8c144693992c75a0496b
3f3808b4700efc7d262601009e935e88979b536e1da5948cb32a5bfbea8419c3

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"fac25ff2d2c405e1ac7e156dca1f819c"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e2192d0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js

172.67.38.66

200 OK

674 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (546), with no line terminators
Size
674 B (674 bytes)
Hash
89141f8f833df78b97fa26a16d430e3f
b534514b4cd4b57b8db48adb933f37142a98ca00
a2fc8e0312ed9dc8da1a4cf6a04fb84e11402be4f214a64e53d5137e8e8f24a3

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"09c3819d373bd4178a620d721429fada"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229340b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229330b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 00:18:12 GMT
date: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d600b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d590b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da6d560b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"28824857224eeeac7394f7755fa2d3ed"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d5f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da6d570b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7a1cce8ba15e49dc07d33b416f0fda26"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e2192e0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7031f234532c26d04cce67a704e934f4"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229360b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

va.tawk.to/log-performance/v3

172.67.38.66

200 OK

0 B

URL HTTP/2
va.tawk.to/log-performance/v3
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Content-Type: application/json; charset=utf-8
Origin: https://f5ajans.com
Content-Length: 95
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-8mf7
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e74c260b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

va.tawk.to/v1/session/start

172.67.38.66

200 OK

0 B

URL HTTP/2
va.tawk.to/v1/session/start
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
x-served-by: visitor-application-preemptive-njzf
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16de0f3c0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

va.tawk.to/v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined

172.67.38.66

200 OK

0 B

URL HTTP/2
va.tawk.to/v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-mlgs
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-12-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16ddff280b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"6dba9d01f672f86fe4df10013a74a548"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e219310b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/css/bubble-widget.css

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/css/bubble-widget.css
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1330220
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e349ea0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/css/max-widget.css

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/css/max-widget.css
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=75771
access-control-allow-origin: *
age: 1330219
etag: W/"0158db159e8967dbda5865ed6b2e435d"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e36a040b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

tawk.link/58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f

172.67.162.230

200 OK

0 B

URL HTTP/2
tawk.link/58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f
IP
172.67.162.230:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f HTTP/1.1
Host: tawk.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:17 GMT
content-type: application/octet-stream
x-powered-by: Express
strict-transport-security: max-age=600
cache-control: max-age=86400
cf-cache-status: MISS
last-modified: Sat, 12 Nov 2022 00:18:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nXcSsMb8DcyGuU9TnTPSHgzhKtQRkIS%2B%2Fu3J8mESG6puVrecossn8OZ09mrnbehwvTRZ%2FbnGtkObZvXPV5r9lsxYW3ZhBb%2F%2FU6qdHux09IzS3HkYrpjyL8H9ACo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768b16e3d948b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 00:18:12 GMT
date: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

va.tawk.to/v1/session/start

172.67.38.66

200 OK

0 B

URL HTTP/2
va.tawk.to/v1/session/start
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Content-Type: application/json; charset=utf-8
Origin: https://f5ajans.com
Content-Length: 171
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-qgk9
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16df1fa80b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

embed.tawk.to/_s/v4/app/635a92a45e8/css/message-preview.css

172.67.38.66

200 OK

0 B

URL HTTP/2
embed.tawk.to/_s/v4/app/635a92a45e8/css/message-preview.css
IP
172.67.38.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_s/v4/app/635a92a45e8/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38268
access-control-allow-origin: *
age: 1330220
etag: W/"949ecc85ac578750ec9a03e5680f7b0e"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e35a000b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (62)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations